API security in action
APIs control data sharing in every service, server, data store, and web client. Modern data-centric designs-- including microservices and cloud-native applications-- demand a comprehensive, multi-layered approach to security for both private and public-facing APIs. "API security in action&quo...
| Other Authors: | |
|---|---|
| Format: | eBook |
| Language: | Inglés |
| Published: |
Shelter Island, New York :
Manning Publications
[2020]
|
| Subjects: | |
| See on Biblioteca Universitat Ramon Llull: | https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009631174306719 |
Table of Contents:
- Part 1. Foundations. 1. What is API security?
- 2. Secure API development
- 3. Securing the Natter API
- Part 2. Token-based authentication. 4. Session cookie authentication
- 5. Modern token-based authentication
- 6. Self-contained tokens and JWTs
- Part 3. Authorization. 7. OAuth2 and OpenID connect
- 8. Identity-based access control
- 9. Capability-based security and macaroons
- Part 4. Microservice APIs in Kubernetes. 10. Microservice APIs in Kubernetes
- 11. Securing service-to-service APIs
- Part 5. APIs for the Internet of Things. 12. Securing IoT communications
- 13. Securing IoT APIs.
