1 web apis that developers love
play

1 Web APIs that Developers Love Kai Spichale @kspichale 2 - PowerPoint PPT Presentation

Oct 08, 2022 •173 likes •726 views

1 Web APIs that Developers Love Kai Spichale @kspichale 2 Communication Decoupling from among developers implementation Client API Implementation Integration & reuse Operations with input and output 3 Developer Perspective ?

  1. 1

  2. Web APIs that Developers Love Kai Spichale @kspichale 2

  3. Communication Decoupling from among developers implementation Client API Implementation Integration & reuse Operations with input and output 3

  4. Developer Perspective ? ► APIs are intended for developers ► Use standard HTTP ► Document precisely & with examples 4

  5. URI Design for Web APIs 5

  6. Unique identifier of resources /answers/42 Could be cryptic /xc487xdjfngx71dd Client should not create links by himself Server provides links 6

  7. Hypermedia links (HATEOAS) "links": [ { "href": "https://api.sandbox.paypal.com/v1/ payments/payment/PAY-2XR80EBWOSA", "rel": "self", "method": "GET" } ] 7

  8. Should You Care about URI Design? No! REST does not require proper URI design Yes! Many so-called „REST“ APIs ignore hypermedia Readable URIs help developers to understand the API 8

  9. Advantages of URI Design Readable https://api.github.com/users/mojombo/followers Hackable https://api.github.com/users https://api.github.com/users/kspichale Stable No broken links HTTP 301 «Moved Permanently» 9

  10. Best Practices for URIs Short Easier to read Abbreviations can be counterproductive Consistent Patterns, names, case Plural nouns Strict lowercase Hyphen 10

  11. Don’t Be Dogmatic – Pseudo File Endings File of a web app http://www.ics.uci.edu/~fielding/pubs/ ↵ dissertation/top.htm Resource of a Web API http://userstream.twitter.com/1.1/user.json (There is no content negotiation anyway.) 11

  12. Don’t Be Dogmatic – Trailing Slashes /foo/bar Unix file /foo/bar/ Unix directory Be consistent: Avoid trailing /books/ slahses /books/42 /books/42/chapters /books/42/chapters/1 12

  13. Don’t Be Dogmatic – Trailing Slashes Directory resource / Provides navigation links to begin the interaction with the API Typical mistake http://api.example.com/ vs. http://api.example.com 13

  14. 1:* Relations Hierarchical URI pattern :collection/:item/:sub-collection/:sub-item 1 * Group Person POST /groups/g1/persons GET /groups/g1/persons/p1 DELETE /groups/g1/persons/p1 14

  15. n:m Relations * * Group Person GET /groups/g1 { Caching? "id": "p1", Which one is "persons": ["p1", "p2"] leading? } GET /persons/p1 { "id": "g1", "groups": ["g1", "g2"] } 15

  16. n:m Relations * * with Subscriptions Group Person POST /memberships { Membership "person_id": "p1", "group_id": "g1", Caching! } Atomicity! GET /membership/mem-p1-g1 Additional DELETE /membership/mem-p1-g1 properties! 16

  17. Best Practices for IDs – Prefixes Makes URI more readable vs. /agents/agent007 /agents/007 /persons/83j9x vs. /persons/per-83j9x https://jira.spring.io/browse/DATAREST-516 17

  18. Best Practices for IDs – Sequential IDs https://jira.spring.io/browse/DATAREST-516 Guessable (advantage): There must be a ticket 515 Hackable (advantage): Quick navigation to another ticket 18

  19. Best Practices for IDs – Sequential IDs http://api.super-kewl-app.com/users/u-314 Guessable (disadvantage): There must be 313 other users Hackable (disadvantage): Potential security issue No 1:1 relation between database key and public ID 19

  20. Best Practices for IDs – Slug IDs http://stackoverflow.com/questions/47427/why ↵ -do-some-websites-add-slugs-to-the-end-of-urls Natural key Created by URL encoding Search Engine Optimization Read content in link before clicking on it 20

