5. Securing the Web

• 5.1. HTTPS
  • 5.1.1. Types of MITM Attacks
  • 5.1.2. HTTPS (Hypertext Transfer Protocol Secure)
  • 5.1.3. Did You Know?
  • 5.1.4. HTTPS Connections
• 5.2. HTTPS and Flask
  • 5.2.1. Flask-Talisman
  • 5.2.2. Setting up Flask-Talisman
• 5.3. SQL Injection
  • 5.3.1. Recommended Video
  • 5.3.2. Example
  • 5.3.3. Types of SQL Injections
  • 5.3.4. Deleting Data
  • 5.3.5. Blind SQL Injection
• 5.4. Parameterised Queries
  • 5.4.1. SQLAlchemy
  • 5.4.2. ORM
  • 5.4.3. Input Validation
• 5.5. Cross-Site Scripting (XSS)
  • 5.5.1. Recommended Video
  • 5.5.2. How XSS Works
  • 5.5.3. Examples
  • 5.5.4. Preventing XSS
• 5.6. XSS and Flask Templates
• 5.7. Cross-Site Request Forgery (CSRF)
  • 5.7.1. Recommended Video
  • 5.7.2. How CSRF Works
  • 5.7.3. Example
  • 5.7.4. Preventing XSS
• 5.8. Flask-WTF
  • 5.8.1. Configuration
  • 5.8.2. Defining Forms
  • 5.8.3. Rendering Forms into Templates
  • 5.8.4. Validating Forms
• 5.9. Race Conditions
  • 5.9.1. Example
  • 5.9.2. Database Transactions
  • 5.9.3. SQLAlchemy Transactions and Flask