LinkedIn and 3rd parties use essential and non-essential cookies to provide, secure, analyze and improve our Services, and to show you relevant ads (including professional and job ads) on and off LinkedIn. Learn more in our Cookie Policy.

Select Accept to consent or Reject to decline non-essential cookies for this use. You can update your choices at any time in your settings.

Start free trial Sign in

From the course: API Testing Foundations

Unlock the full course today

Join today to access over 23,400 courses taught by industry experts.

Security testing

Security testing - Postman Tutorial

From the course: API Testing Foundations

Start my 1-month free trial Buy for my team

Security testing

“

- [Instructor] We all know how important security is in the modern world of web development. This is of course no less true when we're dealing with APIs. This course is not about security testing so we won't spend a lot of time on it, but I do want to touch on it briefly so that we don't forget that it's an important consideration when it comes to designing and testing APIs. Sometimes we can think that security's all about the auth service and making sure that people can't get your credentials or get around to authorization APIs. This is, of course, very important, but it's just the tip of the iceberg when it comes to security testing an API. I do want to mention something here though that's very important. One of the most important rules of authentication and authorization is don't try to implement your own version of it. Unless you're a big company like Google that has the resources to take the time to do it right,…

Contents