Security is a very hot topic nowadays; no company can afford to have their customers' data exposed as seen in recent times, which is very unfortunate. Security is not just about data; it covers a lot of aspects. It's not just about restricting access to a website or to specific parts of it; it is about preventing the upload of malicious content, storing configuration (and other) data, allowing access to scripts for specific origins, and, most importantly, creating a secure channel for communicating between clients and the server.
After reading this chapter, you will have a very good understanding of the many aspects of security surrounding an ASP.NET Core application.
We will cover the following topics in this chapter:
- Authenticating users
- Authorizing requests
- Checking requests for forgery
- Applying HyperText Markup Language (HTML) encoding ...