Setting up a database table to store user information and have a webAPI method to login is just the beginning. Once a user is logged in you need to return a token for subsequent calls, and store that somewhere so the user doesn’t have to constantly pass their username and password. The database can store user roles and rights allowing the user access to only certain calls or privileges. This course takes a simple view at doing this from scratch with a simple SQL database, .NET WebAPI and an HTML front end. We will also look at testing our WebAPI in Postman. By the end of the course a base security scheme can be achieved and further built upon.