Completed
Guidelines
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Common REST API Security Pitfalls
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Demo
- 3 About me
- 4 API
- 5 HTTP
- 6 Guidelines
- 7 HTTPStrict Transport Security
- 8 Warming Up
- 9 Application Layer
- 10 Endpoints
- 11 State Changing Operations
- 12 Missing Authorization
- 13 Session Information
- 14 Clientside Session Data
- 15 JSON Web Token
- 16 Decode Functions
- 17 Token Misuse
- 18 JSON Web Token Rabbit Hole
- 19 Cookies
- 20 Authorization Header
- 21 Attachment to outgoing requests
- 22 Default solutions
- 23 Crosssite request forgery
- 24 Transparent token
- 25 Crossorigin resource sharing
- 26 Custom headers
- 27 Cookies for API
- 28 Input validation
- 29 Input validation best practices
- 30 Over or under estimating input validation
- 31 Build secure stuff