Securing Your Rest API Application With Typescript | CodeSignal Learn
Skip to main content
intermediate
intermediate
Securing Your Rest API Application With Typescript
Application Security
4 courses
51 practices
7 hours
Learning Security Basics with TypeScript is a hands-on course path for aspiring Application Security Engineers. You’ll learn to identify, exploit, and defend against common web security threats using TypeScript and modern web frameworks.
See courses
Earn a shareable
Certificate of Achievement
Verified skills you'll gain
Badge for API and Web Services Security, Intermediate
INTERMEDIATE
API and Web Services Security
Badge for Security Architecture and Threat Modeling, Developing
DEVELOPING
Security Architecture and Threat Modeling
Badge for Vulnerability Management and Remediation, Developing
DEVELOPING
Vulnerability Management and Remediation
Tools you'll use
Express.js
TypeScript
Trusted by learners working at top companies
Uber
Meta
Instacart
Google
Netflix
Zoom
Course 1
Implementing Rate Limiting
4 lessons
13 practices
Learn to secure your TypeScript REST API by implementing rate limiting, request throttling, CORS configuration, and robust refresh token management to prevent abuse and enhance application security.
See details
Course 2
Throttling API Requests
4 lessons
Course 3
Enabling & Customizing CORS in Your TypeScript REST API
4 lessons
Course 4
Preventing Refresh Token Abuse in Your TypeScript REST API
4 lessons
Turn screen time into skills time
Practice anytime, anywhere with our mobile app.
Download on the App StoreGet it on Google Play
Scan to download
Sign up
Join the 1M+ learners on CodeSignal
Be a part of our community of 1M+ users who develop and demonstrate their skills on CodeSignal
From our community
Hear what our customers have to say about CodeSignal Learn
I'm impressed by the quality and can't stop recommending it. It's also a lot of fun!
name
Francisco Aguilar Meléndez
Data Scientist
Badge for General Programming, AdvancedBadge for Coding and Data Algorithms, AdvancedBadge for Deep Learning and Neural Networks, Expert
+11
I love that it's personalized. When I'm stuck, I don't have to hope my Google searches come out successful. The AI mentor Cosmo knows exactly what I need.
name
Faith Yim
Software Engineer
Badge for HTML, CSS and Web Browser Fundamentals, ExpertBadge for Software Design and Architecture, IntermediateBadge for Debugging and Troubleshooting, Advanced
+14
It's an amazing product and exceeded my expectations, helping me prepare for my job interviews. Hands-on learning requires you to actually know what you are doing.
name
Alex Bush
Full Stack Engineer
Badge for JavaScript Programming and DOM API, ExpertBadge for Front-End Development, IntermediateBadge for Server-Side Programming, Advanced
+9
I'm really impressed by the AI tutor Cosmo's feedback about my code. It's honestly kind of insane to me that it's so targeted and specific.
name
Abbey Helterbran
Tech consultant
Badge for Computer Science Fundamentals, AdvancedBadge for Prompt Design and Development, DevelopingBadge for Storytelling, Expert
+8
I tried Leetcode but it was too disorganized. CodeSignal covers all the topics I'm interested in and is way more structured.
name
Jonathan Miller
Senior Machine Learning Engineer
Badge for Machine Learning and Predictive Modeling, ExpertBadge for Big Data Processing, AdvancedBadge for Advanced Prompting Techniques, Intermediate
+12
I'm impressed by the quality and can't stop recommending it. It's also a lot of fun!
name
Francisco Aguilar Meléndez
Data Scientist
Badge for General Programming, AdvancedBadge for Coding and Data Algorithms, AdvancedBadge for Deep Learning and Neural Networks, Expert
+11
13 practices
Throttling manages high request volumes by slowing down requests instead of blocking them. Unlike rate limiting, which rejects excess requests, throttling adds delays when thresholds are exceeded. This keeps your API responsive and stable during traffic spikes.
See details
10 practices
Modern web apps often need to fetch resources from different domains. CORS defines how servers declare which origins can make requests. By default, browsers block cross-origin requests, so you'll configure your Express server to respond with the necessary headers.
See details
15 practices
Modern web applications frequently rely on refresh tokens to seamlessly re-authenticate users without forcing them to log in repeatedly. While convenient, mishandling refresh tokens can grant attackers near-permanent access.
See details
Scan to download
Home
Paths
Other paths you may like
beginner
Introduction to Programming with Python
5 courses
121 practices
intermediate
Fundamental Coding Interview Prep with Python
5 courses
84 practices
intermediate
Mastering Algorithms and Data Structures in Python
5 courses
112 practices
advanced
Advanced Coding Interview Preparation with Python
5 courses
87 practices
intermediate
Full-Stack Engineering with JavaScript
6 courses
192 practices
intermediate
Journey into Data Science with Python
7 courses
217 practices
beginner
Java Programming for Beginners
7 courses
184 practices
beginner
Prompt Engineering for Everyone
5 courses
75 practices
Home
Company
AboutCareersLeadershipTalent ScienceNewsroom
Collections
Generative AIBusiness & LeadershipInterview PrepAI & Machine LearningLearn to CodeData Science & Engineering
Platform
Platform OverviewSkills AssessmentsLive Tech InterviewsAI InterviewerAI Role-PlayAI Tutoring with CosmoCertified Assessments
Roles
Talent AcquisitionEngineering LeadersSales LeadersCS & Support LeadersIO PsychologistsIndividuals
Resources
Resource LibraryBlogCustomer StoriesInterview PrepAPI Docs
Support
Knowledge Base
Home
Copyright © 2025 CodeSignal
PrivacyTermsSecurity & Compliance