e:[["$","$L23",null,{"props":{"isB2BDomain":true,"lessonContent":{"components":[{"type":"SlateHTML","content":{"html":"

Congratulations on ...

","comp_id":"XR9vEzHTqUHb2AY85OavP"},"hash":0}],"summary":{"title":"Congratulations!","description":"Conclude your journey and get some further recommendations.","tags":["thank you","educative.io","JavaScript"],"titleUpdated":true},"darkModeContent":[{"type":"SlateHTML","content":{"html":"

Congratulations on completing the course! Thank you for taking an actionable step toward making the web a more secure place and protecting users when they are online.

We’ve ...

","comp_id":"XR9vEzHTqUHb2AY85OavP"},"hash":0}],"content":["$24"]},"isPreviewLesson":false,"numberOfFreeComponents":1,"pageType":"collection_lesson","aiCoachVideoUrl":"https://youtu.be/kgl8y9J3O6c","collectionDetailsSSR":{"title":"Building Safer JavaScript Applications","summary":"JavaScript is one of the most popular and in-demand programming languages today and its usage shows no signs of slowing down. If you use JavaScript for either the backend or frontend, it is crucial to have a firm understanding of web application security in order to keep our users safe.\n\nIn this course, you’ll learn how to mitigate the most common JavaScript vulnerabilities and attacks. For example, you will learn why user-provided input should be treated with caution. Then, you’ll see how to safely store sensitive data on the client and the server, and how to securely transmit it across the internet. Finally, after learning about HTTP and API security, you can take an in-depth assessment to test what you've learned.\n\nQuestions about web application security often come up in interviews since knowing security principles is a sign of a mature developer. Should input validation happen on the client or the server? Take this course to find out!","details":"","clos":["A deep understanding of properly handling user-provided data","The ability to prevent common attacks like XSS, SQL injection, CSRF and clickjacking","Working knowledge of how to store and transmit sensitive data","Familiarity with HTTP and API security best practices","Hands-on experience using modern security techniques including Content Security Policy (CSP) and Subresource Integrity (SRI)"],"arabic_available":false,"page_tags":{"5708178996330496":"JavaScript,Web2.0,ECMAScript","5043394185527296":"Introduction,Beginner,Security Fundamentals","4712592708993024":"OWASP,Top Ten Security Risks,Software Security","5786463767887872":"XSS,CSP,HttpOnly","4911925211430912":"React,Encoding,Sanitization","4621753899024384":"SameSite=Strict,CSRF tokens,CORS","5310224028401664":"Syntactic Validation,Semantic Validation,Client-Side Validation","4742773553233920":"Prepared Statements,Parameterized Queries,ORM","6082226817335296":"Clickjacking,frame-ancestors,frame-src","5843971953917952":"minification,obfuscation,referer header","6144649237626880":"yarn,npm,GitHub actions","4653896419246080":"CSP,Encoding,XSS","5858041674334208":"","4876892161441792":"Preflight requests,Cacheing,HTTP credentials","6524991920406528":"encryption,JWT,hashing","6670942374985728":"XSS,React,SQL Injection","5801233791320064":"XSS,CSRF,HTTPS","5728404134690816":"cryptography,cookies,localStorage","5510489998360576":"sessions,API keys,JWTs","4952566800842752":"stack traces,console.trace,source maps","6078006953246720":"XSS,man-in-the-middle,HTTPS","4950370529050624":"thank you,educative.io,JavaScript","6226669129170944":"authentication,authorization,CORS","5912718013104128":"Security Libraries,Security Tooling,Security Playgrounds","5714949878054912":"CDN,Content Security