Quelques Liens & Ressources

Training Repository
​https://github.com/wishtack-training/wt-training-rest-api​
wishtack-training/wt-training-rest-api
Wishtack's ReST API Training https://guide-api-rest.wishtack.io/ - wishtack-training/wt-training-rest-api
github.com
Websheep
​https://github.com/marmicode/websheep​
marmicode/websheep
🐑 Websheep is an app based on a willingly vulnerable ReSTful APIs. - marmicode/websheep
github.com
ReST API Checklist
​https://rest-api-checklist.marmicode.io/projects​
https://rest-api-checklist.marmicode.io
rest-api-checklist.marmicode.io
​
Autres ressources
OWASP API Security Top 10
​https://github.com/OWASP/API-Security/blob/master/2019/en/dist/owasp-api-security-top-10.pdf​
OWASP/API-Security
OWASP API Security Project. Contribute to OWASP/API-Security development by creating an account on GitHub.
github.com
Slides et vidéos du meetup sur la sécurité des APIs ReST
​https://blog.wishtack.com/2017/07/28/slides-et-video-des-talks-au-meetup-lyonjs-47/​
Slides et vidéo des Talks au Meetup LyonJS #47
Slides et vidéos des talks au Meetup LyonJS #47  
blog.wishtack.com
Code First vs Design First
​https://swagger.io/blog/api-design/design-first-or-code-first-api-development/​
Design First or Code First: What’s the Best Approach to API Development?
<!-- img removed -->With the popularity of API description formats like Swagger (OpenAPI) and API Blueprint, serious thought has been given on the best approach to building APIs based on historical usage and best practices. API description formats act as a contract that end users can utilize to u...
swagger.io
ReST API & SDKs
​https://www.docusign.com/blog/if-your-rest-api-is-fine-can-you-get-away-without-having-an-sdk/​
If Your REST API Is Fine, Can You Get Away Without Having An SDK? | DocuSign Blog
There is an interesting debate between whether, as a platform company, you should provide just the API or build more SDKs.  A number of technology experts say that if you have a clean REST API,...Read More
www.docusign.com
API Versioning Has No Right Way
​https://blog.apisyouwonthate.com/api-versioning-has-no-right-way-f3c75457c0b7​
API Versioning Has No "Right Way"
But there are a few objectively terrible ways to handle it.
blog.apisyouwonthate.com
How RSA works
​https://en.wikipedia.org/wiki/RSA_(cryptosystem)​
RSA (cryptosystem) - Wikipedia
en.wikipedia.org
​
Que Faire ?
Dernière mise à jour 4 months ago