Karl-Johan Spiik, Microsoft MVP

Action is the most beautiful form of speech

Tag api

Forged but Valid: How to Test API Authentication and RBAC Safely

Broken access control and identification & authentication failures consistently rank among the OWASP Top 10. Yet, many teams still disable authentication entirely when running integration tests against their APIs—undermining the very security controls they intend to validate. I had session… Continue Reading →

27.2.2026

© 2026 Karl-Johan Spiik, Microsoft MVP — Powered by WordPress

Theme by Anders NorenUp ↑