This blog takes a look at GraphQL from a security perspective, and how to design a schema that meets CSO requirements.
All API & Microservices Content
API Academy Workshop with Apidays NYC 2022: Emerging Strategies with API Gateways
At the API Academy Workshop held in conjunction with Apidays NYC 2022, Bala discusses emerging strategies with API gateways.
API Academy Workshop with Apidays NYC 2022: Emerging Gateway Patterns
At the API Academy Workshop done in conjunction with Apidays NYC 2022, Gary discusses emerging gateway patterns and how to prepare for them.
API Academy Workshop with Apidays NYC 2022: Improving API Resiliency Using API Gateways
In this session, Daniel discusses how to better API resiliency using API gateways.
API Academy Workshop with Apidays NYC 2022: API Security Deep Dive
In this session, Francois takes a deep dive into how to better protection your enterprise from bad actors. He’s following by Skip Hovsmith (Approov) who dives into API client attestation.
API Academy Workshop with Apidays NYC 2022: Our GraphQL Journey
In this Workshop session, Francois discusses some of the things learned as he dove into GraphQL and its workings.
API Academy Workshop with Apidays NYC 2022: API Academy Overview and Certification Program
In this brief intro, Bill opens the first API Academy Workshop of 2022, held in conjunction with Apidays NYC.
Apidays NYC 2022: Friends Don’t Let Friends Centralize Authorization Enforcement
Achieving an identity-centric security model is no small feat. The composable enterprise needs to be secured across multiple clouds, while providing end-users with delightful experiences, yet still maintain high levels of assurance. Oh yea… it has to scale too. This presentation shares lessons learned from our journey towards automating the distributed enforcement of access control rules, and how leveraging a symbiotic relationship between identity management and runtime API security infrastructure enables an identity mesh that spans across applications.
Three Questions for API Change Management
Adam’s latest blog discusses API Change management and how it allows us to create a process or a set of rules that shapes the way the API grows as more endpoints are added and as existing functionality changes. He then discusses the three factors to consider whenever making changes to an API.
Anti-patterns in Microservices (Don’t Do These)
Microservices are a popular approach to software architecture that aim to break up monolithic code into maintainable chunks. These discrete chunks allow for continuous delivery of a service while developing on top of what is in production. That flexibility is exciting in an agile environment, but rushing into deploying your code as a suite of microservices can put you at risk of incorporating anti-patterns that may cause significant problems down the line. In this blog, Adam discusses four common pitfalls as you start building your own microservices.