Web API creating API keys

c# asp.net-web-api api-key
70,390

You are able to achieve by using HMAC Authentication. Basically, there might be a database table called ApiKey (apiKey, secretKey). Each client has each Apikey and secret Key:

  1. ApiKey is like a public key and will be sent over HTTP (similar with username).

  2. Secret Key is not sent over HTTP, use this secret key to do hmac some information and send hashed output to the server. From server side, based on the public key, you can get the relevent secret key and hash information to compare with hash output.

I have posted the detailed answer at: How to secure an ASP.NET Web API

You can change Username by ApiKey and Hashed Password by secret key on my answer to map with your idea.

Share:
70,390
DarthVader
Author by

DarthVader

Updated on July 26, 2020

Comments

  • DarthVader
    DarthVader almost 4 years

    I'm interested in creating API keys for web.api and allowing clients to communicate with API using the API keys rather than authorization web.api provides.

    I want multiple clients to be able to communicate with the web.api. instead of creating username and password, can I use an api key, and allow clients to communicate with client.

    Is there such built-in functionality?

    if one wants to implement it, how would you go around it?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Is it possible to bind Route Value to a Custom Attribute's Property in ASP.NET Core Web API?
Compress HTTP GET Response
Consume web api in SSRS with parameter
Are all the web requests executed in parallel and handled asynchronously?
Yet another ASP.Net WebAPI route not found
How to configure MultipleApiVersions in Swashbuckle using aspnet ApiVersioning
net::ERR_CONNECTION_RESET 200 (OK) when doing GET method
JSON.NET Serialize DateTime.MinValue as null
Error: "System.Net.Sockets.SocketException (0x80004005): An existing connection was forcibly closed by the remote host" on test server
Response "',' is an invalid start of a value. Path: $. in Asp.Net Core API