API security is crucial, as it directly impacts your business’s success and safety. How well you secure your APIs can make or mar your product, and it is of utmost importance to spend time thinking about security. I have seen developers work in Postman without properly securing their credentials, often leaving API keys exposed in shared environments or logging sensitive…
Postman
https://medium.com/better-practices · 10 posts · history since 2022 · active
6 Mar 2025
6 Jul 2023
Get started with the Home Assistant WebSocket API In Part 1 of this series, we learned about the WebSocket protocol and how to set up our own WebSocket server in Node.js . Next, let’s explore how to use a public WebSocket API to access smart devices around a connected home. REST and WebSockets for a connected home When it comes…
28 Jun 2023
It’s not just developers who rely on APIs. DevOps engineers and data engineers also use APIs for many reasons, including to manage cloud infrastructure. For example, you can programmatically manage resources, configure services, and perform operations using APIs. Let’s review other reasons to use cloud APIs. Reasons to use cloud APIs In addition to providing a management console and SDKs,…
26 Apr 2023
Ready to take your engineering ship to Warp 9? (by Christopher Chiu-Tabet) Nowadays, everyone is examining how to increase efficiencies and cut costs to improve their bottom line. Although it may seem counterintuitive, engineering managers can help increase efficiencies by investing in tools for their engineering group that can help increase the team’s velocity and therefore increase efficiencies and the…
13 Feb 2023
Storing Postman scripts within reusable components in an OpenAPI definition In programming, “hacking” has historically meant making something do what it wasn’t originally intended to do, like using a whistle from a cereal box prize to play the tone into a pay phone to get free long distance calls. Today, it also refers to finding an inelegant solution to a…
1 Feb 2023
And use Postman to send and receive messages across the WebSocket connection The WebSocket protocol provides a way to exchange data between a client and server over a persistent connection. The data can be passed in both directions with low latency and overhead, and without breaking the connection. This means the server can independently send data to the client without…
21 Oct 2022
If you’re one of the 20 million people who use Postman , then you’ve worked with Postman Collections in one way or another. Collections are a great way to organize API requests, and they allow developers to easily create, share, and collaborate on different APIs. Collections can be used for almost any API workflow, whether it’s mocking, monitoring, testing, or…
9 Aug 2022
To Build (an SDK), or not to Build — that is the question! If you are building a SaaS product, you most likely also provide an API for your product. At some point, you will probably consider whether you should also provide your customers with an SDK for the API. In this article, I will list the advantages of supporting…
23 Mar 2022
source: https://www.freeimages.com/download/private-property-no-trespassing-1205389 I dentity and A ccess M anagement system deals with “who” should get “what” level of access to an object (entity) or a function. The subsystem that defines “who” is called Authentication (Identity), while the subsystem that defines “what” level of access is called Authorization (Access). Building an IAM system can get very complex quickly. No wonder “Broken…
31 Jan 2022
Learn to JAM with scripts, mock servers, and the visualizer Jamstack originally referenced a web architecture composed of JAM: JavaScript, APIs, and Markup. Websites could be delivered statically, such as serving HTML from static hosting, while providing dynamic content and an interactive experience through JavaScript and APIs. “A modern web development architecture based on client-side JavaScript, reusable APIs, and prebuilt…