Quelques Liens & Ressources

Training Repository

https://github.com/wishtack-training/wt-training-rest-api

GitHub - wishtack-training/wt-training-rest-api: Wishtack's ReST API Training https://guide-api-rest.wishtack.io/GitHub

Websheep

https://github.com/marmicode/websheep

GitHub - marmicode/websheep: 🐑 Websheep is an app based on a willingly vulnerable ReSTful APIs.GitHub

ReST API Checklist

https://rest-api-checklist.marmicode.io/projects

https://rest-api-checklist.marmicode.iorest-api-checklist.marmicode.io

Autres ressources

OWASP API Security Top 10

https://github.com/OWASP/API-Security/blob/master/2019/en/dist/owasp-api-security-top-10.pdf

Slides et vidéos du meetup sur la sécurité des APIs ReST

https://blog.wishtack.com/2017/07/28/slides-et-video-des-talks-au-meetup-lyonjs-47/

Blog Posts & Videos

Microservice Prerequisites by Martin Fowler

https://martinfowler.com/bliki/MicroservicePrerequisites.html

bliki: Microservice Prerequisitesmartinfowler.com

Mastering Chaos - A Netflix Guide to Microservices

https://www.youtube.com/watch?v=CZ3wIuvmHeM

From Monolith to Microservices at Zalando

https://www.youtube.com/watch?v=gEeHZwjwehs

ReST vs. GraphQL vs. gRPC Decision Tree

https://phil.tech/2018/picking-an-api-paradigm-implementation/

Picking the right API ParadigmPhil Sturgeon

ReST APIs Must Be Hypertext-Driven by Roy T. Fielding

https://roy.gbiv.com/untangled/2008/rest-apis-must-be-hypertext-driven

REST APIs must be hypertext-drivenUntangled

Best Practices in API Governance

https://swagger.io/resources/articles/best-practices-in-api-governance/

Best Practices in API Governanceswagger.io

Code First vs Design First

https://swagger.io/blog/api-design/design-first-or-code-first-api-development/

Code-First vs. Design-First: Eliminate Friction with API ExplorationSmartBear.com

ReST API & SDKs

https://www.docusign.com/blog/if-your-rest-api-is-fine-can-you-get-away-without-having-an-sdk/

Developerswww.docusign.com

OAS 3.0 Most Significant Changes

https://blog.restcase.com/6-most-significant-changes-in-oas-3-0/

6 Most Significant Changes in OAS 3.0REST API and Beyond

API Versioning Has No Right Way

https://blog.apisyouwonthate.com/api-versioning-has-no-right-way-f3c75457c0b7

Stripe API Versioning

https://stripe.com/blog/api-versioning

APIs as infrastructure: future-proofing Stripe with versioningstripe

The Difference Between API Gateways and Service Mesh

https://konghq.com/blog/the-difference-between-api-gateways-and-service-mesh/

How RSA works

https://en.wikipedia.org/wiki/RSA_(cryptosystem)

RSA cryptosystemWikipedia

Problem Details for HTTP APIs RFC7807

https://tools.ietf.org/html/rfc7807

RFC 7807: Problem Details for HTTP APIsIETF Datatracker