  21. Partial Responses 21

  22. Partial Responses – Paging Product 10 Product 09 GET /products?page=1&count=5 ↵ Product 08 Product 07 &sort-by=id&order=desc Product 06 Product 05 Product 04 GET /products?page=2&count=5 ↵ Product 03 Product 02 &sort-by=id&order=desc Product 01 22

  23. Partial Responses – Web Linking (RFC5899) "links": [ { "href": "http://api.example.com/products?page=1&count=5", "rel": [ "previous“ ], "method": "GET" }, { "href": "http://api.example.com/products?page=2&count=5", "rel": [ "self" ], "method": "GET" }, { "href": "http://api.example.com/products?page=3&count=5", "rel": [ "next" ], "method": "GET" } ] 23

  24. Partial Responses – Web Linking (RFC5899) "links": [ { "href": "http://api.example.com/products?page=1&count=5", "rel": [ “first“ ], "method": "GET" }, { "href": "http://api.example.com/products?page=23&count=5", "rel": [ “last" ], "method": "GET" } ] 24

  25. Partial Responses – Streams of Data Message 10 Message 12 Message 09 Message 11 page=1 Message 08 Message 10 count=5 Message 07 Message 09 processed Message 06 Message 08 Message 05 Message 07 Message 04 Message 06 Message 03 Message 05 Message 02 Message 04 Message 01 Message 03 Message 02 Message 01 25

  26. Partial Responses – Streams of Data Message 12 Message 12 Message 11 Message 11 Message 10 Message 10 Message 09 Message 09 Message 08 Message 08 Message 07 Message 07 Message 06 Message 06 page=2 Message 05 Message 05 count=5 Message 04 Message 04 page=2 Message 03 Message 03 count=5 Message 02 Message 02 Message 01 Message 01 26

  27. Partial Responses – Cursoring Message 10 Message 12 Message 09 Message 11 count=5 Message 08 Message 10 Message 07 Message 09 processed Message 06 Message 08 Message 05 Message 07 Message 04 Message 06 Message 03 Message 05 Message 02 Message 04 count=5 Message 01 Message 03 max_id=5 Message 02 Message 01 27

  28. Partial Responses – Cursoring Message 18 Message 18 Message 17 Message 17 count=5 processed Message 16 Message 16 since_id=10 Message 15 Message 15 Message 14 Message 14 count=5 Message 13 Message 13 since_id=10 Message 12 Message 12 Message 11 Message 11 max_id=13 Message 10 Message 10 ... ... processed processed Message 02 Message 02 Message 01 Message 01 28

  29. Siren – Embedding vs. Linking { _links": { "self": { "href": "/books/42" }, "author": { "href": "/people/douglas-adams"} } } Client may resolve links to sub-entities 29

  30. Siren – Embedding vs. Linking { "_links": { "self": { "href": "/books/42" }, "author": { "href”: "/people/douglas-adams”} }, "_embedded": { "author": { "_links": { "self”: { "href": "/people/douglas-adams” } }, "name": "Douglas Noel Adams", "born": "March 11, 1952”, "died": "May 11, 2001" } } } 30

  31. GraphQL – A Data-Fetching API A GraphQL query is sent as a string to a server to define the shape of the returned representation Developed by Facebook http://graphql.org Strongly typed 31

  32. GraphQL – A Data-Fetching API { author(id:douglas-adams) { name } } Server can return exactly what a client asks for and no more: { "author": { "name": "Douglas Noel Adams" } } 32

  33. GraphQL Selections Fields Complex Data Arguments { { { id releaseDate { book(id:42) { firstname month id lastname year title } } coverPic(size:100) } } } 33

  34. GraphQL Selections Using the spread operator (...) and fragments fragment bookFields on Book { id title coverPic(size:100) } query bookQuery { book(id:42) { ...bookFields } } 34

  35. GraphQL Mutations Mutation { likeBook(bookId: 42) { book { name likeCount } } } 35

  36. API Changes GET /books/42 Response: { "id": 42, "title": "The Hitchhiker's Guide to ↵ the Galaxy", "price": "7.95" } 36

  37. API Changes GET /books/42 Response: { "id": 42, "title": "The Hitchhiker's Guide to ↵ the Galaxy", "bruttoPrice": "7,95", "nettoPrice": "6,12" } 37

  38. API Changes GET /books/42 Response: { "id": 42, "title": "The Hitchhiker's Guide to ↵ the Galaxy", "price": "7.95“, "bruttoPrice": "7,95", "nettoPrice": "6,12" } 38

  39. GraphQL Introspection API GET /books/42 query BookIntrospection { __type(name: "Book") { name fields(includeDeprecated: true) { name isDeprecated deprecationReason } } } 39

  40. GraphQL Introspection API { "data": { "__type": { "name": "Book", "fields": [ { "name": "id", "isDeprecated": false, "deprecationReason": null }, { "name": "price", "isDeprecated": true, "deprecationReason”: "Use ‘bruttoPrice’ instead." }, 40

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

TLS 1.3: What developers should know about the APIs Daiki Ueno Red Hat Crypto team TLS 1.3:

TLS 1.3: What developers should know about the APIs Daiki Ueno Red Hat Crypto team TLS 1.3:

TLS 1.3: What developers should know about the APIs Daiki Ueno Red Hat Crypto team TLS 1.3: RFC 8446 Published in August 2018 Low latency More security Cleaner protocol Low latency: 1-RTT handshake TLS 1.2: 2-RTT TLS 1.3: 1-RTT

800 views • 40 slides
Should I Protect You? Understanding Developers Behavior to Privacy-Preserving APIs Shubham

Should I Protect You? Understanding Developers Behavior to Privacy-Preserving APIs Shubham

Should I Protect You? Understanding Developers Behavior to Privacy-Preserving APIs Shubham Jain and Janne Lindqvist Department of Electrical and Computer Engineering Rutgers University Workshop on Usable Security (USEC14) February 23,

230 views • 21 slides
Automating API Style Guides HELLO! I am Phil Sturgeon I love to talk about APIs, 2 crashing

Automating API Style Guides HELLO! I am Phil Sturgeon I love to talk about APIs, 2 crashing

Automating API Style Guides HELLO! I am Phil Sturgeon I love to talk about APIs, 2 crashing bikes, and saving the planet. You can find me at @philsturgeon 3 Inconsistency Isnt Great 1. rando_Naming-conventions 2. Different data

687 views • 36 slides
Christian Love Weve Heard a Lot about Love Cant buy my Love! -The Beatles Love

Christian Love Weve Heard a Lot about Love Cant buy my Love! -The Beatles Love

9/7/2017 Christian Love Weve Heard a Lot about Love Cant buy my Love! -The Beatles Love Dont Cost a Thing -Jennifer Lopez Love Will Keep Us Together! -Captain & Tennille Love Takes Time -Mariah Carey 1

425 views • 4 slides
DevOps Counselling Or: How to help your developers and sysadmins learn to love each other (again)

DevOps Counselling Or: How to help your developers and sysadmins learn to love each other (again)

DevOps Counselling Or: How to help your developers and sysadmins learn to love each other (again) T OM S ULSTON http://thoughtworks.com @tomsulston Wednesday, May 11, 2011 Counselling? Wednesday, May 11, 2011 Most problems are

3.22k views • 91 slides
Intro to Rust for Substrate Developers Or: how I learned to stop worrying and love lifetimes

Intro to Rust for Substrate Developers Or: how I learned to stop worrying and love lifetimes

Intro to Rust for Substrate Developers Or: how I learned to stop worrying and love lifetimes Maciej Hirsz Software developer @ Parity Technologies Ltd. maciej@parity.io | @MaciejHirsz Who is this for? Coming C / C++ or Python / Ruby / JS

863 views • 75 slides
Developers Developers Developers (what about creatives?) Ryan Gorley Designer + Marketer + Art

Developers Developers Developers (what about creatives?) Ryan Gorley Designer + Marketer + Art

Developers Developers Developers (what about creatives?) Ryan Gorley Designer + Marketer + Art Director FOSS: A Developers World? Creatives have abilities to ofer Challenge Ignorance & Bias Feature Gaps Inertia Introduce FOSS

