This channel has expedite my kearning to backend development. The years I missed on learning about fullstack development made me catch up all because of this account.
Thank you so much for these valuable info. so, I want ask you about something what is the auth service in service side can I use it for example to duplicate the security level ? THANKS !
So this advice and architectural design patterns and idioms is for Restful browser based applications. It would good to see recommendations for others types of api design senariois that don't use Restful, stateless architectures.
csrf is not possible on restful apis if (or because) it doesnt use a cookie No cookies = No CSRF If you do not use cookies, and don't rely on cookies for authentication, then there is absolutely no room for CSRF attacks, and no reason to put in CSRF protection
13 And no man hath ascended up to heaven, but he that came down from heaven, even the Son of man which is in heaven. 14 And as Moses lifted up the serpent in the wilderness, even so must the Son of man be lifted up: 15 That whosoever believeth in him should not perish, but have eternal life. 16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life. 17 For God sent not his Son into the world to condemn the world; but that the world through him might be saved. 18 He that believeth on him is not condemned: but he that believeth not is condemned already, because he hath not believed in the name of the only begotten Son of God. 19 And this is the condemnation, that light is come into the world, and men loved darkness rather than light, because their deeds were evil. 20 For every one that doeth evil hateth the light, neither cometh to the light, lest his deeds should be reproved. 21 But he that doeth truth cometh to the light, that his deeds may be made manifest, that they are wrought in God. (Jn.3:13-21)
I can't help but notice how the content is taught simply and concisely with a calm tone eradicating the complexity of the topic. Loved it.
1. Https
2. OAuth2
3. WebAuthn
4. Implement Authorization
5. Leveled API Keys
6.Rate Limiting
7. API Versioning
8.Allow Listing
9. OWASP Security Risks
10.API Gateway
11. Error Handling
12. Input Validation
Thank you 🙏🏽💎
You the man
This channel has expedite my kearning to backend development. The years I missed on learning about fullstack development made me catch up all because of this account.
This channel is a GEM, thank you very much Sir. from South Africa.
This is so well crafted. Clear and Concise. Thank you!
Thanks for making these high quality content for free man!
Thanks for the great video and teaching all of us API security in almost 9 minutes.
What do you use to create this nice graphical tutorials?
Man. You gotta love this channel.
Thank you so much for these valuable info. so, I want ask you about something what is the auth service in service side can I use it for example to duplicate the security level ?
THANKS !
Hello team - Thanks for a cool video tutorial - the audio and subtitles are not in sync in this video which could be confusing sometimes.
Curious if you would tell us what presentation tool you are using for these videos ?
So this advice and architectural design patterns and idioms is for Restful browser based applications. It would good to see recommendations for others types of api design senariois that don't use Restful, stateless architectures.
Sir, great work. What tools or software do you use for above tutorials?
need more security topics coverage. please create more like this one.
hi, thanks for yet another great video! I wonder if you could share which programme that you use to create this video? that is amazing!
Hey, love your videos. Which technologies you use for such animations?
Thanks! Do you think it's enough to have Authentication in Gateway service only?
Excellent examples! It’s clean and concise
Love This
Well explained, many things covered in a small video, Thank you
Excellent content! Thanks for explaining in a simplified format!
You inspired me to make great explainers. Great video as always💙
Lovely presentation packing with great info, thank you!
Crystal clear thanks !
Why did you disable the subtitles ?
What about Cross-Origin Resource Sharing (CORS) to secure api?
Cool!
13. CSRF attack, fix it by adding a token synchroniser pattern.
csrf is not possible on restful apis if (or because) it doesnt use a cookie
No cookies = No CSRF
If you do not use cookies, and don't rely on cookies for authentication, then there is absolutely no room for CSRF attacks, and no reason to put in CSRF protection
Great content
Nice animation
Good job. Informative & well explained.
💯th "Like!" Thanks, BBG! 😎✌️
Thank you!
0:28 Captions go off script.
The subtitles do not match the video.
nice sir
Get into API & libs to plug-in for ai llm nn
gold
For free????
As everything should be
Free for?
Free but could be appreciated... For free? question of the century?
cool
How to do rate limiting ? what is the best method?
🎉🎉
13 And no man hath ascended up to heaven, but he that came down from heaven, even the Son of man which is in heaven.
14 And as Moses lifted up the serpent in the wilderness, even so must the Son of man be lifted up:
15 That whosoever believeth in him should not perish, but have eternal life.
16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life.
17 For God sent not his Son into the world to condemn the world; but that the world through him might be saved.
18 He that believeth on him is not condemned: but he that believeth not is condemned already, because he hath not believed in the name of the only begotten Son of God.
19 And this is the condemnation, that light is come into the world, and men loved darkness rather than light, because their deeds were evil.
20 For every one that doeth evil hateth the light, neither cometh to the light, lest his deeds should be reproved.
21 But he that doeth truth cometh to the light, that his deeds may be made manifest, that they are wrought in God.
(Jn.3:13-21)
omg this is very important, I use design api and dataflows at architecture diagram :)
nice video