OAuth Part 1: Protecting an ASP.net Web API hosted on Azure with OAuth Simple Web Tokens using the Access Control Service – Server Side Introduction I've been in this situation many times, I have an API that needs an authenticated user to access it, how can this problem be solved? You could pass the username