Sascha PreibischAPI Developmenthttps://doi.org/10.1007/978-1-4842-4140-0_5

5. API Authentication and Authorization

Sascha Preibisch¹

(1)

Richmond, BC, Canada

After discussing API design patterns, I would like to dedicate a complete chapter to this topic due to its importance. All APIs need to know who they are being used by. The answer is provided via authentication and authorization mechanisms. Whatever gets implemented, always remember this:

Authentication and authorization keep data private and shared between authorized entities only!

Authentication vs. Authorization

In any system, almost all relevant APIs require users, or at least clients, to authenticate. And at some point in time, an API will require authorizations, too. It is very ...

Get API Development: A Practical Guide for Business Implementation Success now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

API Development: A Practical Guide for Business Implementation Success by Sascha Preibisch

5. API Authentication and Authorization

Authentication vs. Authorization

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly