Tutorial: Handle Errors on the Web

Learn about the right and wrong ways for Web applications to handle errors All applications need to report and handle errors. Doing this on the Web requires dealing with both protocol-level and application-level information. This video shows both the “right” and the “wrong” way to handle errors on the Web.

API Design 203: The USE Paradigm

Prioritize usability, scalability and evolvability in API design To work effectively, a Web API must display a range of specific software qualities. In this lesson, we outline what we call the “USE Paradigm” – a principle of API design, which states that interface designers should prioritize three particularly important software qualities: usability, scalability and evolvability….

TechTalk: Common OAuth Security Mistakes and Threat Mitigations

With vulnerabilities recently surfacing in the OAuth implementations of popular service providers like Yammer, Instagram and Facebook, it’s hard to blame anyone for getting the impression that there are fundamental security flaws in the OAuth protocol. Francois Lascelles, Chief Architect at Layer7, answered OAuth questions live, discussed the common security mistakes made in OAuth implementations…

API Management 201: API Security

Identify typical areas of API vulnerability and learn best practices for securing APIs In Lesson 103: Choosing a Solution, we discuss the importance of considering functional and operational security characteristics when choosing an API Management solution. Regardless of the solution, understanding the risk profile of APIs is vital to protecting an API against attack. In this…

API Design 303: Pagination

Minimize response times for requests and improve the app-user experience Pagination is a ubiquitous method for handling large datasets and responses in the browser-based Web but developers of API-based apps also turn to pagination in order to minimize response times for requests and generally improve the end-user experience. In this lesson, we will explore some…