Part 5 Authentication and authorization

For many websites, users need to be able to log in, and the application needs to decide whether or not users are allowed to perform an action. This gets more complicated when using the same login provider for various sites (single sign-on) or when working with APIs or single-page applications (SPAs).

Chapter 12 introduces ASP.NET Core Identity, the built-in system in ASP.NET Core that allows users to register, sign in and out, and more. In chapter 13, different protocols and standards for security APIs and SPAs are discussed, explained, and implemented.