Essential Node.js Security
This book is 100% complete
Completed on 2017-05-08
About the Book
This book is intended to be a hands-on thorough guide for securing web applications based on Node.js and the ExpressJS web application framework. Many of the concepts, tools and practices in this book are primarily based on open source libraries and the author leverages these projects and highlights them.
The main objective of the book is to equip the reader with practical solutions to real world problems, and so this book is heavily saturated with source code examples as well as a high level description of the risks involved with any security topic, and the practical solution to prevent or mitigate it.
Even though ExpressJS is chosen as the case for web application framework, many concepts in this book can, and should be taken into account, and implemented with any other framework. Concepts like secure code, nosql injections, secure session management, and others are important security topics and would benefit any Node.js developer whose primary focus is web development.
License
Bundles that include this book
About the Author
Liran Tal is the lead maintainer and core member of the MEAN.JS JavaScript framework project, as well as a top contributor to MEAN.io including many other Node.js repositories and npm packages. He is a seasoned speaker at JavaScript, Node.js, and Security conferences and meetups as well as maintaining Node.js security projects and contributor to the OWASP community projects. Liran has previously authored books on web development, and agile software engineering and technically reviewed more than a dozen others.
At the office, Liran is leading an agile R&D engineering team for HP Software’s enterprise marketplace on Drupal/PHP, Node.js, AngularJS, and Java. He plays a key role in system architecture design, shaping the technology strategy and mentoring team members to technical growth and personal empowerment.
Being an avid supporter and contributor to the open source movement, in 2007 he has redefined network RADIUS management by founding, and developing daloRADIUS, a world-recognized and industry-leading open source project (http://www.daloradius.com).
Reader Testimonials
David Madar
Software Engineer, Hewlett Packard Enterprise
Excellent book. Covers the possible security issues and the right way to discover and deal with them. Written clearly with plenty of examples. A great book for those who wish to enrich their knowledge in security and for those who want to implement practical security solutions in their application.
Ran Bar Zik
Web Developer at AOL
An essential book for every Node.js developer out there. Many security issues can be avoided just by understanding the inherent security risks and this book covers clear description and how to tackle those issues. It is recommended not only for Node.js developers but to all JavaScript developers who want to expand their understanding of security. Security in source code should not be neglected and by reading this book every developer will do a major step towards producing more secure code.
Causes Supported
PHPWomen
An inclusive & global network providing support within the PHP community.
http://phpwomen.orgAn inclusive & global network providing support within the PHP community.
The Leanpub Unconditional, No Risk, 100% Happiness Guarantee
Within 45 days of purchase you can get a 100% refund on any Leanpub purchase, in two clicks.
See full terms
