OAuth (OAuth2) ASP.NET REST Web API (Self host - windows service) implementation -

OAuth (OAuth2) ASP.NET REST Web API (Self host - windows service) implementation -

i have built restful web api (android) mobile application, , trying secure access api. reading week on topic , got whole spectrum - is impossible secure restful api https (ssl) enough.

here don't want start give-and-take that.i have settled oauth or oauth2 doesn't matter(as far have read oauth seems improve choice, in microsoft tutorials utilize oauth 2, here quite confused), , yes know different, frustrated of searching take either (i must admit expceted much easier). said, searching week, , got concepts(a lot of them). send info -magic start - username/password server, info beingness processed , token - magic stop-. on there lot of questions on topic of answers unprecise (and unfortunately unusuable). illustration got 1 how secure web api, nice answers, not utilize of them, or 1 implement web api oauth , single page application. got examples microsoft tutorials there lot of overhead in code , part oauth isn't quite clear(which unfortunate because whole illustration should oauth). post tons of links claim talk topic, of no help.

what looking simple, very simple, illustration of asp.net oauth(2) implementation. great if utilize fiddler, provide username/password in header , utilize of grant_type: xxx token back(the permitted username/password can hard coded within project, no need entity framework implementation or database on backend). , great if explain me how utilize token authorize user (i got have provide controller functions [authorize] attribute, how , token-check beingness done ?). please, don't post theory oauth, don't need that, here looking actual implementation of oauth within of asp.net web api

thanks

here detailed post adding resource owner password credentials flow web api project.

asp.net rest asp.net-web-api oauth oauth-2.0