API Platform 3: Security for your Treasures [symfonycasts]
API Platform 3 Part 2: Security for your Treasures
Официальные курсы от создателей Symfony
Эта раздача содержит:
Первые уроки доступны бесплатно. Можно ознакомиться с ними, чтобы понять нужность этого курса
Описание курса:
This course is in the planning stages
Here be dragons! We've built a pretty sweet API for storing dragon treasures... but we've completely neglected one minor detail: security! In this tutorial, we'll secure our API Platform-powered API in every way imaginable... and spin up a nifty test suite along the way:
Язык видео: Английский
продажник:
API Platform 3 Part 2: Security for your Treasures
Официальные курсы от создателей Symfony
Эта раздача содержит:
Первые уроки доступны бесплатно. Можно ознакомиться с ними, чтобы понять нужность этого курса
Описание курса:
This course is in the planning stages
Here be dragons! We've built a pretty sweet API for storing dragon treasures... but we've completely neglected one minor detail: security! In this tutorial, we'll secure our API Platform-powered API in every way imaginable... and spin up a nifty test suite along the way:
- Disabling documentation on production
- Different types of API authentication
- Logging in via Ajax & sessions
- Creating an API Token system with "scopes"
- Securing your API resources
- Bootstrapping tests with zenstruck/browser & zenstruck/foundry!
- How to use PATCH
- Adding security & securityPostDenormalize to operations & using object
- Voters
- Conditional fields based on permissions: #[ApiProperty(security: 'is_granted(...)')]
- Using a "state processor" to hash user passwords
- Dynamic serialization groups with a ContextBuilder
- Completely dynamic fields by decorating the normalizer
- Preventing "not allowed" data with validation
- Automatically set the "owner" of an object on create
- Auto-filter collections with "query extensions"
Язык видео: Английский
продажник:
https://symfonycasts.com/screencast/buy/api-platform-security