Top 12 Tips For API Security

Поделиться
HTML-код
  • Опубликовано: 22 дек 2024

Комментарии • 50

  • @ShaluSharma-fu6bo
    @ShaluSharma-fu6bo 5 месяцев назад +15

    I can't help but notice how the content is taught simply and concisely with a calm tone eradicating the complexity of the topic. Loved it.

  • @mayankgupta2721
    @mayankgupta2721 8 месяцев назад +42

    1. Https
    2. OAuth2
    3. WebAuthn
    4. Implement Authorization
    5. Leveled API Keys
    6.Rate Limiting
    7. API Versioning
    8.Allow Listing
    9. OWASP Security Risks
    10.API Gateway
    11. Error Handling
    12. Input Validation

  • @vonnblagaming984
    @vonnblagaming984 4 месяца назад +2

    This channel has expedite my kearning to backend development. The years I missed on learning about fullstack development made me catch up all because of this account.

  • @brianbayer4868
    @brianbayer4868 8 месяцев назад +9

    This channel is a GEM, thank you very much Sir. from South Africa.

  • @parthmahale8805
    @parthmahale8805 8 месяцев назад +14

    This is so well crafted. Clear and Concise. Thank you!

  • @RSKEDITS
    @RSKEDITS 8 месяцев назад +15

    Thanks for making these high quality content for free man!

  • @malhaar707
    @malhaar707 7 месяцев назад +1

    Thanks for the great video and teaching all of us API security in almost 9 minutes.
    What do you use to create this nice graphical tutorials?

  • @sergenalishiwa9097
    @sergenalishiwa9097 8 месяцев назад +3

    Man. You gotta love this channel.

  • @hany4649
    @hany4649 7 месяцев назад +1

    Thank you so much for these valuable info. so, I want ask you about something what is the auth service in service side can I use it for example to duplicate the security level ?
    THANKS !

  • @honeycombloungemusic
    @honeycombloungemusic 7 месяцев назад +1

    Hello team - Thanks for a cool video tutorial - the audio and subtitles are not in sync in this video which could be confusing sometimes.

  • @gkmusic2008
    @gkmusic2008 4 месяца назад +1

    Curious if you would tell us what presentation tool you are using for these videos ?

  • @ODSD_EXCITEMENT
    @ODSD_EXCITEMENT 8 месяцев назад +2

    So this advice and architectural design patterns and idioms is for Restful browser based applications. It would good to see recommendations for others types of api design senariois that don't use Restful, stateless architectures.

  • @shahmohms
    @shahmohms 7 месяцев назад +1

    Sir, great work. What tools or software do you use for above tutorials?

  • @THOTHO-ie5lz
    @THOTHO-ie5lz Месяц назад +1

    need more security topics coverage. please create more like this one.

  • @XiaomingCai
    @XiaomingCai 8 месяцев назад +1

    hi, thanks for yet another great video! I wonder if you could share which programme that you use to create this video? that is amazing!

  • @prakashinisrivastava6523
    @prakashinisrivastava6523 Месяц назад +1

    Hey, love your videos. Which technologies you use for such animations?

  • @kiryl7345
    @kiryl7345 8 месяцев назад +1

    Thanks! Do you think it's enough to have Authentication in Gateway service only?

  • @jliu7118
    @jliu7118 6 месяцев назад +1

    Excellent examples! It’s clean and concise

  • @CortezLabs
    @CortezLabs Месяц назад +1

    Love This

  • @jitendrarajput8935
    @jitendrarajput8935 4 месяца назад +1

    Well explained, many things covered in a small video, Thank you

  • @jeyashreelogesh5405
    @jeyashreelogesh5405 8 месяцев назад +1

    Excellent content! Thanks for explaining in a simplified format!

  • @ByteBite101
    @ByteBite101 8 месяцев назад +2

    You inspired me to make great explainers. Great video as always💙

  • @peterklemenc6194
    @peterklemenc6194 8 месяцев назад +1

    Lovely presentation packing with great info, thank you!

