Implementing GraphQL API security best practices with AWS AppSync (level 300)

As a developer, the important parts of managing your applications should always include enhancing performance, strengthening security and improving observability. In this session, we take you through security best practices for your GraphQL APIs with AWS AppSync, providing you with an understanding of how these can be applied to your applications. We also dive deep into how AWS CDK can be used to create repeatable patterns and showcase a reference architecture for these best practices.

Derek Bingham, Senior Developer Advocate, AWS

Download slides

Previous Video

Build powerful Next.js applications with AWS Amplify (Level 300)

Server-side rendering allows developers to build applications that are easily indexable by search engines, ...

Next Video

Develop, operate, and integrate best practices for container apps with AWS Copilot (Level 400)

Container is a powerful way for developers to package and deploy their applications. AWS Copilot makes it e...

Implementing GraphQL API security best practices with AWS AppSync (level 300)

Previous Video

Next Video

Other content in this Stream

Cloud fundamentally changes the way we build and operate applications. On the surface, these changes seem obvious enough: we split our applications into independent modules, deploy on elastic run-time

In this session, we build an application in Flutter that not only services all platforms, but also has a rich set of features including offline first functionality that gives a consistent experience

In this session, learn how to easily create a web application that uses maps and geolocation functionality in a simple way using AWS Amplify and the new Amazon Location Services.

Server-side rendering allows developers to build applications that are easily indexable by search engines, highly performant, and can improve website loading performance on mobile devices.

Container is a powerful way for developers to package and deploy their applications. AWS Copilot makes it easy to streamline the process and deploy containers on AWS.

As the number of services grow within an application, it becomes difficult to pinpoint the exact location of errors, reroute traffic after failures, and safely deploy code changes.

In this session, we evaluate the common characteristics to consider when evaluating messaging channel technologies.

In this session, we dive into the issues and error modes of synchronous coordination and best practices to manage and log errors.

In this session, we define and go through the hands-on demos, deep dive into the topic and explain why immutable infrastructure is a vital software engineering concept.

How can you solve the major challenges of multi-tenant (SaaS) environments such as tenant isolation, permissions management, and data partitioning? In this session, we dive deep into the pros and cons

To deal with uncertainty, you have to design your software to be resilient. In this session, we define and review the most useful patterns for building resilient applications

One of the implications of applying the microservices architectural style is that a lot of communication between components is done over the network.