1.
How does Token based Authentication works?
2.
Explain the sections of JWT Token?
3.
What are Identity and claims?
4.
Differentiate between Authentication VS Authorization?
5.
Claims vs Roles?
6.
Principal vs Identity
7.
Can we put critical information in JWT Token?
8.
How do you create JWT Token in MVC ?
9.
Where is Token Checked in ASPNET MVC ?
10.
What is use of Authorize Attribute?
11.
How did you implement JWT token security ?
12.
What HTTP status code do you send for unauthorized access
?
13.
How do we send tokens from Client Side?
14.
From Javascript,Jquery,Angular etc , How is token passed
?
15.
Increase UX experience in Mobile apps to avoid relogin ?
16.
What is a refresh tokens?
17.
Differentiate between Access tokens and Refresh tokens?
18.
Differentiate between Access tokens and Refresh tokens?
19.
How does Refresh token work ?
20.
Whose expiry time is more Access tokens or Refresh tokens
?
21.
Explain revocation of Refresh token?
22.
How to extract Principal from a Token ?
23.
What is the best practice to store tokens at client side?
24.
If we store JWT in cookie how to save from XX attacks?
25.
OAUTH vs OpenID vs OpenIdConnect vs JWTToken ?
26.
When should we use what?
27.
What is Identity Server ?
28.
How to implement Single Sign on ?
29.
What is a scope in IdentityServer ?