Mix service to service and service to client authentication and authorization

I would like to design a system consisting of multiple services, but preserve the
Clients’s oauth2 bearer token.
In this basic example, I would have System A, validating a Bearer Token for a particular user and doing some actions. Service … Continue reading Mix service to service and service to client authentication and authorization

Is using a developer key to protect a REST API good practice?

I’d like to implement a RESTful API service over HTTP that developers can call from their server side environments.
I intend to use a cryptographically secure pseudo-random number generator (CSPRNG) to generate keys and then convert the bi… Continue reading Is using a developer key to protect a REST API good practice?

Is there a service that provides an api for running user-provided code in a variety of languages?

I’m attempting to scaffold out a development training project, and am looking for some kind of service that provides an api that I can POST a chunk of code to (in whatever language specified), and return the results or errors of running th… Continue reading Is there a service that provides an api for running user-provided code in a variety of languages?

Hybrid-Analysis.com indicates the website that my macOS system is contacting is likely malicious

Backstory:
I just upgraded my MacBook from OS X 10.11.6 to the most updated version of macOS, 10.14.6 Mojave. I also have the Little Snitch network filter installed. I know nearly nothing about information security, so when I see my comput… Continue reading Hybrid-Analysis.com indicates the website that my macOS system is contacting is likely malicious