Despite the fact that the costs associated with hacking and data breaches have arguably never been higher, recent API-related security incidents involving large companies, T-Mobile and Accenture, highlight the fact that basic API security best practices are still often not being adhered to.
A new not-for-profit launched by 3scale and API Evangelist aims to help speed up the process of developing APIs by encouraging the sharing of API code and descriptions. Launched at Defrag in Denver Colorado today, API Commons provides an open source-like, Creative Commons-modelled platform for developers to share and reuse API code. Co-Founder Steve Willmott spoke to ProgrammableWeb on the eve of the launch, while his fellow co-founder Kin Lane worked behind-the-scenes to upload some government open data API code examples.
A few months ago, ProgrammableWeb announced the release of Heroku’s Platform API, which allowed developers to integrate the Heroku platform with third party applications and services. Now, Heroku has launched a public beta for OAuth 2.0 support for the Platform API. OAuth 2.0 support allows developers to control service needs as opposed to offering full service access to all user accounts.