I have done a draft of an REST API that basically consist of three parts.
[url=https://postimages.org/][img]https://i.postimg.cc/prjwJ554/api.png
1. Javascript (AJAX)2. API (Golang)3. Postgresql
The overall intention is to simplify and make it as DRY as possible. Having the SQL queries outside the API in a lookup database, the endpoints(routers) can be more generic (simpler to maintain).
1. Can you see any security issues? (Except CORS)2. Anything you should done different?3. Any thoughts about the generic approach?
Any sort of feedback appreciated!
A more detailed description of this API is found here: