So you want to secure your api or you mvc application? And you want to keep it really simple! Well then Basic Auth might be just right for you!
Security in apis are important and we might not want the apis we build to be overly used. This could be to prevent DDoS attacks or to make sure no one tries to brute-force-use your api. To solve this problem I built a small attribute function that allows for throttling of a specific endpoint.
This post is made to be a simple guide for setting up the basics for working with EPiServer and OpenID Connect, it’s based of this guide over at EPiServer World. There will be a few steps about IdentityServer3 as well but not a full setup guide, for that I recommend checking out the documentation.