Articles, tutorials and library reference docs to help you quickly learn and master ASPSecurityKit


This article introduces ASPSecurityKit – the fundamental goals and principles guiding its design/development, two forms (library and source packages) in which ASPSecurityKit helps you rapidly build zero-trust based secure yet easily maintainable web applications and AAPI platforms. Also, learn about the supported platforms (web frameworks).

Updated on March 15, 2021

Getting Started

A step-by-step walkthrough to guide you setup a new project with end-to-end protection of multi-stage security pipeline and several important workflows such as sign up, sign in, account settings (changing username, password, basic details), email verification and forgot password workflows, and much more, without writing a single line of code. Steps include creating a new project, installing ASPSecurityKit library and source packages, generating license key, creating the database using installed migrations, testing the new project, and more.

Updated on March 8, 2021

Key Concepts

Learn about various terms, concepts and constructs you’ll frequently come across when reading about and using the ASPSecurityKit including but not limited to: permissions, permits, permit groups, identity and identity tokens, api keys, user sessions etc.

Updated on March 8, 2021

The Security Pipeline

A must-read article to have a comprehensive understanding of the ASPSecurityKit’s security pipeline (and related features/components) – a multi-stage security checks and verification process that includes but not limited to cross-site scripting (XSS), authentication (supporting multiple schemes/methods), multi-factor authentication (MFA), IP firewall, suspension, account verification, activity-based, data-aware authorization, and much more.

Updated on March 8, 2021

Authentication Schemes

In this article, you’ll learn about various authentication schemes provided by ASPSecurityKit for various integration scenarios such as HMAC, Service-HMAC, AuthCookie and Service-Key. You’ll also learn about important identity validation logic performed during authentication such as IP-firewall, origin restriction, sensitive key protection etc.

Updated on March 8, 2021

How to perform activity-based, data-aware authorization (ADA)

A deep dive into the ASPSecurityKit’s revolutionary activity-based, data-aware authorization (ADA) feature – learn about the implementation details, the default conventions that set you up with ADA protecting web operations and existing data with little to know application logic required, various ways you can override the conventions to adapt it to your project needs, and much more.

Updated on March 10, 2021


In this article you’ll learn about two kinds of suspension – user and entity – supported in ASPSecurityKit for advance business applications.

Updated on March 10, 2021

License Management

In this article you’ll learn about meanings of various terms related to ASPSecurityKit licensing, trial restrictions, license key validity, Permissible mix-use and step-by-step guidance on how to manage project subscriptions, buy more developer licenses, subscriptions and source packages.

Updated on March 8, 2021

Using the ASPSecurityKit.Tools

In this article you’ll learn about ASPSecurityKit.Tools and how to use it to install source packages, generate and update ASPSecurityKit license keys and helpful troubleshooting tips for known potential issues that you may encounter.

Updated on April 14, 2021

Source Packages

Learn about what is a source package, compare different grades of source packages offered by ASPSecurityKit (Essential, Starter and Premium). Also learn about exactly what features each source package includes, that you’ll get as source code, through brief textual overview, UI screenshots (MVC packages) and snippets of rest requests/responses (API packages).

Updated on March 31, 2021


Shows package release details(TBU).

Updated on February 13, 2021

API Reference

Reference documentation for all ASPSecurityKit libraries

Updated on December 24, 2020