Book description
Cyber-criminals have your web applications in their crosshairs. They search for and exploit common security mistakes in your web application to steal user data. Learn how you can secure your Node.js applications, database and web server to avoid these security holes. Discover the primary attack vectors against web applications, and implement security best practices and effective countermeasures. Coding securely will make you a stronger web developer and analyst, and you'll protect your users.
Bake security into your code from the start. See how to protect your Node.js applications at every point in the software development life cycle, from setting up the application environment to configuring the database and adding new functionality. You'll follow application security best practices and analyze common coding errors in applications as you work through the real-world scenarios in this book.
Protect your database calls from database injection attacks and learn how to securely handle user authentication within your application. Configure your servers securely and build in proper access controls to protect both the web application and all the users using the service. Defend your application from denial of service attacks. Understand how malicious actors target coding flaws and lapses in programming logic to break in to web applications to steal information and disrupt operations. Work through examples illustrating security methods in Node.js. Learn defenses to protect user data flowing in and out of the application.
By the end of the book, you'll understand the world of web application security, how to avoid building web applications that attackers consider an easy target, and how to increase your value as a programmer.
What You Need:
In this book we will be using mainly Node.js. The book covers the basics of JavaScript and Node.js. Since most Web applications have some kind of a database backend, examples in this book work with some of the more popular databases, including MySQL, MongoDB, and Redis.
Publisher resources
Table of contents
- Â Acknowledgments
- Â Preface
- 1. Meet Your Tools
- 2. Set Up the Environment
- 3. Start Connecting
- 4. Avoid Code Injections
- 5. Secure Your Database Interactions
- 6. Learn to Do Things Concurrently
- 7. Bring Authentication to Your Application
- 8. Focus on Session Management
- 9. Set Up Access Control
- 10. Defend Against Denial-of-Service Attacks
- 11. Fight Cross-Site Scripts
- 12. Avoid Request Forgery
- 13. Protect Your Data
- 14. Secure the Existing Codebase
- Â Bibliography
Product information
- Title: Secure Your Node.js Web Application
- Author(s):
- Release date: December 2015
- Publisher(s): Pragmatic Bookshelf
- ISBN: 9781680500851
You might also like
book
Server Side development with Node.js and Koa.js Quick Start Guide
Build real-world robust web applications and APIs using the modern and expressive Koa Node.js framework. Key …
book
Pro Node.js for Developers
Since it's creation in 2009, Node.js has grown into a powerful and increasingly popular asynchronous-development framework …
book
Building APIs with Node.js
Learn how to build scalable APIs using the Node.js platform and ES6 (EcmaScript 2015) with this …
book
Node.js 8 the Right Way
Node.js is the platform of choice for creating modern web services. This fast-paced book gets you …