Explore adding JWT to a Web API project, creating a JWT token, and accessing your secure APIs with it.
- Now that you've seen how they work in theory,…let's add JWT to our Web API project,…and use it to secure all of our API endpoints.…First we'll need to add NuGet package for JWT tokens.…I'll do that by going to the NuGet package manager here,…and I'm going to search for the package,…which is called "Microsoft.Owin.Security.Jwt."…And I'll install that in my project.…
We're using the Owin one because…our Web API project uses Owin for startup.…If you're not using Owin, then you'll need…to use a different NuGet package here.…By adding this package though,…we're also getting some other packages,…such as "System.IdentityModel.Tokens.Jwt",…which is the core of the JWT implementation.…Now that we've added the reference,…let's go to configure JWT at startup.…I'll add a new method here in my startup class,…I'm going to call it "ConfigureJWT",…and I'll have it take an "IAppBuilder" parameter,…called app. And then I'll go make sure I'm calling that…here in my configuration constructor.…
Now we'll add some code inside that method to set up JWT.…
Author
Jonathan "J." Tower
Released
10/17/2018- Convention-based routing
- Binding your code to an HTTP request
- Validating models
- Using attributes to route requests
- Customizing attribute routes
- Data serialization and model binding
- Error handling
- Using exception filters and exception loggers
- API documentation and testing
- Securing your API
Skill Level Beginner
Duration
Views
-
Introduction
-
The power of Web APIs1m 13s
-
What you should know1m 22s
-
-
1. Controllers and Actions
-
Convention-based routing3m 28s
-
Parameter binding conventions10m 59s
-
Parameter binding attributes1m 39s
-
HTTP verb attributes3m 6s
-
Return values9m 23s
-
Validating models4m 51s
-
Using formats besides JSON2m 43s
-
-
2. Routing
-
Routing table6m 41s
-
Attribute routing4m 27s
-
Customizing attribute routes4m 34s
-
-
3. Data Serialization and Model Binding
-
Models and DTOs5m 22s
-
Useful Json.NET settings5m 46s
-
-
4. Error Handling
-
Using HttpResponseException2m 33s
-
Using exception filters7m 26s
-
Using exception loggers4m 6s
-
Global exception handler6m 47s
-
-
5. API Documentation and Testing
-
Documenting with help pages6m 55s
-
API testing client Postman7m 33s
-
-
6. Security
-
Authorize attribute2m 5s
-
AllowAnonymous attribute1m 35s
-
Setting user principal4m 30s
-
Overview of JSON web tokens3m 22s
-
JWT in action8m 23s
-
-
Conclusion
-
Next steps1m 38s
-
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.
Share this video
Embed this video
Video: JWT in action