Quelques Liens & Ressources

Training Repository
​https://github.com/wishtack-training/wt-training-rest-api​
GitHub - wishtack-training/wt-training-rest-api: Wishtack's ReST API Training https://guide-api-rest.wishtack.io/
GitHub
Websheep
​https://github.com/marmicode/websheep​
GitHub - marmicode/websheep: 🐑 Websheep is an app based on a willingly vulnerable ReSTful APIs.
GitHub
ReST API Checklist
​https://rest-api-checklist.marmicode.io/projects​
https://rest-api-checklist.marmicode.io
​
Autres ressources
OWASP API Security Top 10
​https://github.com/OWASP/API-Security/blob/master/2019/en/dist/owasp-api-security-top-10.pdf​
API-Security/owasp-api-security-top-10.pdf at master · OWASP/API-Security
GitHub
Slides et vidéos du meetup sur la sécurité des APIs ReST
​https://blog.wishtack.com/2017/07/28/slides-et-video-des-talks-au-meetup-lyonjs-47/​
Slides et vidéo des Talks au Meetup LyonJS #47
Wishtack
Blog Posts & Videos
Microservice Prerequisites by Martin Fowler
​https://martinfowler.com/bliki/MicroservicePrerequisites.html​
bliki: MicroservicePrerequisites
martinfowler.com
Mastering Chaos - A Netflix Guide to Microservices
​https://www.youtube.com/watch?v=CZ3wIuvmHeM​
​
From Monolith to Microservices at Zalando
​https://www.youtube.com/watch?v=gEeHZwjwehs​
ReST vs. GraphQL vs. gRPC Decision Tree
​https://phil.tech/2018/picking-an-api-paradigm-implementation/​
Picking the right API Paradigm
Phil Sturgeon
​
ReST APIs Must Be Hypertext-Driven by Roy T. Fielding
​https://roy.gbiv.com/untangled/2008/rest-apis-must-be-hypertext-driven​
REST APIs must be hypertext-driven
Untangled
Best Practices in API Governance
​https://swagger.io/resources/articles/best-practices-in-api-governance/​
https://swagger.io/resources/articles/best-practices-in-api-governance/
swagger.io
Code First vs Design First
​https://swagger.io/blog/api-design/design-first-or-code-first-api-development/​
https://swagger.io/blog/api-design/design-first-or-code-first-api-development/
swagger.io
ReST API & SDKs
​https://www.docusign.com/blog/if-your-rest-api-is-fine-can-you-get-away-without-having-an-sdk/​
Developers | DocuSign
OAS 3.0 Most Significant Changes
​https://blog.restcase.com/6-most-significant-changes-in-oas-3-0/​
6 Most Significant Changes in OAS 3.0
REST API and Beyond
API Versioning Has No Right Way
​https://blog.apisyouwonthate.com/api-versioning-has-no-right-way-f3c75457c0b7​
API Versioning Has No "Right Way"
Stripe API Versioning
​https://stripe.com/blog/api-versioning​
APIs as infrastructure: future-proofing Stripe with versioning
stripe
The Difference Between API Gateways and Service Mesh
​https://konghq.com/blog/the-difference-between-api-gateways-and-service-mesh/​
Service Mesh vs. API Gateways: What's The Difference?
KongHQ
How RSA works
​https://en.wikipedia.org/wiki/RSA_(cryptosystem)​
RSA (cryptosystem)
Wikipedia
Problem Details for HTTP APIs RFC7807
​https://tools.ietf.org/html/rfc7807​
RFC 7807 - Problem Details for HTTP APIs
​
So What?
Dernière mise à jour 1yr ago