Skip to main content
Yixian Wang
  1. Notes/

Api Security

·1 min·
Table of Contents
  • Input Validation and Sanitization
  • Monitoring and Logging
  • Data Encryption
  • Regular Database Audits
  • Penetration Testing
  • Authentication and Authorization

JWT
#

  • Secure Client Storage
    • To avoid XSS, CSRF
  • Token Expiration
  • Validate