Rating:
Author: Badrinarayanan Lakshmiraghavan
ISBN : B00DREFQJQ
New from $22.99
Format: PDF
Download for free books Free Pro ASP.NET Web API Security: Securing ASP.NET Web API from with Mediafire Link Download Link
ASP.NET Web API is a key part of ASP.NET MVC 4 and the platform of choice for building RESTful services that can be accessed by a wide range of devices. Everything from JavaScript libraries to RIA plugins, RFID readers to smart phones can consume your services using platform-agnostic HTTP.
With such wide accessibility, securing your code effectively needs to be a top priority. You will quickly find that the WCF security protocols you’re familiar with from .NET are less suitable than they once were in this new environment, proving themselves cumbersome and limited in terms of the standards they can work with.
Fortunately, ASP.NET Web API provides a simple, robust security solution of its own that fits neatly within the ASP.NET MVC programming model and secures your code without the need for SOAP, meaning that there is no limit to the range of devices that it can work with – if it can understand HTTP, then it can be secured by Web API. These SOAP-less security techniques are the focus of this book.
What you’ll learn
- Identity management and cryptography
- HTTP basic and digest authentication and Windows authentication
- HTTP advanced concepts such as web caching, ETag, and CORS
- Ownership factors of API keys, client X.509 certificates, and SAML tokens
- Simple Web Token (SWT) and signed and encrypted JSON Web Token (JWT)
- OAuth 2.0 from the ground up using JWT as the bearer token
- OAuth 2.0 authorization codes and implicit grants using DotNetOpenAuth
- Two-factor authentication using Google Authenticator
- OWASP Top Ten risks for 2013
Who this book is for
No prior experience of .NET security is needed to read this book. All security related concepts will be introduced from first-principles and developed to the point where you can use them confidently in a professional environment. A good working knowledge of and experience with C# and the .NET framework are the only prerequisites to benefit from this book.
Direct download links available for Free Pro ASP.NET Web API Security: Securing ASP.NET Web API [Kindle Edition]
- File Size: 4795 KB
- Print Length: 402 pages
- Page Numbers Source ISBN: 1430257822
- Publisher: Apress; 1 edition (March 27, 2013)
- Sold by: Amazon Digital Services, Inc.
- Language: English
- ASIN: B00DREFQJQ
- Text-to-Speech: Enabled
X-Ray:
- Lending: Enabled
- Amazon Best Sellers Rank: #81,797 Paid in Kindle Store (See Top 100 Paid in Kindle Store)
- #35
in Books > Computers & Technology > Programming > Languages & Tools > C# - #38
in Kindle Store > Kindle eBooks > Computers & Technology > Programming > C & C++ - #52
in Books > Computers & Technology > Microsoft > Development > C & C++ Windows Programming
- #35
in Books > Computers & Technology > Programming > Languages & Tools > C# - #38
in Kindle Store > Kindle eBooks > Computers & Technology > Programming > C & C++ - #52
in Books > Computers & Technology > Microsoft > Development > C & C++ Windows Programming
Free Pro ASP.NET Web API Security: Securing ASP.NET Web API
This is a fantastic and thorough book, which was exactly what I wanted.
Far and away, my favorite part about this book is the depth to which it explains the technologies that underlie both ASP.NET Web API (namely HTTP) and security, for example X.509 certificates, Federation services, hashing, digital signing and encryption. At every step of the way real code is presented to either use the facilities described or to implement the services in question (even though the implementations are sometimes just for illustration, and not full implementations of production quality systems).
I would flat-out recommend this book to anyone who needs or would like to learn about web technology security. Although you'll have to put up with a little Web API material you might not be specifically interested in, 90% of the book is relevant to all web programming. And even if you aren't interested much in Web API - read it cover to cover anyway. The essence of RESTful web services is leveraging the power of HTTP - which underlies most web related programming I've encountered. And even though the book doesn't specifically address technologies like JSON, CORS, ETags and Cookies, their role in web programming is illuminated though the context of securing Web API, which should help the reader understand these and other subject from a perspective not always addressed in other sources.
Let me stress - much of this book is not specific to Web API. In fact, if you only wanted to secure a web-enabled application of any type, most of this book applies to what you're trying to do. That having been said, if you do need to work on a Web API application, you'll find everything you need right here.
I can tell you that before reading this book, I had played with OAuth 2.