  • @AlexandreBOLLEREDDAT
    @AlexandreBOLLEREDDAT 7 месяцев назад +1

    Crystal clear thanks !

  • @FayYoutube
    @FayYoutube 6 месяцев назад +1

    Why did you disable the subtitles ?

  • @amitghuge7318
    @amitghuge7318 8 месяцев назад

    What about Cross-Origin Resource Sharing (CORS) to secure api?

  • @AYYO
    @AYYO 8 месяцев назад +3

    Cool!

  • @KatariyaDeepak
    @KatariyaDeepak 8 месяцев назад +12

    13. CSRF attack, fix it by adding a token synchroniser pattern.

    • @danielschmider5069
      @danielschmider5069 8 месяцев назад +1

      csrf is not possible on restful apis if (or because) it doesnt use a cookie
      No cookies = No CSRF
      If you do not use cookies, and don't rely on cookies for authentication, then there is absolutely no room for CSRF attacks, and no reason to put in CSRF protection

  • @talktotask-ub5fh
    @talktotask-ub5fh 7 месяцев назад +2

    Great content

  • @vnit4security
    @vnit4security 8 месяцев назад +5

    Nice animation

  • @kubbomicheal9996
    @kubbomicheal9996 8 месяцев назад +1

    Good job. Informative & well explained.

  • @gus473
    @gus473 8 месяцев назад +1

    💯th "Like!" Thanks, BBG! 😎✌️

  • @raj_kundalia
    @raj_kundalia 7 месяцев назад

    Thank you!

  • @augustsbautra
    @augustsbautra 7 месяцев назад

    0:28 Captions go off script.

  • @purnimajain9959
    @purnimajain9959 7 месяцев назад +1

    The subtitles do not match the video.

  • @MuhammadUsmanKhan-sw8lm
    @MuhammadUsmanKhan-sw8lm 8 месяцев назад +1

    nice sir

  • @go0ot
    @go0ot 8 месяцев назад +1

    Get into API & libs to plug-in for ai llm nn

  • @chokmah3926
    @chokmah3926 4 месяца назад +1

    gold

  • @rajaulghufran
    @rajaulghufran 8 месяцев назад +34

    For free????

    • @alisoltani5636
      @alisoltani5636 3 месяца назад

      As everything should be

    • @Elba_Nanito_Rico
      @Elba_Nanito_Rico 3 месяца назад

      Free for?

    • @abahiduh3246
      @abahiduh3246 2 месяца назад

      Free but could be appreciated... For free? question of the century?

  • @jialiangsong2871
    @jialiangsong2871 20 дней назад +1

    cool

  • @indramal
    @indramal 8 месяцев назад +2

    How to do rate limiting ? what is the best method?

  • @JafarH-ip5qh
    @JafarH-ip5qh 7 месяцев назад +1

    🎉🎉

  • @ol_suh
    @ol_suh 28 дней назад +1

    13 And no man hath ascended up to heaven, but he that came down from heaven, even the Son of man which is in heaven.
    14 And as Moses lifted up the serpent in the wilderness, even so must the Son of man be lifted up:
    15 That whosoever believeth in him should not perish, but have eternal life.
    16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life.
    17 For God sent not his Son into the world to condemn the world; but that the world through him might be saved.
    18 He that believeth on him is not condemned: but he that believeth not is condemned already, because he hath not believed in the name of the only begotten Son of God.
    19 And this is the condemnation, that light is come into the world, and men loved darkness rather than light, because their deeds were evil.
    20 For every one that doeth evil hateth the light, neither cometh to the light, lest his deeds should be reproved.
    21 But he that doeth truth cometh to the light, that his deeds may be made manifest, that they are wrought in God.
    (Jn.3:13-21)

  • @juliocryv
    @juliocryv 8 месяцев назад +1

    omg this is very important, I use design api and dataflows at architecture diagram :)
    nice video