avaxgfx Posted April 11 Report Share Posted April 11 [img]/storage-10/0424/AaiirsLZrGHKR2YlRcwOIMyouD2qLKOm.jpg[/img] Ryan Weaver | Duration: 3:43 h | Video: H264 1920x1080 | Audio: AAC 48 kHz 2ch | 1,30 GB | Language: English Here be dragons! We've built a pretty sweet API for storing dragon treasures... but we've completely neglected one minor detail: security! In this tutorial, we'll secure our API Platform-powered API in every way imaginable... and spin up a nifty test suite along the way • Disabling documentation on production • Different types of API authentication • Logging in via Ajax & sessions • Creating an API Token system with "scopes" • Securing your API resources • Bootstrapping tests with zenstruck/browser & zenstruck/foundry! • How to use PATCH • Adding security & securityPostDenormalize to operations & using object • Voters • Conditional fields based on permissions: #[ApiProperty(security: 'is_granted(...)')] • Using a "state processor" to hash user passwords • Dynamic serialization groups with a ContextBuilder • Completely dynamic fields by decorating the normalizer • Preventing "not allowed" data with validation • Automatically set the "owner" of an object on create • Auto-filter collections with "query extensions" Sheesh! Let's go! Homepage [code] https://filestore.me/ce9l7y42itfq/API_Platform_3_Part_2.rar [/code] [code] https://rapidgator.net/file/76547cec63bffa2edb5439b85f48e917/API_Platform_3_Part_2.rar.html [/code] Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now