rest apis with nodejs
play

REST APIs with NodeJS Winter Semester 2016/17 Tobias Seitz - PowerPoint PPT Presentation

Nov 22, 2022 •437 likes •849 views

Practical Course: Web Development REST APIs with NodeJS Winter Semester 2016/17 Tobias Seitz Ludwig-Maximilians-Universitt Mnchen Practical Course Web Development WS 16/17 - 04 - 1 Todays Agenda APIs What is it? REST

  1. Practical Course: Web Development REST APIs with NodeJS Winter Semester 2016/17 Tobias Seitz Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 1

  2. Today’s Agenda • APIs – What is it? – REST – Access Control • APIs with NodeJS – Express – StrongLoop / Loopback – Adding a datasource • Hands-On Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 2

  3. What is an API • “Application Programming Interface” • Interface: Allow other services to use program logic • Goal: Allow pieces of software to talk to each other • Characteristics of a Great API: – Make it easy for others to use your software. – “A Good API needs to appeal to laziness” Kevin Lackner – Intuitive (make it trivial) – Documented (if something is not trivial) – Opinionated (do it the way the API encourages you) Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 3

  4. REST API • Representational State Transfer • Provide clients access to resources • Your app manages the states of the resources, but lets other software access the state through the API • Reasons for using REST APIs [5]: – Scalability – Generality by using HTTP – Independence from other parts of the app – Reduced Latency with caching – Security with HTTP headers – Encapsulation - APIs do not need to expose everything • Most common format these days: JSON Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 4

  5. A Typical API URL Data Model Dedicated Path https://www.mywebapp.com/api/v1/things/thing_id URI API Version Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 5

  6. REST API Quick Glance • Go and look for a REST API • Examples – Spotify – Google Maps – Flickr – Facebook Graph API • Questions: – What do you think makes it a good / bad API? – What kind of access control does it have? – What kind of restrictions are there? Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 6

  7. API Paradigm: CRUD • Create ≈ INSERT INTO myData VALUES (....) • Read ≈ SELECT * FROM myData WHERE ... • Update ≈ UPDATE myData WHERE ... • Delete ≈ DELETE FROM myData WHERE ... Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 7

  8. REST APIS WITH NODEJS Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 8

  9. You should know • One of the most popular NodeJS frameworks. • Characteristics: – minimalistic – easy to use API – many utility methods and middleware functionalities – thin layer on top of NodeJS – Supports multiple template engines (Pug/Jade, Handlebars, EJS) • Find the documentation here: http://expressjs.com/ • Package: npm install --save express • Express generator: npm install -g express Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 9

  10. Simple Express App basics/app.js var express = require( 'express' ); var app = express (); app .get( '/' , function (req, res) { res.send( 'Hello World!' ); }); var server = app .listen(3000, function () { var host = server .address().address; var port = server .address(). port ; console .log( 'app listening at http://%s:%s' , host, port) }); Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 10

  11. Express Generator Goal: automatically generate the basic • structure of an express app that includes views, routes, common dependencies Requirements: Install the generator globally: • $ npm install -g express-generator $ express eg-app Documentation: • http://expressjs.com/starter/generator.html You still have to install the dependencies • manually: $ cd eg-app && npm install Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 11

  12. Full Stack Solutions mean.io Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 12

  13. CRUD with Express Example API that manages products. • Create a new product: • POST /products Retrieve all products: • GET /products Retrieve a particular product: • GET /product/:id Replace a product: • PUT /product/:id Update a product • PATCH /product/:id Delete a product • DELETE /product/:id Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 13

  14. Testing POST / PUT / DELETE • Recommended Tool: Postman https://www.getpostman.com/ • Don’t forget the headers, e.g. Content-type: application/json • Make sure your JSON only uses double quotes Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 14

  15. Dummy database: JavaScript Object. var products = { ' id_A ' : { name : ' Product A ' , price : 30 }, ' id_B ' : { name : ' Product B ' , price : 50 } }; Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 15

  16. GET /products router.get( '/' , function (req, res) { var productArray = Object.keys(products).map( function (key) { var entry = products[key]; entry. id = key; return entry; }); var response = { code : 200, products : productArray }; res.json(response); }); Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 16

  17. Response with all products { Opinionated : " code " : 200, Products is an Array, instead of an Object literal. " products " : [ { " name " : " Product A " , " price " : 30, " id " : " id_A " }, { " name " : " Product B " , " price " : 50, " id " : " id_B " ] } Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 17

