This channel has expedite my kearning to backend development. The years I missed on learning about fullstack development made me catch up all because of this account.
csrf is not possible on restful apis if (or because) it doesnt use a cookie No cookies = No CSRF If you do not use cookies, and don't rely on cookies for authentication, then there is absolutely no room for CSRF attacks, and no reason to put in CSRF protection
So this advice and architectural design patterns and idioms is for Restful browser based applications. It would good to see recommendations for others types of api design senariois that don't use Restful, stateless architectures.
Thank you so much for these valuable info. so, I want ask you about something what is the auth service in service side can I use it for example to duplicate the security level ? THANKS !
I can't help but notice how the content is taught simply and concisely with a calm tone eradicating the complexity of the topic. Loved it.
1. Https
2. OAuth2
3. WebAuthn
4. Implement Authorization
5. Leveled API Keys
6.Rate Limiting
7. API Versioning
8.Allow Listing
9. OWASP Security Risks
10.API Gateway
11. Error Handling
12. Input Validation
Thank you 🙏🏽💎
You the man
This channel has expedite my kearning to backend development. The years I missed on learning about fullstack development made me catch up all because of this account.
This channel is a GEM, thank you very much Sir. from South Africa.
This is so well crafted. Clear and Concise. Thank you!
need more security topics coverage. please create more like this one.
Thanks for making these high quality content for free man!
Thanks for the great video and teaching all of us API security in almost 9 minutes.
What do you use to create this nice graphical tutorials?
Excellent examples! It’s clean and concise
Man. You gotta love this channel.
Well explained, many things covered in a small video, Thank you
Sir, great work. What tools or software do you use for above tutorials?
Hey, love your videos. Which technologies you use for such animations?
13. CSRF attack, fix it by adding a token synchroniser pattern.
csrf is not possible on restful apis if (or because) it doesnt use a cookie
No cookies = No CSRF
If you do not use cookies, and don't rely on cookies for authentication, then there is absolutely no room for CSRF attacks, and no reason to put in CSRF protection
Hello team - Thanks for a cool video tutorial - the audio and subtitles are not in sync in this video which could be confusing sometimes.
hi, thanks for yet another great video! I wonder if you could share which programme that you use to create this video? that is amazing!
So this advice and architectural design patterns and idioms is for Restful browser based applications. It would good to see recommendations for others types of api design senariois that don't use Restful, stateless architectures.
You inspired me to make great explainers. Great video as always💙
Thank you so much for these valuable info. so, I want ask you about something what is the auth service in service side can I use it for example to duplicate the security level ?
THANKS !
Excellent content! Thanks for explaining in a simplified format!
Crystal clear thanks !
Curious if you would tell us what presentation tool you are using for these videos ?
Thanks! Do you think it's enough to have Authentication in Gateway service only?
Great content
Lovely presentation packing with great info, thank you!
Nice animation
Thank you!
Why did you disable the subtitles ?
What about Cross-Origin Resource Sharing (CORS) to secure api?
How to do rate limiting ? what is the best method?
Cool!
💯th "Like!" Thanks, BBG! 😎✌️
Good job. Informative & well explained.
gold
nice sir
The subtitles do not match the video.
For free????
As everything should be
Free for?
Free but could be appreciated... For free? question of the century?
🎉🎉
0:28 Captions go off script.
Get into API & libs to plug-in for ai llm nn
omg this is very important, I use design api and dataflows at architecture diagram :)
nice video