An introduction to GraphQL security | Christina Hastenrath

preview_player
Показать описание

An introduction to GraphQL security, by Christina Hastenrath: Software Developer at Postman

GraphQL is on the rise and used by many giant tech companies such as Facebook, GitHub, and Twitter. GraphQL gives great power to clients but with great power comes great responsibility. With GraphQL the developer is responsible for securing the endpoint to protect sensitive information. There is no one size fits all security solution. Mixing and matching different approaches can help secure your GraphQL API endpoint to minimize the risk of hackers exploiting your application data. This talk will be an introduction to GraphQL security. I will look at real-world use cases, the most common vulnerabilities, and their security measures as well as covering what tools and platforms you can use to start securing your GraphQL endpoint today.

Hope you enjoy!
______________________

#GraphQLConf2021 is the global #GraphQL online conference organized by @GraphCMS and @commercetools

Follow for updates:

GraphQL Conf:

GraphCMS:

commercetools:
  1. Hygraph
  2. GraphQL
  3. API
  4. Software
  5. Development
  6. Security
Рекомендации по теме
An introduction to 0:26:16

An introduction to GraphQL security

An introduction to 0:26:16

An introduction to GraphQL security | Christina Hastenrath

GraphQL Explained in 0:02:22

GraphQL Explained in 100 Seconds

How to Auth: 0:25:18

How to Auth: Secure a GraphQL API with Confidence

HACKING GraphQL FOR 0:08:58

HACKING GraphQL FOR BEGINNERS + GIVEAWAY (closed)

Antoine Carossio - 0:41:03

Antoine Carossio - Challenges of GraphQL security in 2024 - Hackfest 2024

The Do’s and 0:24:46

The Do’s and Don’ts for your schema and GraphQL operations

Session vs Token 0:02:18

Session vs Token Authentication in 100 Seconds

OWASP London Chapter 2:18:20

OWASP London Chapter Meetup 15-Jan-2025 Live-Stream

NGINX Explained in 0:02:05

NGINX Explained in 100 Seconds

Data Security: Protect 0:07:22

Data Security: Protect your critical data (or else)

Kafka in 100 0:02:35

Kafka in 100 Seconds

Kubernetes Explained in 0:02:07

Kubernetes Explained in 100 Seconds

What is an 0:04:56

What is an API (in 5 minutes)

Introduction to API 0:54:00

Introduction to API Security | Postman Intergalactic

RabbitMQ in 100 0:02:31

RabbitMQ in 100 Seconds

MongoDB in 100 0:02:27

MongoDB in 100 Seconds

Top 6 Most 0:04:21

Top 6 Most Popular API Architecture Styles

What Are Microservices 0:04:45

What Are Microservices Really All About? (And When Not To Use It)

What Is Single 0:04:54

What Is Single Sign-on (SSO)? How It Works

How to protect 0:06:10

How to protect your APIs against these 6 security threats

Building Modern APIs 0:45:29

Building Modern APIs with GraphQL

Introduction to Authentication 0:00:56

Introduction to Authentication and Authorization for enterprise API security webinar

What is a 0:09:12

What is a REST API?

Комментарии
Автор

Best presentation on this topic that I have ever come across.

katlehokomeke
Автор

Great presentation. Can you provide the links to "Practice labs"??

davisbugz
visit shbcf.ru