Authentication, authorization, and security are all important topics to be aware of when it comes to building secure web applications. There is a lot to cover, so we will focus on what's important and relevant to ASP.NET Core web apps.
But first, let's define these three terms:
Authentication: Instead of allowing any website visitor to access your web application, you can use authentication to restrict who can use your application. This can be useful for any application that needs to identify each user before allowing any interaction with it.
Authorization: Once inside your application, you can use authorization to restrict specific parts of the application. This can be useful for allowing some users to perform some tasks not accessible to other users, for example, administrative tasks, editing of data, and so on.
Security: In this context, the term security refers to security vulnerabilities that may affect web applications. This...