Discover and read the best of Twitter Threads about #securecodingpractice
Most recents (1)
Hello world! From my 10 yrs as a dev working at scale and talking to 300+ security engineers, I have been meaning to share some dos-and-don'ts of API Security. 🤠
This is my first time posting on Twitter. Shower some love 🕺 #apisecurity #securecodingpractice #devsecops
This is my first time posting on Twitter. Shower some love 🕺 #apisecurity #securecodingpractice #devsecops
Starting with the most common practice - API Keys 🔑. These are
- used for many 3rd party integrations
- given to clients to access data programatically
- for inter-service communications
It'd be awesome 😃 if you can add more or share any bitter experiences around API keys 🤐
- used for many 3rd party integrations
- given to clients to access data programatically
- for inter-service communications
It'd be awesome 😃 if you can add more or share any bitter experiences around API keys 🤐
0⃣/9⃣
API Keys aren't as secure as authentication tokens. Tokens like JWT are far stronger and have an expiration date by nature.
API Keys aren't as secure as authentication tokens. Tokens like JWT are far stronger and have an expiration date by nature.
