Securely Integrate Cloud Native Apps

When building modern applications one of the go-to development patterns is to use a Javascript based application framework and build your application in such a way that most of the rendering is done client based. In this model the application which is in effect running on the client computer can reach out to REST APIs in the backend to do parts of the heavy lifting.

A creat example of such a Javascript based application framework is Vue.JS or Oracle JET.

Call REST APIs directly

An additional benefit is that you can develop a cloud native application which is not only reaching out to your REST APIs however also connects up to third party services. This means that you do not have to develop certain services yourself, you can directly interlink from an application level and benefit from the service they provide.

The question that is coming to mind is, “is this option always a benefit or is also a potential security threat to your users?”.

Third party dependency is a security risk

To put is simply, every dependency you have on a third party which is outside the span of your control is by definition a security risk. We talk from a security point of view only in this article, we do not talk from a operational…