Book Image

Building RESTful Web Services with .NET Core

By : Gaurav Aroraa, Tadit Dash
Book Image

Building RESTful Web Services with .NET Core

By: Gaurav Aroraa, Tadit Dash

Overview of this book

REST is an architectural style that tackles the challenges of building scalable web services. In today's connected world, APIs have taken a central role on the web. APIs provide the fabric through which systems interact, and REST has become synonymous with APIs. The depth, breadth, and ease of use of ASP.NET Core makes it a breeze for developers to work with for building robust web APIs. This book takes you through the design of RESTful web services and leverages the ASP.NET Core framework to implement these services. This book begins by introducing you to the basics of the philosophy behind REST. You'll go through the steps of designing and implementing an enterprise-grade RESTful web service. This book takes a practical approach, that you can apply to your own circumstances. This book brings forth the power of the latest .NET Core release, working with MVC. Later, you will learn about the use of the framework to explore approaches to tackle resilience, security, and scalability concerns. You will explore the steps to improve the performance of your applications. You'll also learn techniques to deal with security in web APIs and discover how to implement unit and integration test strategies. By the end of the book, you will have a complete understanding of Building a client for RESTful web services, along with some scaling techniques.

Related Content you might be interested in

Current Title:

Small book image
Building RESTful Web Services with .NET Core
Gaurav Aroraa | Tadit Dash
May, 2018 | 334 pages
No titles found
Table of Contents (13 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Getting Started
Getting Started
Discussing RESTful services
ASP.NET Core and RESTful services
Summary
2
Building the Initial Framework – Laying the Foundation of the Application
Building the Initial Framework – Laying the Foundation of the Application
SOAP
REST
Setting up the environment
SOAP versus REST
Single-page application model
Service-oriented architecture
Summary
3
User Registration and Administration
User Registration and Administration
Why authentication and limiting requests?
Database design
User registration
Adding basic authentication to our REST API
Adding OAuth 2.0 authentication to our service
Client-based API-consumption architecture
Summary
4
Item Catalogue, Cart, and Checkout
Item Catalogue, Cart, and Checkout
Implementing controllers
Product listing
Product searching
Adding to cart
Implementing security
Placing orders
Exposing shipping details
Summary
5
Integrating External Components and Handling
Integrating External Components and Handling
Understanding the middleware
Adding logging to our API in middleware
Summary
6
Testing RESTful Web Services
Testing RESTful Web Services
Test paradigms
Testing approach
Types of tests
Summary
7
Continuous Integration and Continuous Deployment
Continuous Integration and Continuous Deployment
Introduction – deployment terminology
The Azure environment
Publishing/hosting
Summary
8
Securing RESTful Web Services
Securing RESTful Web Services
OWASP security standards
Securing RESTful web services
Authentication and authorization in action
Summary
9
Scaling RESTful Services (Performance of Web Services)
Scaling RESTful Services (Performance of Web Services)
Clustering
Load balancing
Introduction to scalability
Distributed caching
Summary
10
Building a Web Client (Consuming Web Services)
Building a Web Client (Consuming Web Services)
Consuming RESTful web services
Building a REST web client
Implementing a REST web client
Summary
11
Introduction to Microservices
Introduction to Microservices
Overview of microservices
Understanding microservice architecture
Communication in microservices
Why we should use microservices
How a microservice architecture works
Advantages of microservices
Scaling
DevOps culture
Microservices ecosystem in ASP.NET Core
Summary
12
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Implementing security

This is where security comes in, namely, authentication. As discussed in Chapter 3, User Registration and Administration, basic authentication can be applied with the help of handlers, or bearer authentication can be applied with the help of tokens.

First, let's generate CartsController using the same steps as previously. We now need to apply the [Authorize] attribute to the controller directly, so that all operations in the cart can be authenticated. Our app is already set up to handle bearer authentication.

The following is a code snapshot of CartsController:

[Produces("application/json")]
[Route("api/Carts")]
[Authorize]
public class CartsController : Controller

Due to the [Authorize] attribute, this controller won't allow you to access the GET, POST, PUT, and DELETE action methods if you don't provide the access token.

...
Previous Section
End of Section 6
Next Section