Document the APIs with Swagger (4/4) — Testing the API

In this series of articles, I will introduce the different Swagger tools. Swagger is a very handy tool for API documentation. It allows you to generate “living” documentation, so that the documentation is always up to date, which is very difficult to do without this kind of tool. It also allows to generate code automatically, allowing the developer to focus on his core business. Finally, it is based on an open source specification format.

These articles focus on Swagger 2.0, while the 3.0 version (“OpenAPI 3.0.0”) is available.

This article is thus broken down into four parts :

  • Introduction,
  • The Swagger framework,
  • Setting up the set,
  • The API test.

Document the APIs with Swagger (3/4) — Setting up the environment

In this series of articles, I will introduce the different Swagger tools. Swagger is a very handy tool for API documentation. It allows you to generate “living” documentation, so that the documentation is always up to date, which is very difficult to do without this kind of tool. It also allows to generate code automatically, allowing the developer to focus on his core business. Finally, it is based on an open source specification format.

These articles focus on Swagger 2.0, while the 3.0 version (“OpenAPI 3.0.0”) is available.

This article is thus broken down into four parts :

  • Introduction,
  • The Swagger framework,
  • Setting up the set,
  • The API test.

Exemple de protection contre l'attaque CSRF en NodeJS [FRENCH]

Dans cet article, nous allons mettre en place une protection contre CSRF en NodeJS avec le module Express.

Exemple de mise en oeuvre de la protection CORS avec NodeJS [FRENCH]

Dans cet article, nous mettant en oeuvre la protection CORS avec NodeJS dans un serveur Web.

L'attaque CSRF [FRENCH]

CSRF (Cross-Site Request Forgery) est une attaque d’application Web côté client consistant à exécuter une requête Web malicieuse afin de changer un mot de passe ou de procéder à un virement d’argent à votre banque.

Elle crée de la confusion sur l’identité de l’utilisateur envoyant la requête.

Your browser is out-of-date!

Update your browser to view this website correctly. Update my browser now

×