APIDesign
All SWE patterns tagged with Technology Focus: APIDesign
2
SWE Patterns
Technology Focus
SWE-3003
2^ℵ₀
Insufficient Permission Granularity in Schema
Schema designs that lack proper permission granularity, allowing broad access to data through single permission grants. This includes friend-of-friend...
SWE-5001
2^ℵ₀
API Rate Limiting and Enumeration Weakness
APIs that lack proper rate limiting, use predictable identifiers (sequential IDs), and don't verify authorization for each request. This allows attack...