Securing Express Applications
Learn how to defend against malicious attacks and improve user experiences using sessions, cookies, and password authentication.
Time to complete6 Weeks
Certificate of completionYes
Prerequisites2 coursesWe suggest you complete the following courses before you get started with Securing Express Applications:
- Learn Node.js
- Learn Express
About this skill path
From malicious threat actors to curious teenagers, hacking attempts and cyber attacks are coming from every angle. Using the OWASP Top Ten as a guide, learn to protect your users, and yourself, from threats to your Express and Node.js applications. Strong authentication and authorization practices, properly protected data, and secure code will protect your web app from these constant threats.
Skills you'll gain
- Use basic authentication techniques
- Secure applications with OAuth 2.0
- Avoid SQL injection, XSS, & CSRF attacks
Syllabus5 units • 11 lessons • 5 projects • 14 quizzes
Introduction to Securing Express Applications
Learn best practices for securing web applications.
User Authentication & Authorization
In this course, you’ll learn how to implement User Authentication and Authorization in an Express web application.
Learn how to secure data in your Express application.
Defending Node Applications from SQL Injection, XSS, & CSRF Attacks
Protect Node.js Applications from SQL Injection, CSRF, & XSS Attacks.
Review: Securing Express Applications
Review how to secure an Express application.
Hands-on learningDon't just watch or read about someone else coding — write your own code live in our online, interactive platform. You'll even get AI-driven recommendations on what you need to review to help keep you on track.
Projects in this skill path
Dognation: Password AuthenticationIn this project, you'll implement authentication in an Express application using `express-sessions`, `passport-local`, and `bcrypt.js`.
Securing School Data: Data SecurityApply what you learned about Postgres security and environment variables!
Codey's Confectionery: Preventing SQL Injection AttacksPractice using prepared statements and form validation to prevent SQL injection attacks.
Reviews from learners
- The progress I have made since starting to use codecademy is immense! I can study for short periods or long periods at my own convenience - mostly late in the evenings.ChrisCodecademy Learner @ USA
- I felt like I learned months in a week. I love how Codecademy uses learning by practice and gives great challenges to help the learner to understand a new concept and subject.RodrigoCodecademy Learner @ UK
- Brilliant learning experience. Very interactive. Literally a game changer if you're learning on your own.John-AndrewCodecademy Learner @ USA
Our learners work at
What's included in skill paths
Practice ProjectsGuided projects that help you solidify the skills and concepts you're learning.
AssessmentsAuto-graded quizzes and immediate feedback help you reinforce your skills as you learn.
Certificate of CompletionEarn a document to prove you've completed a course or path that you can share with your network.
Skill paths help you level-up
Get a specialized skillWant to level up at work? Gain a practical, real-world skill that you can use right away to stand out at your job.
Get step-by-step guidanceWe guide you through exactly where to start and what to learn next to build a new skill.
Get there quicklyWe’ve hand-picked the content in each Skill Path to fast-track your journey and help you gain a new skill in just a few months.
Ready to learn a new skill?Get started on Securing Express Applications with a free Codecademy account.
Looking for something else?
- Skill path
Build Python Web Apps with FlaskLearn how to code in Python, design and access databases, create interactive web applications, and share your apps with the world.Includes 8 CoursesWith CertificateIntermediate20 Lessons
- Skill path