Based on Neil Madden: API Security in Action
00:00:00 What is API security?
00:02:41 Secure API development
00:04:38 Securing the Natter API
00:06:08 Session cookie authentication
00:07:56 Modern token-based authentication
00:09:56 Self-contained tokens and JWTs
00:11:46 OAuth2 and OpenID Connect
00:13:43 Identity-based access control
00:15:07 Capability-based security and macaroons
00:16:43 Microservice APIs in Kubernetes
00:18:20 Securing service-to-service APIs
00:19:38 Securing IoT communications
00:21:15 Securing IoT APIs
