O'Reilly logo

Mastering Web Application Development with AngularJS by Pawel Kozlowski, Peter Bacon Darwin

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 7. Securing Your Application

In any web application, we must ensure that sensitive data and actions are not available to unauthorized users. The only really secure place in such an application is within the server. Outside of this, we have to assume that the code can be compromised, and so we must put checks in place at the point where data enters or leaves our server. The first part of this chapter looks at what we must do on both the client side and the server side to ensure this security, as given in the following points:

  • Securing the server to prevent unauthorized access to data and HTML
  • Encrypting the connection to prevent snooping
  • Preventing cross-site scripting (XSS), and cross-site request forgery (XSRF) attacks
  • Blocking a JSON injection ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required