Securing the REST API basics

Let's say we want to secure our Todo REST API. The first questions to ask would be the following:

  • Who would be the users of our API?
  • How do we identify a user?
  • Where can we store the user's details?
  • What are the different kinds of users?
  • What actions can each type of user perform?

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset