Skip to content

Improve Content - API Design Basics: Security #78

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
philsturgeon opened this issue Jan 26, 2025 · 0 comments
Open

Improve Content - API Design Basics: Security #78

philsturgeon opened this issue Jan 26, 2025 · 0 comments
Assignees
@philsturgeon

Comments

@philsturgeon
Copy link
Contributor

Crawl and Destroy

The grand old story of Google crawling and deleting content in an XML API because destructive actions shouldn't be on a GET. This is why methods matter.

Linked Malice

Making it so easy that whole API interactions "fit into a single URL" is a fools errange and just makes it easier for people to stick dodgy image src=" into emails or wedged into user generated content thats not been stripped properly.
@philsturgeon philsturgeon self-assigned this Jan 27, 2025
@philsturgeon philsturgeon changed the title Improve Content - Part 1: Design Theory - Security Improve Content - API Design Basics: Security Feb 6, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@philsturgeon philsturgeon

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@philsturgeon