Lukas Rosenstock

Security is an often overlooked aspect of API design. In another guest post for my client Stoplight I have written about the different elements of API security and how the OpenAPI specification allows you to define authentication and authorization for your API explicitly, but also how a specification-driven workflow helps with security in general.

You can read my API security in OpenAPI article in the Stoplight API Corner on Medium.

Disclosure: This work was paid for by Stoplight.