Securing APIs, IT PRO Meetup part2

IT Pro Meetup (part 2) – Securing APIs

The second topic covered in the Burgas IT Pro Meetup is Securing RESTful APIs by Zlatomir Haralambov. He is a senior software engineer in Codific mainly involved in projects focussing on security. He said that – some people may try to convince you that you can create a secure API within 10 minutes, but you shouldn’t get fouled. There is a lot of stuff that you have to keep in mind when you work on the security part of your project. You won’t let your car unlocked, why would you do so with your data. Implementing and deploying APIs in a secure manner is essential and Zlati showed us a few tips and tricks.

Mandatory use of the HTTPS.
Implementation of Rate limits.
Proper Authorization
Security Tokens in the Header and the Cookies
CSRF attacks protection
Enforcement of strict CORS policies
Cookies vs JWT vs Authorization headers

Check the video to see if your are missing something on Securing APIs. Stay protected, stay secure!

You can also check part 1- Temple OS

Hungry for more of this?


Subscribe to our blog! Get the latest news and the hottest tips and tricks.
We won't spam you - we promise.


Related Posts

Codific team building, Codific team 2019

21

Oct
Team building

Codific Gathers up For Another Round of Team Building

At the end of September, our teams from Burgas, Sofia, and Belgium gathered up on our regular Codific team building event. There we share a little bit of know-how and of course have some good vibes together. We’ll tell you in a flash about our counter strike bash and the annual meeting which was a smash. On […]

13

Sep
Company News

Codific opens a new office in Sofia

We are pleased to announce that on 2 September we opened our new Codific office in Sofia. It’s located within the OverTaim co-working space building. This is our second office space in Bulgaria – the first one being in Burgas. The event is part of our company growth strategy. Codific always looks out for DEV talents to[…]