Learn how to secure a RESTful API to keep your application data—and your users—safe.
- [Emmanuel] Building an application is always exciting until you realize it is missing some key security features. Until you implement these measures, you might be putting your users, application data, and core of your functions at risk. Understanding the resources and the tools available to you to implement secured APIs is what this course is about. Hi, I'm Emmanuel Henri and having worked on multiple large scale projects where security was always top of mind, it'll be my pleasure to support you on this journey. First, we'll look at the top web application threats and what are the main resources to learn more about them. Then, we'll give you an introduction on OWASP, one of the main resource on security. Next, we'll take a look at what you need to put together to build your own node and Express secure API. And finally, we'll explore a few other libraries built for access control. So if you're ready to learn more about node security, fire up your favorite editor and let's get started.
- Open Web Application Security Project (OWASP)
- Reasons for using a JSON Web Token (JWT)
- Adding bcrypt password hashing
- Adding handlers for registration and login
- Finalizing secured endpoints
- Testing APIs with Postman