如何为Ajax共享网站和服务之间的认证

I have a WebSite (MVC 4) and WebService (Web API). WebSite has an authentication cookie and it decrypts that in order to send a secure token on to WebService when the WebSite server side code calls the service. That works fine.I have a WebSite (MVC 4) and WebService (Web AP