I read at multiple place about ASP.NET as mixed bag for cookie & oauth authentication.I have multiple doubts & questions around authenticating the web server application to access web api. If they can be answered combinely in same question, it will solve a holistic problem.
1) Does ASP.NET Core MVC UI application needs cookie authentication even if want it to use it as an an UI which will be calling web api(implemented with OAuth)
2)Can I implement oAuth mechanism for ASP.NET Core MVC Web App UI & WEB API on same server & same project. If yes, how to achieve that ?
3)Can I implement oAuth mechanism for ASP.NET Core MVC Web App UI & WEB API on different server & different project. If yes, how to achieve that ?
4) Does ASP.NET MVC always needs cookie in the picture. And when cookie comes, I guess session will be there on server.