Skip to main content
Home  ›  Blog

WebAPI 2.4 Special Security Features

In my second mini-series about WebAPI we'll look at a real-life solution.  We've already looked at HTTP-Verbs, Server- and Client-Controllers. Now we'll look at some DNN-Specials mostly related to security.

Pre-Requisites

  • I would recommend to watch the Basic-Series Parts 1.1, 1.2 and 1.3 since it explains the very basics of WebAPI.
  • Since this is part 2.2, you would also benefit from starting with 2.1, 2.2 and 2.3.
  • Even if you don't, make sure you have a working DNN with 2sxc 6.4 installed ( see this blog for help).
  • The App you'll install can be found in the App-Catalog - direct link here

In the following 4 minute Video, I'll show you

  1. The Security-Token - and configuring the desired mode with [ValidateAntiForgeryToken]
  2. The What-Module-Am-I-On security feature
  3. …and how this relates to the current users module-permissions
  4. …and how you can change the level you require with Attributes like [DnnModuleAuthorize(AccessLevel = SecurityAccessLevel.Anonymous)]

Let's go!

Further links

With love from Switzerland,
Daniel 


Daniel Mettler grew up in the jungles of Indonesia and is founder and CEO of 2sic internet solutions in Switzerland and Liechtenstein, an 20-head web specialist with over 800 DNN projects since 1999. He is also chief architect of 2sxc (see github), an open source module for creating attractive content and DNN Apps.

Read more posts by Daniel Mettler