Chapter 2. Enabling SSL for ASP.NET Web API

In this chapter, we will discuss the implementation of SSL with ASP.NET Web API and authentication of users using SSL client certificates. Authentication schemes over plain HTTP are not secure. For example, basic authentication and forms authentication send plain texts, such as the username and password. So, to protect the plain texts from vulnerability, we use SSL and also authenticate clients using the SSL client certificates.

In this chapter, we will cover the following topics:

Enforcing SSL in a Web API controller
Using Client certificates in Web API

Enforcing SSL in a Web API controller

The Secure Sockets Layer (SSL) encryption protects the credentials exchanged between a client and a server. SSL enables ...

Get ASP.NET Web API Security Essentials now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

ASP.NET Web API Security Essentials by Rajesh Gunasundaram

Chapter 2. Enabling SSL for ASP.NET Web API

Enforcing SSL in a Web API controller

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly