FAQ Database Discussion Community


ASP.NET Web API Authorization tokens expiring early

asp.net-mvc-4,authorization,asp.net-web-api2,bearer-token
I have implemented security for my web api (individual accounts) as discussed here. I have hosted the website on godaddy (shared hosting) and its working fine. When I ask for token by using url "domain.com/token", I get the token with expiration date of within 15 days. I have set this...

OAuth2 Token Validation and confidential clients

security,authentication,oauth-2.0,bearer-token
I have a question about OAuth2 and validating the client that a token has been assigned to. The spec says that for confidential clients a client must authenticate when requesting tokens etc, for example with a basic auth header. This means we can verify that a client has been registered...

Bearer token in MVC controller to access Web API

asp.net-web-api,oauth,oauth-2.0,bearer-token
I have two projects: MVC, Web Api In the Web API project I am using bearer token authentication. This token expires after 24 hours. In my MVC project I'd like to call the Web api project via MVC controller (server to server). What's the best way to: Get a token...

Retrieve information from Bearer Token

asp.net-web-api,claims-based-identity,claims,bearer-token
I have an MVC website that is calling a WebAPI in another project. The WebAPI uses OWIN and implements OAuth security. I will be using a Bearer Token to communicate between the MVC and WebAPI applications. My website requires the user to be in AD, which I am checking in...