You're reading from Building an API Product Design, implement, release, and maintain API products that meet user needs

Product type Paperback

Published in Jan 2024

Last Updated in Jan 2024

Publisher Packt

ISBN-13 9781837630448

Length 278 pages

Edition 1st Edition

Concepts

Design

Author (1):

Bruno Pedro

View More author details

Table of Contents (26) Chapters

Preface

1. Part 1:The API Product

2. Chapter 1: What Are APIs? FREE CHAPTER

3. Chapter 2: API User Experience

4. Chapter 3: API-as-a-Product

5. Chapter 4: API Life Cycle

6. Part 2:Designing an API Product

7. Chapter 5: Elements of API Product Design

8. Chapter 6: Identifying an API Strategy

9. Chapter 7: Defining and Validating an API Design

10. Chapter 8: Specifying an API

11. Part 3:Implementing an API Product

12. Chapter 9: Development Techniques

13. Chapter 10: API Security

14. Chapter 11: API Testing

15. Chapter 12: API Quality Assurance

16. Part 4:Releasing an API Product

17. Chapter 13: Deploying the API

18. Chapter 14: Observing API Behavior

19. Chapter 15: Distribution Channels

20. Part 5:Maintaining an API Product

21. Chapter 16: User Support

22. Chapter 17: API Versioning

23. Chapter 18: Planning for API Retirement

24. Index

Why subscribe?

25. Other Books You May Enjoy

What is API security?

The ability to design secure APIs is something that involves multiple disciplines. You need to consider several details that can open your API to potential attackers who can access and manipulate sensitive information. The investment pays itself, though, because the cost of addressing a security breach can undermine your API product. The most important areas that you should pay attention to include authentication and authorization, input validation, rate limiting, token and API key management, monitoring, and education. This last item is particularly important because it increases your team’s awareness of API security and puts everyone on the same page. Fortunately, there are entities dedicated to security education and awareness.

OWASP is a non-profit organization that works on helping people and companies become more aware of software security. OWASP offers tools and educational resources that you can use to guide your API design and testing. One of...