Use Automatic API Documentation Testing To Supercharge API Growth

It’s a universal truth that testing for errors, and debugging any that show up, isn’t a fun process.

Almost all API providers are familiar with the process of monitoring and testing. Before you commit code, API behaviors must be thoroughly vetted, as with any software release. Read more

Share the knowledge

Review of Approov for Mobile API Security

Unfortunately, the reality of mobile apps is that at some point, someone is going to try to do something they’re not allowed to. Whether this is through brute-forcing keys, spoofing identities, or simply issuing distributed attacks across the application’s server dependencies, the threat to public-facing APIs in the mobile space is real, dangerous, and often inefficiently mitigated. Read more

Share the knowledge

Designing a True REST State Machine

There are many misconceptions surrounding what exactly Representational State Transfer (REST) is. The prime of which is the concept of hypermedia, or defined in full context, Hypermedia as the engine of application state (HATEOAS).

Jargon aside, hypermedia is actually a valuable idea that many self-touted “RESTful” web APIs do not adhere to. Read more

Share the knowledge

Oracle Vs. Google: How To Protect an API From Legal Snags

Over the past couple of years, Oracle has been seeking $8.8 billion in damages for Google’s use of Java in Android. If you’ve taken a look at any tech websites or the finance section of a newspaper in the past couple of years, then there’s a good chance you already know that. Read more

Share the knowledge

How to Handle Batch Processing with OAuth 2.0

Recently on the Nordic APIs channel we’ve had a few people ask — how do you handle batch processes that are secured with OAuth 2.0? Batch requests are ones executed automatically or programmed to repeat recurringly.

Usually we use OAuth to confirm user identity for API calls, but the problem is that OAuth 2.0 isn’t really designed for batch processing. Read more

Share the knowledge