514 views • 34 slides
Valentines Day What is love about? Love is the expression of oneself. The whole universe is

Valentines Day What is love about? Love is the expression of oneself. The whole universe is

Valentines Day What is love about? Love is the expression of oneself. The whole universe is Love is a pull a force that Love unites all beings. Love is the substance that holds us all together. Love is not an emotion. It is your very

995 views • 68 slides
Beautiful REST + JSON APIs Les Hazlewood, @lhazlewood Founder & CTO, Stormpath About

Beautiful REST + JSON APIs Les Hazlewood, @lhazlewood Founder & CTO, Stormpath About

Beautiful REST + JSON APIs Les Hazlewood, @lhazlewood Founder & CTO, Stormpath About Stormpath User Management API for Developers Registration and Login User Profiles Role Based Access Control (RBAC) Permissions

1.26k views • 86 slides
I CORINTHIANS 13 OVER CHURCH PROBLEMS IV. LOVE DOES NOT BOAST Perperos To Brag; Set

I CORINTHIANS 13 OVER CHURCH PROBLEMS IV. LOVE DOES NOT BOAST Perperos To Brag; Set

LOVE IS THE MAGIC KEY OF LIFE NOT TO GET WHAT WE WANT BUT TO BECOME WHAT WE OUGHT TO BE (EILEEN GUDER). I Corinthians 13 1. The Value Of Love (1-3) 2. The Virtues Of Love (4-7) 3. The Victory Of Love (8-13) I CORINTHIANS 13 OVER

419 views • 25 slides
Semi-Automa+cally Modeling Web APIs to Create Linked APIs

Semi-Automa+cally Modeling Web APIs to Create Linked APIs

Semi-Automa+cally Modeling Web APIs to Create Linked APIs Mohsen Taheriyan, Craig A. Knoblock, Pedro Szekely, and Jose Luis Ambite USC Information

321 views • 28 slides
AM-2 NIE API Gateway in NIE Who uses the APIs now and how is the adoption rate? The APIs are used

AM-2 NIE API Gateway in NIE Who uses the APIs now and how is the adoption rate? The APIs are used

AM-2 NIE API Gateway in NIE Who uses the APIs now and how is the adoption rate? The APIs are used by our faculty, our corporate mobile app users, corporate systems and students, the adoption rate is growing healthy at a steady rate. We are moving

452 views • 17 slides
APIs: Overdue or Overhyped? The Promise of APIs to Drive Interoperability Todays Speakers 2

APIs: Overdue or Overhyped? The Promise of APIs to Drive Interoperability Todays Speakers 2

1 APIs: Overdue or Overhyped? The Promise of APIs to Drive Interoperability Todays Speakers 2 Micky Tripathi Ryan Howells Kristen Valdes President & CEO Principal Founder & CEO Massachusetts eHealth Collaborative Leavitt

276 views • 8 slides
The current state of banking APIs Open APIs are high priority for financial institutions What are

The current state of banking APIs Open APIs are high priority for financial institutions What are

The current state of banking APIs Open APIs are high priority for financial institutions What are banks doing about it? How important are Open APIs to banks? 2 http://www.briansolis.com/2016/12/top-10-retail-banking-trends-predictions-2017/

449 views • 20 slides
+ CiviCRM for Drupal Developers Coleman Watts CiviCRM user since 2010 Found Civi

+ CiviCRM for Drupal Developers Coleman Watts CiviCRM user since 2010 Found Civi

+ CiviCRM for Drupal Developers Coleman Watts CiviCRM user since 2010 Found Civi through Drupal Implemented Civi for Woolman School Author of Webform Integration, and a few other CiviCRM modules and APIs Matt Chapman

369 views • 20 slides
Learning to Love the API Gabriel Nagmay - Portland Community College gabriel.nagmay.com

Learning to Love the API Gabriel Nagmay - Portland Community College gabriel.nagmay.com

Learning to Love the API Gabriel Nagmay - Portland Community College gabriel.nagmay.com gabriel@nagmay.com @nagmay Overview APIs at PCC Maps Photos Video Analytics Social Media Looking Ahead A pplication P rogramming

532 views • 36 slides
An Internet Architecture for the 21st Century Adrian Perrig Network Security Group, ETH Zrich

An Internet Architecture for the 21st Century Adrian Perrig Network Security Group, ETH Zrich

An Internet Architecture for the 21st Century Adrian Perrig Network Security Group, ETH Zrich monumental structure stood the test of time & seems immutable 2 Just like todays Internet ? Can we fix its issues, though?

