.NET 7 Web API 🔒 Create JSON Web Tokens (JWT) - User Registration / Login / Authentication 

if you are facing an error like Unable to create KeyedHashAlgorithm for algorithm 'HS512', the key size must be greater than: '512' bits, key has '256' bits. Arg_ParamName_Name. Just increase the token size in your settings.json

This is personally my favorite part of your tutorials. All the way to refresh tokens. Thanks for this.

This is my most simpliest favorite authentication tutorial especially using hashPassword. Awesome Job Patrick!

nice. من ایرانی هستم. ممنون بابت اموزش عالی.💕💕💕💕💕💕💕💕💕💕

I just Love the way you explain bro , thank you so much and carry on please 🙏🙏🙏

good reference in last test part

Superb explanation as usual Patrick. Thank you.

Hello Patric I like your teaching style and also love your codding style 🥰

I love your style, very much the way I like to code.

Excellent bro, it was interesting!

Hi Patrick. I'm following your videos since the .NET 6 version of this topic. I remember back then you used HMACSHA512 to generate the password Salt. Does this mean HMACSHA512 will always generate the same Salt for the same input even though is in byte[] format?

Please make video for logout in JWT token by invalidating token without storing token in database

Good tutorial!

Thank you so much Patrick.

Hello patrick How to store the Data in the sql database user login and regsitration ?

Could you please tell us how we can logout the user? thanks

🚀 Get 20% off the .NET Web Academy: www.dotnetwebacademy.com/bundles/net-web-academy?coupon=dnwa2024yt

Great video and explanation, thank you very! 😎✌

@PatrickGod There's no explanation as to how inputing Bear Token in the Swagger, unless I missed it?

so useful, thank you

i sheesh with that code very simple, thanks bro

You are Perfect thank you.

Nice video

Why in the world would an api need to know more than just the fact it’s an authenticated user and has access? The UI should do the login and then pass the token generated then with a call that passes they are authenticated and maybe a app id to validate that said app has access to it.

thank you , 💖💖

Nice one, can you do a video on User impersonation using JWT ? Thanks

May I have a question about security? JWT is nice but is it a good idea to store there email or some user's data? Is'nt it better to control and check the JWT in the database if the user is logged in or not? Or what's the bet idea in this way how to secure the API?

my jwt is not validating after i create it can you help me?

Bro, _configuration gives red flag, what's possibly the cause?

Please help. How do I make a API that returns a list of records filtered by the personId? I used the scaffolding API wizard. This is killing me. I have it working for getting all the records, but I can’t seem to add a Where clause. Thanks!!

Is anyone know how to run this in postman..?

Hey can you make it with sql connection and some other features like pagination

Token generated on stagging environment works in production and development too, can someone help how can separate token based on environment

When you call weather api how does it know to automatically call the auth/login controller to generate the token ? Where is this connection defined exactly ?I don't get it

I'd like to ask this. What is the advantage of using a custom authentication system rathen than using AD for instance? I know when one creates a project in VS, we have the option to select a auth system and it will be implemented and we can twist it.

Not useful

Why "SecurityAlgorithms.HmacSha512Signature" but not "SecurityAlgorithms.HmacSha512"?