Guidelines

A collection of 12 posts
Top 5 Security Issues in Public APIs and How to solve them

Top 5 Security Issues in Public APIs and How to solve them

One of the features in RestCase is that it scans your API definitions for both Security and Quality issues and shows insights about them. We managed to scan about 50 public APIs and aggregated the results in order to write about the top 5 security issues and how to solve »
Top 5 REST API Design Problems

Top 5 REST API Design Problems

Here at RestCase we are working with many companies and help them develop secure services and APIs. When working with developers on how to design and build quality APIs and microservices and I am seeing many common design problems that are not organization / company-specific. These problems are better to be »
Top 5 OWASP Security Tips for Designing Secured REST APIs

Top 5 OWASP Security Tips for Designing Secured REST APIs

APIs are channels of communications, through which applications can “talk”. To create a connection between applications, REST APIs use HTTPS. HTTP requests pass through the API channel of communication and carry messages between applications. Threat actors target REST APIs because they’re after the data stored in HTTP requests. Threat »
OpenAPI Spec: Documentation and Beyond

OpenAPI Spec: Documentation and Beyond

OpenAPI has become the industry standard for defining an API, yet it is often treated as a documentation tool only. Here at RestCase, we are using the OpenAPI specification for supporting and drive many parts of your API lifecycle development because we believe that REST is mostly about a contract »
TOP 7 REST API Security Threats

TOP 7 REST API Security Threats

Internet security is a topic which has been discussed increasingly quite often by technology blogs and forums and with valid reason: the numerous high profile security breaches have grown up significantly in recent years. Security is of great importance, especially in the world of REST APIs. API security is the »
4 Maturity Levels of REST API Design

4 Maturity Levels of REST API Design

If you are building REST APIs or REST Services you're using HTTP. Technically, REST services can be provided over any application layer protocol as long as they conform to certain properties. In practice, basically, everyone uses HTTP Protocol. Since we are discussing the creation of an API that »
7 Rules for REST API URI Design

7 Rules for REST API URI Design

Before going over the rules for REST API URI design, let’s do a quick overview on some of the terms we are going to talk about. URIs REST APIs use Uniform Resource Identifiers (URIs) to address resources. On today’s web, URI designs range from masterpieces that clearly communicate »