Masking sensitive configuration data?

✅ Best practices:

• Don't log sensitive values
• Use [JsonIgnore] or remove values before logging
• Mask in logs manually:

_logger.LogInformation("Token: {Token}", Mask(token));

• Never store secrets in source-controlled files (appsettings.json)
• Use user-secrets, Key Vault, or environment variables instead

Authentication & Authorization

(JWT, Identity)