Summary
A security token is a container of claims packaged for secure transportation over the network. As the carrier of claims, security tokens have an important role to play in the claims-based security model covered in Chapter 5. A token issuance authority issues a token to a client application after authenticating the user credentials. The client application then presents this token to the relying party (RP) application as a user credential. The RP application verifies the token and establishes the identity for the user based on the claims contained in the token.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Rights and permissions
Copyright information
© 2013 Badrinarayanan Lakshmiraghavan
About this chapter
Cite this chapter
Lakshmiraghavan, B. (2013). Web Tokens. In: Pro ASP.NET Web API Security. Apress, Berkeley, CA. https://doi.org/10.1007/978-1-4302-5783-7_10
Download citation
DOI: https://doi.org/10.1007/978-1-4302-5783-7_10
Publisher Name: Apress, Berkeley, CA
Print ISBN: 978-1-4302-5782-0
Online ISBN: 978-1-4302-5783-7
eBook Packages: Professional and Applied ComputingApress Access BooksProfessional and Applied Computing (R0)