Posts Tagged: Security

What is a JWT?

Why Can’t I Just Send JWTs Without OAuth?

A JSON Web Token or JWT is an extremely powerful standard. It’s a signed JSON object; a compact token format often exchanged in HTTP headers to encrypt web communications.

Because of its power, JWTs can be found driving some of the largest modern API implementations. Read more

Creating a Microservices Framework at CIBC: A Case Study

Financial services is on the cusp of becoming an integral part of the API Economy. Market forces — both disruptive in terms of new offerings from FinTech and regulatory in the form of anti-competitive legislation — are resulting in an increasing number of financial service providers offering APIs. Read more

Designing API Usage Guidelines For Bot Clients

In the spring of 2017, Twitter published a series of guidelines for automated API users utilizing bots. These guidelines were created to help control the intent, actions, and result of bots on the service. Accordingly, there was some discussion about just what these guidelines did and didn’t do, and how valuable such a set of guidelines were. Read more

5 Types of APIs That Will Enhance Your Customer’s Shopping Experience

Consumer behavior is a very fickle thing. For decades — even longer — modern marketers have sought to discover what makes customers act the way they do. With the growth of the web, this question has become even more complicated. Technology has influenced consumer behavior, especially how they purchase things online. Read more

Security Points to Consider Before Implementing GraphQL

GraphQL is a very powerful query language that does a great many things right. When implemented properly, GraphQL offers an extremely elegant methodology for data retrieval, more backend stability, and increased query efficiency.

The key here though is that simple phrase — when implemented properly. Read more