Policy,CORS","6264419312205824":"","5807341424607232":"","6320835836248064":"","6632313223118848":"","6180905264873472":"","4971686213713920":"","5349010633392128":"","4682172467511296":"","5027080655077376":"","6237071760162816":"","5661760857309184":"","5704723683606528":"","5784601317605376":"","4827024534536192":"","5333103332818944":"","5228979652132864":"","5701336799903744":""},"collection_toc_is_enabled":true,"page_count":null,"docker":{"container":{"file":{"name":"tarball.tar.gz","size":593},"imageName":"author-6586453712175104-collection-5642853466505216-rev-96-container-5307872586760192-tarball","buildStatus":"SUCCESS","buildStatusUrl":"/api/author/6586453712175104/collection/5642853466505216/containers/5307872586760192/build/status","buildLogUrl":"/api/author/6586453712175104/collection/5642853466505216/containers/5307872586760192/build/log","metadata":{"sizeInBytes":593},"id":-1,"tarballDownloadUrl":"/api/author/6586453712175104/collection/5642853466505216/containers/5307872586760192/download","rebuildImageUrl":"/api/author/6586453712175104/collection/5642853466505216/containers/5307872586760192/rebuild","track":false},"envs":[],"jobs":[{"key":"ObclkxOuV8pQv3fCLdo9B","jobType":"Live","name":"React_Loader","inputFileName":"foo","runScript":"echo \"test\"","ports":"3000","startScript":"cp /usercode/App.js /educative-dompurify/src/App.js && cp /usercode/package.json /educative-dompurify/package.json && cd /educative-dompurify/ && npm rebuild sqlite3 && npm start","forceRelaunchOnRun":true,"runInLiveContainer":true}],"testRunners":[],"version":3,"loaded":true},"discounted_price":29,"cover_image_id":5276398835728384,"cover_image_metadata":"{\"width\":1024,\"height\":512,\"sizeInBytes\":49989,\"name\":\"Building Safer JavaScript Applications.png\"}","cover_image_serving_url":"/v2api/collection/6586453712175104/5642853466505216/image/5276398835728384","tags":[],"intro_video_url":"","intro_video_thumbnail_url":null,"aggregated_widget_stats":{"projects":0,"assessments":1,"SlateHTML":151,"codeExerciseCount":0,"codeRunnableCount":45,"codeSnippetCount":31,"illustrations":59,"Image":1,"RunJS":0,"Code":13,"Quiz":3,"WebpackBin":5,"EditorCode":18,"DrawIOWidget":41,"Columns":16,"TerminalWidget":2,"Sandpack":38,"cloudlabs":0},"default_themes":{"code_themes":{"Code":"default","Markdown":"default","RunJS":"default","SPA":"default","isForced":{"Code":false,"Markdown":false,"RunJS":false,"SPA":false}}},"api_keys":{"api_keys":[]},"skills":["JavaScript","API Development","React.js","HTML elements","SQL","Web API","Web Frameworks"],"testimonials":[],"licensing":null,"target_audience":"beginner","author_id":"6586453712175104","collection_id":"5642853466505216","approval_status":3005,"price":29,"is_private":false,"path_type":"regular","organization_id":null,"is_mini":false,"is_priced":true,"brief_summary":"Explore JavaScript web application security to mitigate vulnerabilities, handle user input, securely store and transmit data, and understand HTTP and API security. Gain insights for interviews and practice assessments.","approval_update_time":"2023-07-25T07:25:06.803Z","rating_visibility":true,"update_last_published_on_homepage":true,"show_developed_by":true,"udata_files":[],"CodeThemes":{"Code":"default","Markdown":"default","RunJS":"default","SPA":"default","isForced":{"Code":false,"Markdown":false,"RunJS":false,"SPA":false}},"is_marked_for_deletion":false,"transition_page_title":"","is_redirectable":false,"collection_type":"collection","adaptive_learning_mode":false,"HLOs_to_toc":{},"is_guide":false,"read_time":18000,"allow_logged_out_executions":false,"unique_live_widget_urls":false,"metadata_status":101},"pageSummarySSR":{"title":"Congratulations!","description":"Conclude