  18. POST /products router.post( '/' , function (req, res) { Intuitive : var entry, id, response; Follow API standards if (req. body . name && req. body . price ) { id = uuid .v1(); ≈ POST creates objects entry = {}; entry[id] = { id : id, name : req. body . name , price : req. body . price }; products[id] = entry[id]; response = { code : 201, message : 'created product' , products : [entry] }; } else { response = { code : 1000, message : 'missing parameter. required: name, price.' } } res.json(response); }); Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 18

  19. Response: Product was created Intuitive : { Respond with the entire " code " : 201, created document, so " message " : " created product " , clients can update their views. " products " : [ { "182348e0-abfd-11e6-92a7-4fdc0c2e84f9" : { " id " : "182348e0-abfd-11e6-92a7-4fdc0c2e84f9" , " name " : " Product C" , " price " : 100 } } ] } Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 19

  20. What’s up with this? • Look at the file /routes/products.js • Can you think of potential problems for your API? • How would you solve them? Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 20

  21. API Frameworks • Goal: Simpler, faster creation of APIs and CRUD paradigm for resources • Often with an abstraction layer • Popular examples: – loopback.io - https://loopback.io/ – hapi.js - http://hapijs.com/ – Restify - http://restify.com/ • Comparison: https://strongloop.com/strongblog/compare- express-restify-hapi-loopback/ Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 21

  22. LoopBack • Now part of StrongLoop Arc (IBM) • Installation: npm install -g strongloop • Getting started wizard: slc loopback – api-server: already contains authentication methods – empty-server: most basic setup – hello-world: small working sample – notes-app: full working example for a note-taking api Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 22

  23. Step 1: Set up the project spengler:04-apis Tobi$ slc loopback _-----_ | | ╭──────────────────────────╮ |--(o)--| │ Let's create a LoopBack │ `---------´ │ application! │ ( _´U`_ ) ╰──────────────────────────╯ /___A___\ / | ~ | __'.___.'__ ´ ` |° ´ Y ` ? What's the name of your application? loopback-api ? Enter name of the directory to contain the project: loopback-api create loopback-api/ info change the working directory to loopback-api ? Which version of LoopBack would you like to use? 2.x (stable) ? What kind of application do you have in mind? hello-world Generating .yo-rc.json … Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 23

  24. Step 2: Create a model spengler:loopback-api Tobi$ slc loopback:model ? Enter the model name: product ? Select the data-source to attach product to: db (memory) ? Select model's base class PersistedModel ? Expose product via the REST API? Yes ? Custom plural form (used to build REST URL): products ? Common model or server only? common Let's add some product properties now. Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 24

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Preparing a REST API Rules of REST APIs, API patterns, Typical CRUD operations Rules for a REST

Preparing a REST API Rules of REST APIs, API patterns, Typical CRUD operations Rules for a REST

Preparing a REST API Rules of REST APIs, API patterns, Typical CRUD operations Rules for a REST API Recall : REST Representational State Transfer o REST is statelessit has no idea of any current user state or history o API

535 views • 17 slides
REST Web-based APIs REST Representational State Transfer Style of web software

REST Web-based APIs REST Representational State Transfer Style of web software

REST Web-based APIs REST Representational State Transfer Style of web software architecture that simplifies application Not a standard, but a design pattern REST Take all resources for web application (data, files, functions)

722 views • 22 slides
REST Services in Action: Using RESTful APIs with HPE NonStop Applications Todd Barth - NuWave

REST Services in Action: Using RESTful APIs with HPE NonStop Applications Todd Barth - NuWave

REST Services in Action: Using RESTful APIs with HPE NonStop Applications Todd Barth - NuWave Andrew Price - NuWave Agenda REST API Overview Market Adoption APIs in Financial Services NuWave REST-based Middleware Overview

465 views • 30 slides
DDD & REST Domain-Driven APIs for the web Oliver Gierke / olivergierke 2 Background

DDD & REST Domain-Driven APIs for the web Oliver Gierke / olivergierke 2 Background

DDD & REST Domain-Driven APIs for the web Oliver Gierke / olivergierke 2 Background 3 Spring Data REST Spring Data Spring HATEOAS Repositories & Hypermedia Aggregates for Spring MVC 4 REST CRUD via HTTP 5

1.17k views • 55 slides
Hacking NodeJS applications for fun and profit Testing NodeJS Security by @jmortegac Agenda

Hacking NodeJS applications for fun and profit Testing NodeJS Security by @jmortegac Agenda

Hacking NodeJS applications for fun and profit Testing NodeJS Security by @jmortegac Agenda Introduction nodejS security Npm security packages Node Goat project Tools Node JS JavaScript in the backend Built on

