MSDN Community Support
Please remember to click "Mark as Answer" the responses that resolved your issue.
If you have any compliments or complaints to MSDN Support, feel free to contact MSDNFSF@microsoft.com.
with html pages you use cookie authentication. this can be combined with bearer. just add cookie authentication to the project. You can use scheme with the authorize to allow both or just one scheme.
Member
1 Points
1 Post
ASP Net Core (2.1) WebApp with API AND secure HTML pages
Nov 15, 2019 05:47 AM|GFrancis|LINK
I've created an AspNetCore(2.1) WebApp that has an API controller secured using JwtBearer authentication.
In
ConfigureServicesI have:services.AddAuthentication(...).AddJwtBearer(...)In my API Controller I have:
[Authorize][ApiController]public class BillingController : ControllerBase{ ...This all works perfectly well.
Now I want to add some HTML pages to the WebApp that are secured by 'traditional' sessions.
These pages will contain javascript/ajax that will also call the API methods to gather data.
Is there a recommended approach/template/example for combining these authentication methods?
Participant
1430 Points
478 Posts
Re: ASP Net Core (2.1) WebApp with API AND secure HTML pages
Nov 18, 2019 07:36 AM|Rena Ni|LINK
Hi GFrancis,
Do you mean that these pages protected by cookie authentication?
#JWT Combine Cookie Authentication
https://programming.vip/docs/jwt-vs-session-vs-cookie-for-asp.net-core-web-api.html
Best Regards,
Rena
Please remember to click "Mark as Answer" the responses that resolved your issue.
If you have any compliments or complaints to MSDN Support, feel free to contact MSDNFSF@microsoft.com.
All-Star
54284 Points
13661 Posts
Re: ASP Net Core (2.1) WebApp with API AND secure HTML pages
Nov 18, 2019 08:44 PM|bruce (sqlwork.com)|LINK
with html pages you use cookie authentication. this can be combined with bearer. just add cookie authentication to the project. You can use scheme with the authorize to allow both or just one scheme.