How to Secure Your API Keys the Right Way

preview_player
Показать описание
Follow for more Android & Kotlin tips 🙌
  1. Philipp Lackner
  2. android
  3. androidstudio
  4. coding
  5. compose
  6. hack
Рекомендации по теме
Top 12 Tips 0:09:47

Top 12 Tips For API Security

How to ACTUALLY 0:07:42

How to ACTUALLY Secure Your API (5 Steps)

Understanding The Fundamentals 0:09:41

Understanding The Fundamentals of API Security | How APIs are Attacked and How to Secure Them

This is the 0:09:25

This is the best way to protect your APIs

How to Secure 0:00:45

How to Secure Your API Keys the Right Way

Developers, Secure your 0:18:04

Developers, Secure your API | Pynt

Secure your API 0:24:31

Secure your API Gateway with Lambda Authorizer | Step by Step AWS Tutorial

API Security Explained 0:02:14

API Security Explained

Flutter Oauth2 Login 0:18:34

Flutter Oauth2 Login Example

OWASP API Security 1:27:01

OWASP API Security Top 10 Course – Secure Your Web Apps

How to HIDE 0:04:27

How to HIDE Your API Keys in Python Projects

Top 7 Ways 0:06:05

Top 7 Ways to 10x Your API Performance

What Are API 0:04:22

What Are API Keys, And Why Are They So Important? | System Design Interview Basics

5 JavaScript API 0:12:49

5 JavaScript API Key Mistakes (and how to fix them)

How to Create 0:08:42

How to Create a Secure REST API with Node.js and Express

How to Hide 0:10:13

How to Hide & Protect API Keys in Your Android App (Reverse Engineering)

Securing Your APIs 0:31:36

Securing Your APIs with OAuth 2.0 - API Days

How to hide 0:24:45

How to hide your API keys SAFELY when using React

Your API Keys 0:09:26

Your API Keys are NOT SAFE in a native app 🤬

3.4 Hiding API 0:11:51

3.4 Hiding API Keys with Environment Variables (dotenv) and Pushing Code to GitHub

Getting API security 0:51:49

Getting API security right - Philippe De Ryck - NDC London 2023

How to Hide 0:10:13

How to Hide Your API Keys

Properly Load & 0:07:58

Properly Load & Manage API Keys in Python

OAuth, JWT, HMAC, 0:25:39

OAuth, JWT, HMAC, oh my! API security for your enterprise

Комментарии
Автор

everyone should just give me their API keys for safe keeping

deesnutz
Автор

of course, everything that is in client could be modified by the client, for security, better to do it on the server instead

ban_droid
Автор

Can you make a tutorial on implementing the SHA1 fingerprint in the Ktor server?

malikbilal
Автор

how to write data in the app without api key in the app?

josephputra
Автор

Whenever I got new things to handle I always search in your playlist, same happened now as-well, I was looking for ssl issue and new content is here😃. Could plz make a video on dynamic ssl pinning when certificate expires.

tej
Автор

There is no way!
In app - decompile
From server - sniffer

no_cola
Автор

But, if I keep the key on some server, than I have another key in my app that is used for getting the key from the server. The attacker can then find this second key used for getting the one on the server, so how does this improve security?

kivan
Автор

I'm not sure if I understand you correctly
you want to save the APIs on server
Okay where on the server and how you are going to request them in the app??

MohammedMutwakil
Автор

It's practically impossible to hide secrets on the client. Security through obscurity is the only possible protection, but I'll be glad if somebody proves me wrong

StealerSlain
Автор

Iam the attacker. I was looking for your tasky app api

arfinhosain