Web Server Security #2
Description
All web servers need to be secure from threat actors (people looking to be mischevious). After evaluating endpoints, consider how they might be vulnerable/abused. Consider attacks like DDoS and XSS and the effect of mass request spamming (performance impact, cost of server use).
Research tech like JWTs, HTTP-tokens, and rate limiting. Commit your own ideas to your fork of the backend repo, and discuss in comments / IRL. Best security practices get committed in /docs.