Talk in English - US at Midwest PHP 2018
Checkout the code: https://github.com/aenglander/practical-api-security-php-example-lumen
View Slides: https://www.slideshare.net/AdamEnglander/practical-api-security-midwest-php-2018
Short URL: https://joind.in/talk/9895f
(QR-Code (opens in new window))
With the dominance of Mobile Apps, Single Page Apps for the Web, and Micro-Services, we are all building more APIs than ever before. Like many other developers, I had struggled with finding the right mix of security and simplicity for securing APIs. Some standards from the IETF have made it possible to accomplish both. Let me show you how to utilize existing libraries to lock down you API without writing a ton of code.
Comments
Comments are closed.
Lots of great info with code examples. The Github example project is especially nice.
Wow! I wish I could have private lessons from this guy! Awesome lecture and really good examples.
Really thorough overview of API security threats and mitigations, with recommendations. A lot of heavy code near the end that would be good to have for later reference as samples (may be available, didn't look yet). Confident, knowledgeable speaker.
Speaker seemingly rushed through some general information and spent most of the time quickly walking through some code which used a particular encryption management mechanism (JOSE/JWT), but without sufficient background for me to understand its use.
Great talk. His knowledge of API security shined.
There was a lot of great content, some technical difficulties, and it felt a little rushed. I with the presenter had 2 hours.
Well presented, speaker demonstrated expert level knowledge. Loved the example walk through.
Good coverage of a very dense topic! (I wish I had more background for this one)
Very good. Almost too much material for the time. Wish we could have delved into the part of the request and how they relate to the code in more detail. Maybe consider a "minimum required" set for future presentations?