Pipe 2VB How Not to Write an API

How Not to Write an API

by
in code on (#2VB)
While creating an Android App for Criticker, a movie review and recommendation website, this author found some interesting security holes in their API.

Who knew that a LookupPassword function that returned any user's password in plain-text would be a bad idea?

History

2014-03-10 03:26
How Not to Write an API
bryan@pipedot.org
While creating an Android App for Criticker, a movie review and recommendation website, this author found some interesting security holes in their API.

Who knew that a LookupPassword function that returned any user's password in plain-text would be a bad idea?
Reply 0 comments