CreateIdentityAsync
Will return the ClaimsIdentity to be used in the ClaimsPrincipal of the running context, which is further abstracted in...
An AuthenticationTicket
is just a packaging of exactly what is passed in, for convenience.
context.Validated
will add the information in the ticket to the current principal, and allow the OWIN pipeline to continue instead of returning a 401.
The reason for the cookiesIdentity
is to allow authentication from the MVC pages in the template. It really is not used for the WebApi.