API security in action / Neil Madden.

Format:

Book

Author/Creator:

Madden, Neil (Computer programmer), author.

Language:

English

Subjects (All):

Application program interfaces (Computer software).

Computer security.

Java (Computer program language).

Physical Description:

1 online resource (525 pages)

Place of Publication:

Shelter Island, New York : Manning Publications, [2020]

Summary:

APIs control data sharing in every service, server, data store, and web client. Modern data-centric designs-- including microservices and cloud-native applications-- demand a comprehensive, multi-layered approach to security for both private and public-facing APIs. "API security in action" teaches you how to create secure APIs for any situation. By following this hands-on guide you'll build a social network API while mastering techniques for flexible multi-user security, cloud key management, and lightweight cryptography. When you're done, you'll be able to create APIs that stand up to complex threat models and hostile environments.

Contents:

Part 1. Foundations. 1. What is API security?

2. Secure API development

3. Securing the Natter API

Part 2. Token-based authentication. 4. Session cookie authentication

5. Modern token-based authentication

6. Self-contained tokens and JWTs

Part 3. Authorization. 7. OAuth2 and OpenID connect

8. Identity-based access control

9. Capability-based security and macaroons

Part 4. Microservice APIs in Kubernetes. 10. Microservice APIs in Kubernetes

11. Securing service-to-service APIs

Part 5. APIs for the Internet of Things. 12. Securing IoT communications

13. Securing IoT APIs.

Notes:

Description based on print version record.

Includes index.

ISBN:

9781638356646

1638356645

OCLC:

1257077452