your journey and get some further recommendations.","discourse_page_url":null},"adaptiveLearningConfigConstantSSR":0,"allowAllLessonPreview":false,"lockedBannerStatsSSR":{"b2cTrialStats":{"is_b2c_trial_active":true,"b2c_trial_active_duration":21,"b2c_trial_categories":"$26"},"b2cStatus":100,"learnerTags":"$27","workStats":1640,"interviewWorksStats":104,"inL2cStarterPack":false,"l2cWorkStats":46,"enableL2cStarterPackPaymentWidget":"false"},"pageTocSSR":"","authorId":"6586453712175104","collectionId":"5642853466505216","pageId":"4950370529050624","isCollectionPageLockedCachingEnabled":true,"aceFeatureFlags":{"enableAceEditor":true,"enableAceEditorForAnswers":true},"meta":{"type":["Article","TechArticle"],"title":"Congratulations!","name":"Building Safer JavaScript Applications","description":"Conclude your journey and get some further recommendations.","image":"https://educative.io/api/collection/6586453712175104/5642853466505216/image/5276398835728384.png","isAccessibleForFree":false,"keywords":"$27","provider":"Educative","publisher":"Educative","id":"courses/building-safer-javascript-applications/congratulations","author":"Educative","educationalLevel":"beginner","noIndex":true,"noFollow":true,"page_titles":{"5043394185527296":"Who is This Course For?","5708178996330496":"Is JavaScript Secure?","5786463767887872":"Cross-Site Scripting (XSS)","4621753899024384":"Cross-Site Request Forgery (CSRF)","4653896419246080":"The eval Function","4911925211430912":"The dangerouslySetInnerHTML and createRef Functions","4742773553233920":"SQL Injection","4712592708993024":"What is the Open Worldwide Application Security Project (OWASP)?","5801233791320064":"Cookies","4952566800842752":"Error Handling, Logging, and Alerting","6078006953246720":"HTTP Security Headers","5510489998360576":"Authentication and Authorization","6082226817335296":"The iframe Element","5714949878054912":"Subresource Integrity (SRI)","5310224028401664":"Input Validation","5843971953917952":"JavaScript Can't Keep a Secret","4950370529050624":"Congratulations!","4876892161441792":"Cross-Origin Resource Sharing (CORS)","6144649237626880":"Vulnerable and Outdated Components","5858041674334208":"JavaScript App Security","6524991920406528":"Cryptography","6670942374985728":"Quiz Yourself on Common Vulnerabilities, Attacks, and Preventions","5728404134690816":"Quiz Yourself on Sensitive Data Exposure","6226669129170944":"Quiz Yourself on HTTP and APIs","5912718013104128":"Appendix","6264419312205824":null,"6491381068726272":"","5807341424607232":null,"6320835836248064":null,"6471286124707840":"","6632313223118848":null,"6180905264873472":null,"4971686213713920":null,"5349010633392128":null,"4682172467511296":null,"5027080655077376":null,"5661760857309184":null,"5704723683606528":null,"5784601317605376":null,"4827024534536192":null,"5333103332818944":null,"5228979652132864":null,"5701336799903744":null,"5293657229099008":"","6237071760162816":null},"is_marked_for_deletion":false,"transition_page_title":"","is_redirectable":false,"deleted_course_lesson_redirect":{"author_id":null,"collection_id":null,"page_id":null,"redirect_url_slug":null},"metadata_status":101,"additional_course_alternatives":[],"showTransitionPage":false},"requestUrl":"/courses/building-safer-javascript-applications/congratulations","requestUrlInfo":{"authorId":"6586453712175104","collectionId":"5642853466505216","pageId":"4950370529050624","courseUrlSlug":"building-safer-javascript-applications","pageUrlSlug":"congratulations"},"isExternalContent":false}}],[["$","script",null,{"id":"generate-data","type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"$28"}}],false,"$undefined"]]