555 views • 40 slides
L A O G 1 You had one job L A O G 1 7 tool categories... Lets begin... 1/7

L A O G 1 You had one job L A O G 1 7 tool categories... Lets begin... 1/7

L A O G 1 You had one job L A O G 1 7 tool categories... Lets begin... 1/7 1. MozBar - plugin Demo 2. Ayima redirect checker - plugin Demo 3. Broken link checker - plugin Demo 4. Keywords Everywhere - Plugin Demo 2/7

639 views • 51 slides
Secure in 2010? Broken in 2011! Matias Madou, PhD Principal Security Researcher Matias Madou

Secure in 2010? Broken in 2011! Matias Madou, PhD Principal Security Researcher Matias Madou

Secure in 2010? Broken in 2011! Matias Madou, PhD Principal Security Researcher Matias Madou Principal Security Researcher, Fortify an HP Company Static Analysis Rules Insider Threat Research Runtime products: RTA and

1.02k views • 56 slides
Using Twitter Strategically Amanda Carnes, MPH, CHES Social Media Lead Education, Training, and

Using Twitter Strategically Amanda Carnes, MPH, CHES Social Media Lead Education, Training, and

Using Twitter Strategically Amanda Carnes, MPH, CHES Social Media Lead Education, Training, and Communication Team Division of Viral Hepatitis National Center for HIV/AIDS, Viral Hepatitis, STD & TB Prevention Division of Viral Hepatitis

454 views • 23 slides
Routing In Ad Hoc Networks 1. Introduction to Ad-hoc networks 2. Routing in Ad-hoc networks 3.

Routing In Ad Hoc Networks 1. Introduction to Ad-hoc networks 2. Routing in Ad-hoc networks 3.

Routing In Ad Hoc Networks 1. Introduction to Ad-hoc networks 2. Routing in Ad-hoc networks 3. Proactive routing protocols DSDV 4. Reactive routing protocols DSR, AODV 5. Non-uniform routing protocols ZRP, CEDAR 6. Other

392 views • 22 slides
Take the Q Train: Value Capture of Public Infrastructure Projects Arpit Gupta (NYU Stern) Stijn

Take the Q Train: Value Capture of Public Infrastructure Projects Arpit Gupta (NYU Stern) Stijn

Take the Q Train: Value Capture of Public Infrastructure Projects Arpit Gupta (NYU Stern) Stijn Van Nieuwerburgh (Columbia GSB, NBER, CEPR) Constantine Kontokosta (NYU CUSP, Marron) Baruch, April 7, 2020 1 / 35 Motivation As major urban

958 views • 46 slides
Monitoring Drupal with Sensu John VanDyk Iowa State University DrupalCorn Iowa City August

Monitoring Drupal with Sensu John VanDyk Iowa State University DrupalCorn Iowa City August

Monitoring Drupal with Sensu John VanDyk Iowa State University DrupalCorn Iowa City August 10, 2013 What is Sensu? Sensu architecture Sensu server Sensu client Drupal and Sensu Q: What is Sensu? A: A monitoring

572 views • 41 slides
UVU W Web C Community March 20, 2015 Our A Agenda T da Today Update on Web Audit

UVU W Web C Community March 20, 2015 Our A Agenda T da Today Update on Web Audit

UVU W Web C Community March 20, 2015 Our A Agenda T da Today Update on Web Audit Update on Accessibilities Asset Sliders now using Alt Tags New Final Check New Gadgets Available Color wheel gadget Link checker

332 views • 21 slides

More recommend