This course, API Security on Google Cloud's Apigee API Platform, is the second in a series of three courses in the Developing APIs for Google Cloud's Apigee API Platform specialization. The first course introduces you to API design and the fundamentals of the Apigee platform. This course focuses on API security. The third course focuses on additional API development topics.
In this course, you learn how to secure your APIs. You explore the security concerns you will encounter for your APIs. You learn about OAuth, the primary authorization method for REST APIs. You will learn about JSON Web Tokens (JWTs) and federated security. You will also learn about securing against malicious requests, safely sending requests across a public network, and how to secure your data for users of Apigee.
This course utilizes hands-on labs that model an API development process that can be used for real-world projects on Google Cloud's Apigee API platform.
Module 0: Introduction
Welcome to API Security on Google Cloud's Apigee API Platform
Module 1: Authentication, Authorization, and OAuth
This module introduces API security concerns, OAuth, JSON Web Tokens, SAML and OpenID Connect.
Module 2: Content, Transport, and Internal Security
This module introduces content-based attacks, transport security, and protection against internal access