762 views • 43 slides
Writing REST APIs with OpenAPI and Swagger Ada Stphane Carrez FOSDEM 2018 OpenAPI and Swagger

Writing REST APIs with OpenAPI and Swagger Ada Stphane Carrez FOSDEM 2018 OpenAPI and Swagger

Writing REST APIs with OpenAPI and Swagger Ada Stphane Carrez FOSDEM 2018 OpenAPI and Swagger Ada Introduction to OpenAPI and Swagger Writing a REST Ada client Writing a REST Ada server Handling security with OAuth2 Demo

970 views • 37 slides
Lab 0: Dev Env Setup Rizky Wellyanto (wellyan2) NodeJS + NPM Download here:

Lab 0: Dev Env Setup Rizky Wellyanto (wellyan2) NodeJS + NPM Download here:

Lab 0: Dev Env Setup Rizky Wellyanto (wellyan2) NodeJS + NPM Download here: https://nodejs.org/en/download/ NPM tutorial: https://docs.npmjs.com/about-npm/ NodeJS Documentation: https://nodejs.org/docs/latest-v9.x/api/ Terminal Example setup

120 views • 8 slides
REST: From GET to HATEOAS or how to create RESTful APIs 2 Who

REST: From GET to HATEOAS or how to create RESTful APIs 2 Who

JPoint REST: From GET to HATEOAS or how to create RESTful APIs 2 Who am I? ~ just some java guy ~ Jos Dirksen Interests Books Architect @ JPoint Java &

942 views • 53 slides
Beautiful REST + JSON APIs Les Hazlewood, @lhazlewood Founder & CTO, Stormpath About

Beautiful REST + JSON APIs Les Hazlewood, @lhazlewood Founder & CTO, Stormpath About

Beautiful REST + JSON APIs Les Hazlewood, @lhazlewood Founder & CTO, Stormpath About Stormpath User Management API for Developers Registration and Login User Profiles Role Based Access Control (RBAC) Permissions

1.26k views • 86 slides
Outline What is ReST ? Constraints in ReST REST Architecture Components Features of

Outline What is ReST ? Constraints in ReST REST Architecture Components Features of

Outline What is ReST ? Constraints in ReST REST Architecture Components Features of ReST applications Example of requests in REST & SOAP Complex REST request REST Server response Real REST examples REST Design

603 views • 34 slides
RESTful APIs REST Representational State Transfer architectural style, set of design constraints

RESTful APIs REST Representational State Transfer architectural style, set of design constraints

CS 498RK SPRING 2019 RESTful APIs REST Representational State Transfer architectural style, set of design constraints coined in Roy T. Fieldings dissertation (2000) the Web is the largest implementation three important technologies: HTTP,

714 views • 55 slides
RESTful APIs REST Representational State Transfer architectural style, set of design constraints

RESTful APIs REST Representational State Transfer architectural style, set of design constraints

CS 498RK FALL 2016 RESTful APIs REST Representational State Transfer architectural style, set of design constraints coined in Roy T. Fieldings dissertation (2000) the Web is the largest implementation three important technologies: HTTP,

585 views • 54 slides
RESTful APIs REST Representational State Transfer Architectural style, set of design constraints

RESTful APIs REST Representational State Transfer Architectural style, set of design constraints

CS 498RK SPRING 2020 RESTful APIs REST Representational State Transfer Architectural style, set of design constraints Coined in Roy T. Fieldings dissertation (2000) The Web is the largest implementation Three important technologies: HTTP,

809 views • 55 slides
T8: NodeJS CPSC 513 Dr. P. Federl University of Calgary Arshia Hosseini T01/T02 What is

T8: NodeJS CPSC 513 Dr. P. Federl University of Calgary Arshia Hosseini T01/T02 What is

T8: NodeJS CPSC 513 Dr. P. Federl University of Calgary Arshia Hosseini T01/T02 What is NodeJS Open source JavaScript framework Event-driven Cross-platform Server-side 2 Installing and Running Node

690 views • 15 slides
Segurana em APIs REST Heitor Vital reas de Atuao o Cloud Computing

Segurana em APIs REST Heitor Vital reas de Atuao o Cloud Computing

Segurana em APIs REST Heitor Vital reas de Atuao o Cloud Computing twitter.com/heitorvital o Segurana Informao o Jogos slideshare.net/HeitorVital o Dispositivos Mveis o labs.siteblindado.com

