Introduction to REST API Security Guidelines
Covers some of the most important REST API security guidelines like: Authorization and Authentication, Input Validation, TLS, Encryption, Status Codes...| REST API and Beyond
What is API Security? API security is the application of any security best practice applied to web APIs, which are prevalent in modern applications. API security includes API access control and privacy, as well as the detection and remediation of attacks on APIs through API reverse engineering and the exploitation| REST API and Beyond
One of the features in RestCase is that it scans your API definitions for both Security and Quality issues and shows insights about them. We managed to scan about 50 public APIs and aggregated the results in order to write about the top 5 security issues and how to solve| REST API and Beyond
Today, the best practice when implementing APIs on a large scale is to start with an API design stage. This approach is called API design-first, sometimes also known as API-first, schema-first, or design-first. The design-first approach advocates for designing the API’s contract first before writing any code. This is| REST API and Beyond
Common REST API design problems when working on building APIs and microservices like Error Responses, Body in GET method, Too big response sizes and latency| REST API and Beyond
Overview of the current and future of API security trends like Machine Learning-driven, Artificial Intelligence-driven and Security Design First-driven.| REST API and Beyond
APIs are channels of communications, through which applications can “talk”. To create a connection between applications, REST APIs use HTTPS. HTTP requests pass through the API channel of communication and carry messages between applications. Threat actors target REST APIs because they’re after the data stored in HTTP requests. Threat| REST API and Beyond
An API, or Application Programming Interface, is how software talks to other software. Every day, the variety of APIs and the volume of API calls are growing. Every web and mobile application out there is powered by APIs. By nature of the APIs, many of them have a direct line| REST API and Beyond
There are any proprietary authentication methods and many variations of a few major approaches. Let's review the 4 most popular ones used by REST APIs| REST API and Beyond
The OpenAPI Specification has a whole world of uses like API documentation, Code generation, Mocking, Testing and much much more.| REST API and Beyond
Internet security is a topic which has been discussed increasingly quite often by technology blogs and forums and with valid reason: the numerous high profile security breaches have grown up significantly in recent years. Security is of great importance, especially in the world of REST APIs. API security is the| REST API and Beyond
4 maturity levels of REST API with a more vide view along with REST API Design concepts like Versioning, Actions, Errors, Pagination and more.| REST API and Beyond
A step by step guide on how to deploy a NodeJS application on Azure Web App. Starting from creating a build pipeline and then a release pipeline.| REST API and Beyond
We often think of API definition as beginning with the description file, most of us are using swagger or OpenApi. The challenge with this approach is that API producers often get into the weeds on resource names and methods before actually determining what the API capabilities need to be. When| REST API and Beyond
Not many know that there is a published RFC-7807 that defines a global "problem detail", or global errors that can be reused in many REST APIs.| REST API and Beyond
Covers some of the most important REST API security guidelines like: Authorization and Authentication, Input Validation, TLS, Encryption, Status Codes...| REST API and Beyond
