PacktLib: Node Security

Node Security

Credits

About the Author

About the Reviewers

www.PacktPub.com

Preface

Introduction to Node.js

History of Node.js

How Node.js differs?

Securing Node.js applications

Summary

General Considerations

JavaScript security

ES5 features

Static program analysis

Considerations for Node.js

npm modules (third-party code)

Summary

Application Considerations

Introduction to Express

Authentication

Authorization

Security logging

Error handling

Summary

Request Layer Considerations

Limiting the request size

Monitoring the event loop's responsiveness

Cross-site Request Forgery

Input validation

Summary

Response Layer Vulnerabilities

Cross-site Scripting (XSS)

Denial of Service

Security-related HTTP headers

Summary

Index