Hi,
I've web api application which is being used by mobile client application.
I am using asp.net identity and want to use authorization based on token.
So I want
1. Generate token when user login on one mobile device and send back to it for subsequent requests
2. Validate/authorize token on every other api request
3. Invalidate token on first mobile device if same user is trying to login in app on another device, so that he can be logged in only one device at a time
4. Invalidate token if user logs out
Please tell me how to do all above 4 things, I am not using external login (facebbok/google/twitter) rather I am using simple login by username and password.
Thanks
Vinod K.