This post is the December 9th entry in the 2018 C# Advent Series. Shout out to Matt for adding me on the roster!
As .NET developers, we will likely run into situations where a client or organization requests an a means for accessing sensitive data. The front-end interface may be a web interface, desktop client, or even a mobile application. These front-ends will access a back-end REST service that pulls in numerous objects from a data source.
How do we secure data access? The easiest answer is to make sure each data request is authenticated with tokens received from an identity framework. To demonstrate a simple way this can be achieved, I'm going to walk-through configuring IdentityServer4 to secure an API that will be consumed by an iOS application built with Xamarin Forms.