412 views • 22 slides
BUILDING BEAUTIFUL REST APIs with Flask, Swagger UI and Flask-RESTPlus Micha Karzy ski

BUILDING BEAUTIFUL REST APIs with Flask, Swagger UI and Flask-RESTPlus Micha Karzy ski

BUILDING BEAUTIFUL REST APIs with Flask, Swagger UI and Flask-RESTPlus Micha Karzy ski EuroPython 2016 ABOUT ME My name is Micha Karzy ski (thats Polish for Mike) I blog at http://michal.karzynski.pl Short URL:

495 views • 34 slides
Synode: Understanding and Automatically Preventing Injection Attacks on Node.js Cristian-Alexandru

Synode: Understanding and Automatically Preventing Injection Attacks on Node.js Cristian-Alexandru

Synode: Understanding and Automatically Preventing Injection Attacks on Node.js Cristian-Alexandru Staicu 1 Michael Pradel 1 Ben Livshits 2 1 TU Darmstadt 2 Imperial College London, Brave Software February 20, 2018 This Talk Node.JS and

492 views • 47 slides
Visualization Techniques for Big Data Jonathon Storrick Jon.Storrick@gmail.com Center for

Visualization Techniques for Big Data Jonathon Storrick Jon.Storrick@gmail.com Center for

CASOS Visualization Techniques for Big Data Jonathon Storrick Jon.Storrick@gmail.com Center for Computational Analysis of Social and Organizational Systems http://www.casos.cs.cmu.edu/ A brief intro to Meta-Nodes A meta-node is what we

595 views • 11 slides
Dev Lab: Node + Express What is Node? Node.js = JavaScript + File I/O + A Package Manager or:

Dev Lab: Node + Express What is Node? Node.js = JavaScript + File I/O + A Package Manager or:

Dev Lab: Node + Express What is Node? Node.js = JavaScript + File I/O + A Package Manager or: Node.js = JavaScript - A Web Browser Whats it like? Single-threaded Asynchronous & non-blocking Great for real-time applications

493 views • 24 slides
Adversarial Attacks on Node Embeddings via Graph Poisoning Aleksandar Bojchevski, Stephan

Adversarial Attacks on Node Embeddings via Graph Poisoning Aleksandar Bojchevski, Stephan

Adversarial Attacks on Node Embeddings via Graph Poisoning Aleksandar Bojchevski, Stephan Gnnemann Technical University of Munich ICML 2019 Node embeddings are used to Classify scientific papers Recommend items Classify proteins

336 views • 21 slides
A Method for Evolving Networks by Introducing New Virtual Node/link Types using Node Plug-ins

A Method for Evolving Networks by Introducing New Virtual Node/link Types using Node Plug-ins

A Method for Evolving Networks by Introducing New Virtual Node/link Types using Node Plug-ins Yasusi Kanada Hitachi, Ltd., Japan Introduction Virtual networks (or slices) are suited for development of new services. Service providers

139 views • 13 slides
Dynamic Computational Geometry Roberto Tamassia Department of Computer Science Brown University

Dynamic Computational Geometry Roberto Tamassia Department of Computer Science Brown University

Dynamic Computational Geometry Roberto Tamassia Department of Computer Science Brown University 1991 Roberto Tamassia Dynamic Computational Geometry ALCOM Summer School, Aarhus, August 1991 1 Summary Range Searching (Range Tree)

751 views • 52 slides
Homework 4 Due Thursday Oct 7 CLRS 12-4 (number of binary trees) CLRS 13.3-6 (rb insert

Homework 4 Due Thursday Oct 7 CLRS 12-4 (number of binary trees) CLRS 13.3-6 (rb insert

Homework 4 Due Thursday Oct 7 CLRS 12-4 (number of binary trees) CLRS 13.3-6 (rb insert implementation) 1 Chapter 13: Red-Black Trees A red-black tree is a node-colored BST. Each node is colored either black or red. The following special

700 views • 33 slides
Limit Laws for Random Spatial Graphical Models Anima Anandkumar 1 Joseph Yukich 2 Alan Willsky 1 1

Limit Laws for Random Spatial Graphical Models Anima Anandkumar 1 Joseph Yukich 2 Alan Willsky 1 1

Limit Laws for Random Spatial Graphical Models Anima Anandkumar 1 Joseph Yukich 2 Alan Willsky 1 1 EECS, Massachusetts Institute of Technology, Cambridge, MA. USA 2 Dept. of Math., Lehigh University, Bethlehem, PA. USA IEEE ISIT 2010 Anandkumar et

547 views • 39 slides

More recommend