Skip to content
API-University

API-University

APIs your consumers will love

Menu

  • Books
    • All Books
    • Book Club
    • REST
    • REST & GraphQL
    • GraphQL
    • Serverless GraphQL
    • OAuth
    • OpenID Connect
    • Swagger & OpenAPI
    • Webhooks
    • API Architecture
    • Alexa Voice Skills
  • Courses
    • All Video Courses
    • OAuth – Video Course
    • OpenID Connect – Video Course
    • RESTful API Design – Video Course
    • Digital Business with APIs – Video Course
    • Individual Workshops Classroom or Webinar
    • Practical Video Tutorials …
      • OAuth 2.0 Diagrams
      • OAuth at Facebook
      • OAuth at LinkedIn
      • OAuth at Google
      • OAuth at PayPal
  • Blog
    • API-Review
    • API Security
    • API Design
    • API Business
  • Earn
    • API Jobs
    • API Fashion
    • Become a Partner
  • About
    • Newsletter
    • API-University
    • Matthias
  • APIs your consumers will love
    • API Design Overview
    • API Domain Analysis
    • Architectural and Frontend Design
      • REST
      • GraphQL
    • API Prototyping
    • API Implementation
    • API Tools
    • API Security
      • OAuth
      • OpenID Connect
    • API Publication
    • API Evolution & Versioning

API Security

API Security Best Practices – How to protect your RESTful APIs

API Security Best Practices – How to protect your RESTful APIs

Learn how to protect your RESTful APIs. In this week’s episode, I tell you all the collected API Security best practices. Don’t miss any upcoming episode and subscribe to the API-University channel on youtube. Learn about security and best practices

mattbiehl 2020-06-032020-06-03 API Design, API Security, Blog, REST Read more

How to use the Facebook API and OAuth

Facebook API Video

Facebook has a popular API. To use the API, you need to get an OAuth Access Token first. In this week’s episode, I show you hands-on how to get both the OAuth token and how to call the API. Don’t miss any

mattbiehl 2020-05-192020-09-16 API Security, API-Review Read more

How to use the LinkedIn API and OAuth

howto linkedin api oauth

LinkedIn has a popular API. To use the API, you need to get an OAuth Access Token first. In this week’s episode, I show you hands-on how to get both the OAuth token and how to call the API. Don’t

mattbiehl 2020-05-102020-09-16 API Security, API-Review Read more

The 10 most critical API security risks – Part 10: Insufficient Logging & Monitoring

The recently published “OWASP API security top 10” report analyzes the anti-patterns that lead to vulnerabilities and security risks in APIs. In this 10 part series, we introduce these API anti-patterns. Every API professional should know about these anti-patterns. API

mattbiehl 2020-03-312020-03-17 API Security, Blog Read more

The 10 most critical API security risks – Part 9: Improper Assets Management

The recently published “OWASP API security top 10” report analyzes the anti-patterns that lead to vulnerabilities and security risks in APIs. In this 10 part series, we introduce these API anti-patterns. Every API professional should know about these anti-patterns. API

mattbiehl 2020-03-242020-03-24 API Security, Blog Read more

The 10 most critical API security risks – Part 8: Injection

The recently published “OWASP API security top 10” report analyzes the anti-patterns that lead to vulnerabilities and security risks in APIs. In this 10 part series, we introduce these API anti-patterns. Every API professional should know about these anti-patterns. API

mattbiehl 2020-03-102020-03-17 API Security, Blog Read more

The 10 most critical API security risks – Part 7: Security Misconfiguration

The recently published “OWASP API security top 10” report analyzes the anti-patterns that lead to vulnerabilities and security risks in APIs. In this 10 part series, we introduce these API anti-patterns. Every API professional should know about these anti-patterns. In

mattbiehl 2020-03-032020-03-03 API Security Read more

The 10 most critical API security risks – Part 6: Mass Assignment

The recently published “OWASP API security top 10” report analyzes the anti-patterns that lead to vulnerabilities and security risks in APIs. In this 10 part series, we introduce these API anti-patterns. Every API professional should know about these anti-patterns. API

mattbiehl 2020-02-252020-02-25 API Security Read more

The 10 most critical API security risks – Part 5: Broken Function-Level Authorization

The recently published “OWASP API security top 10” report analyzes the anti-patterns that lead to vulnerabilities and security risks in APIs. In this 10 part series, we introduce these API anti-patterns. Every API professional should know about these anti-patterns. API

mattbiehl 2020-02-182020-02-18 API Security, Blog Read more

Is the API-key enough? API security issues and their fix

It can be seen over and over again: An API-key is directly embedded in the source code of an app. The most recent incident as of February 2020 is the Iowa caucus app, that contained an API-key right inside the

mattbiehl 2020-02-172020-03-09 API Security, Blog Read more
  • « Previous

Categories

Recent Posts

  • Podcast: Understanding OAuth
  • How to use the Google API and OAuth.
  • Social Login with LinkedIn API and OAuth – Live Coding – Part 3
  • Social Login with LinkedIn API and OAuth – Live Coding – Part 2
  • Social Login with LinkedIn API and OAuth – Live Coding – Part 1

Tag Cloud

Alexa Amazon API API-Review API Design APIKey API Portal API Security AppSync AWS Book credentials Design Design Thinking Developer Portal Ecosystem Events GraphQL Identity Journey Map JWT LinkedIn Linkedin API Live Coding node.js OAuth OpenID Connect OWASP Pattern REST Review Richardson Security Skill Social Login Social Login with LinkedIn Spotify Spotify API subscriptions Testing Tutorial User Journey Video Voice Webhooks

API-University Series

The API-University Book Series is a modular series of books on API-related topics. Want them all? Join the API-University Book Club and save some money.

Read more
Copyright © 2021 API-University. Powered by WordPress. Theme: Spacious by ThemeGrill.