️ Master the modular monolith architecture: https://bit.ly/3SXlzSt
Accelerate your Clean Architecture knowledge: https://bit.ly/3PupkOJ
Support me on Patreon to access the source code: https://www.patreon.com/milanjovanovic

API key authentication is often used in S2S scenarios. You give the API caller a unique key that they use to authenticate to your API. The API key can be sent in a number of ways. For example, it can be sent in a request header, the query string, or in a cookie. I'll show you how to implement API key authentication in minimal APIs and how to do it with controllers.

Subscribe to my weekly .NET newsletter:
https://www.milanjovanovic.tech

How to implement API key authentication in ASP.NET Core
https://www.milanjovanovic.tech/blog/how-to-implement-api-key-authentication-in-aspnet-core

Read my blog here:
https://www.milanjovanovic.tech/blog

Subscribe for more:
https://www.youtube.com/@MilanJovanovicTech?sub_confirmation=1

Chapter
0:00 Defining an endpoint filter
1:50 Implementing ApiKeyAuthenticationEndpointFilter
6:45 How an endpoint filter works
8:37 Validate the API key
12:32 Alternatives to sending the API key in the header
13:22 Alternatives to storing API keys in the application configuration
14:12 API key authentication with controllers

Please take the opportunity to connect with your friends and family and share this video with them if you find it useful.