Laravel Security: Top 7 Mistakes Developers Make

preview_player
Показать описание
I often see the question: "Is Laravel secure?", and in this video, let's take a look at what the framework offers, and how developers use or misuse the security features.

00:00 Intro
00:37 Blade XSS Attack
02:34 Protect Your .env File
04:34 Don't Use $request-all()
05:53 File Upload: Client Data
06:38 APP_DEBUG=true in Production
08:17 CSRF and Route::get()
09:54 Rate Limiting

Links mentioned in the video:

- - - - -
Support the channel by checking out our products:
  1. Laravel Daily
Рекомендации по теме
Laravel Security: Top 0:11:16

Laravel Security: Top 7 Mistakes Developers Make

Laravel security tip 0:03:22

Laravel security tip | Be careful when using these methods . #freetopg #laravel

Laravel security Tip 0:02:53

Laravel security Tip : Don't use env() directly with reason .

Laravel and WYSIWYG 0:04:44

Laravel and WYSIWYG Text Editors: Protect from XSS Attack

Senior Programmers vs 0:00:34

Senior Programmers vs Junior Developers #shorts

Best Programming Languages 0:00:16

Best Programming Languages #programming #coding #javascript

Mr. Robot Sucks 0:00:55

Mr. Robot Sucks

8 Common Mistakes 0:23:36

8 Common Mistakes Made by Laravel Developers And How to Fix Them [w/ Examples]

Junior Developer v/s 0:00:30

Junior Developer v/s Senior Developer😛 #shorts #funny

Laravel Security Vulnerabilities 0:01:11

Laravel Security Vulnerabilities Challenge And How to Address Them Using

Securing Laravel Essential 0:03:33

Securing Laravel Essential best Practices | Secure Your Laravel Application

manually writing data 0:00:12

manually writing data to a HDD...kinda #shorts

How to Fix 0:02:36

How to Fix Mass Assignment Error in Laravel - Laravel Security Tutorial

Eloquent Performance: TOP 0:07:59

Eloquent Performance: TOP 3 Mistakes Developers Make

Laravel: Avoid Try-Catch 0:04:45

Laravel: Avoid Try-Catch In Every Method (What To Do Instead)

What Are The 0:09:06

What Are The Best Security Practices For Laravel | Sufalam Technologies

Laravel Security tip 0:03:26

Laravel Security tip | Don't use these methods while uploading file .

Frontend Developer vs 0:00:11

Frontend Developer vs Backend Developer vs Fullstack Developer

How to Secure 0:07:29

How to Secure Laravel Application? - Secure Laravel Application

Testing Stable Diffusion 0:00:16

Testing Stable Diffusion inpainting on video footage #shorts

The HARDEST part 0:00:28

The HARDEST part about programming 🤦‍♂️ #code #programming #technology #tech #software #developer...

Laravel: 3 Ways 0:07:11

Laravel: 3 Ways to Protect Records from Access By Other Users

How To Secure 0:09:50

How To Secure Laravel Website From Hackers | Laravel Security Tutorial | Laravel Security Testing

My Jobs Before 0:00:15

My Jobs Before I was a Project Manager

Комментарии
Автор

You sure deserve a YouTube play button. Your content seems to be coming out right when I need something specific like you release, ha

ward
Автор

As someone that’s been using Laravel since v4.2, I love your content, straight to the point, no dithering, no BS - I hope you get your silver platter soon :)

GSTU
Автор

Subscribed. Get that play button! You deserve it.

Straightforward, clear, no fluff… I love your style.

exintrovert
Автор

I really appreciate your every single video. They are so helpful to me.

khakimovnodir
Автор

Best wishes for getting that silver button soon! You deserve it. I can’t imagine putting out a video *daily*, and such quality content, and well-delivered, too. Your “hello guys” at the beginning is so friendly & familiar - love it. :)

hollyhayes
Автор

never played a full tutorial video without x2 speed outside work. very good video i subed

aphelioschenik
Автор

Pov, this is good stuff. Can I suggest you do more videos with the theme of "common mistakes". Security is the obvious topic but there are many others where developers do things that while they do not expose security issues nevertheless create problems for the user experience and app stability. This is a serious thing and would increase views to your channel. Thanks for your hard work and I hope you hit 100K subs soon.

rosselliot
Автор

Surely you will reach there soon sir, we always behind you and we will keep supporting to reach your goals. Thank you for the valuable contents.

SinghatehAlagie
Автор

Great video as always, would love to see more of these!

x
Автор

I didn't know about rate limiting feature, thank you a lot. I've just shared your video

icantchosemyname
Автор

When using livewire: if you have a model or collection of models defined as public class variable, their attributes are sent to the client and visible with a simple view source as are all the public variables.

paulfontaine
Автор

This is sooo goood..awesome work!
this channel deserve a "varified tick".
thanks a lot.

hassanfazeel
Автор

Wow this is very insightful sir. Thanks for sharing

emekatimothyiloba
Автор

all() is one of my bad. Thank you so much for this tips. I will correct myself

lovietech
Автор

About what you said at 11:15 ("do not use get requests for anything that should be changing the data" ) : we can use a middleware (like "authenticate" or any custom middleware to authorise the get route call.

sawcenmaamri
Автор

YOU WIll surely go beyond 200K subscribers Sir, you are really doing a great job. Thanks and God bless

emekatimothyiloba
Автор

Thank you sir, i think your videos is very usefull. Thanks for your dedication.

hermawansafrin
Автор

Thanks a lot for sharing knowledge with us

FindWebX
Автор

Thank you for this great stuff. I'll more thankful if you also create video of how to overcome this issues specially file access or .env access from shared hosting or public folders.

chiraghvyas
Автор

Thanks Sir you helping so much .... i really appreciate it <3

hanymax