Top 12 Tips For API Security

I can't help but notice how the content is taught simply and concisely with a calm tone eradicating the complexity of the topic. Loved it.

1. Https
2. OAuth2
3. WebAuthn
4. Implement Authorization
5. Leveled API Keys
6.Rate Limiting
7. API Versioning
8.Allow Listing
9. OWASP Security Risks
10.API Gateway
11. Error Handling
12. Input Validation

This channel has expedite my kearning to backend development. The years I missed on learning about fullstack development made me catch up all because of this account.

This is so well crafted. Clear and Concise. Thank you!

This channel is a GEM, thank you very much Sir. from South Africa.

Love This

Thanks for making these high quality content for free man!

need more security topics coverage. please create more like this one.

Man. You gotta love this channel.

Excellent examples! It’s clean and concise

Well explained, many things covered in a small video, Thank you

Crystal clear thanks !

Curious if you would tell us what presentation tool you are using for these videos ?

Excellent content! Thanks for explaining in a simplified format!

Sir, great work. What tools or software do you use for above tutorials?

Hey, love your videos. Which technologies you use for such animations?

Thanks for the great video and teaching all of us API security in almost 9 minutes.
What do you use to create this nice graphical tutorials?

You inspired me to make great explainers. Great video as always💙

Great content

Thank you so much for these valuable info. so, I want ask you about something what is the auth service in service side can I use it for example to duplicate the security level ?
THANKS !

Lovely presentation packing with great info, thank you!

So this advice and architectural design patterns and idioms is for Restful browser based applications. It would good to see recommendations for others types of api design senariois that don't use Restful, stateless architectures.

Thanks! Do you think it's enough to have Authentication in Gateway service only?

Cool!

Hello team - Thanks for a cool video tutorial - the audio and subtitles are not in sync in this video which could be confusing sometimes.

hi, thanks for yet another great video! I wonder if you could share which programme that you use to create this video? that is amazing!

Nice animation

Why did you disable the subtitles ?

13. CSRF attack, fix it by adding a token synchroniser pattern.

What about Cross-Origin Resource Sharing (CORS) to secure api?

💯th "Like!" Thanks, BBG! 😎✌️

Thank you!

Good job. Informative & well explained.

nice sir

The subtitles do not match the video.

gold

0:28 Captions go off script.

How to do rate limiting ? what is the best method?

🎉🎉

Get into API & libs to plug-in for ai llm nn

cool

For free????

13 And no man hath ascended up to heaven, but he that came down from heaven, even the Son of man which is in heaven.
14 And as Moses lifted up the serpent in the wilderness, even so must the Son of man be lifted up:
15 That whosoever believeth in him should not perish, but have eternal life.
16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life.
17 For God sent not his Son into the world to condemn the world; but that the world through him might be saved.
18 He that believeth on him is not condemned: but he that believeth not is condemned already, because he hath not believed in the name of the only begotten Son of God.
19 And this is the condemnation, that light is come into the world, and men loved darkness rather than light, because their deeds were evil.
20 For every one that doeth evil hateth the light, neither cometh to the light, lest his deeds should be reproved.
21 But he that doeth truth cometh to the light, that his deeds may be made manifest, that they are wrought in God.
(Jn.3:13-21)

omg this is very important, I use design api and dataflows at architecture diagram :)
nice video