Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Move fast, don't break your API

8727f7875a079ff297d084a03ef1356e?s=47 Amber Feng
September 30, 2014
Programming
18
51k

Move fast, don't break your API

8727f7875a079ff297d084a03ef1356e?s=128

Amber Feng

September 30, 2014
Tweet

More Decks by Amber Feng

See All by Amber Feng
Pixels & Tactics
8727f7875a079ff297d084a03ef1356e?s=48 amfeng
1
8.9k
Building Stripe's API
8727f7875a079ff297d084a03ef1356e?s=48 amfeng
35
50k

Other Decks in Programming

See All in Programming
Terraform Plan/Apply結果の自動通知
92a1e043fcefaed6e1b89182b1cd34a5?s=48 ymmy02
0
270
Cross Deviceチームにおけるスマートテレビアプリ開発ってどんな感じ?
95f926465b1c71fbb49850c5b6223c4d?s=48 cokaholic
0
120
Amazon Aurora の v1 が EOL になるので 10 クラスタアップグレードして出てきたノウハウ
A762939f94c8790c8ca8b717f1be9bee?s=48 dekokun
0
840
Mobile Product Engineering
37fbf83b7d45711e41e774e29fed710e?s=48 championswimmer
0
280
One does not simply: migrating to Android 12 🤯
56047a7b11797f42c2e7030d771fe803?s=48 oleur
1
120
ANR overview at Uber + Leveraging ApplicationExitInfo API
7b79fefb49d2318393c8174c17e89ae3?s=48 yhartanto
0
320
Seleniumでイキってたらサーバを絞め落としかけてた話
52b9da1c8c4810664baa2bdd3ec8e608?s=48 kenfujita
0
350
シェーダー氷山発掘記
6a661bb5871208cad64912223bb0c637?s=48 logilabo
0
140
GitHubのユーザー名を変更した後のあれこれ
E4b008af82e3a9b3cbae5b757b22c54e?s=48 tahia910
0
120
trocco® の品質を守る、とても普通な取り組み
E7d321bef653bcb8fce8032609321398?s=48 kekekenta
0
350
Gitlab CIでMRを自動生成する
1a2f29252240936c0ac4db4edab36d41?s=48 forcia_dev_pr
0
110
エンジニアによる事業指標計測のススメ
Ee398a67f5017cc2ad5c02d67d10e516?s=48 doyaaaaaken
1
170

Featured

See All Featured
Fashionably flexible responsive web design (full day workshop)
433acaea1012b25d97ae66da9b998dad?s=48 malarkey
396
62k
Making the Leap to Tech Lead
32de0bd2ba869609d26fd052a4622778?s=48 cromwellryan
113
7.4k
Streamline your AJAX requests with AmplifyJS and jQuery
9cde37f47e4a800ea081ea42de8d749a?s=48 dougneiner
126
8.5k
GraphQLとの向き合い方2022年版
893f54413c2bd9ba41d11d753aacaf2c?s=48 quramy
16
8.2k
How To Stay Up To Date on Web Technology
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
780
250k
Intergalactic Javascript Robots from Outer Space
6804f1775cb4babfcc3851298566fbce?s=48 tanoku
261
25k
Building Better People: How to give real-time feedback that sticks.
9952dfcd5d338f8a8e7175c8a8f65fb5?s=48 wjessup
344
17k
Automating Front-end Workflow
96270e4c3e5e9806cf7245475c00b275?s=48 addyosmani
1351
200k
The Pragmatic Product Professional
1177e050db6bafe62885362edf6e3537?s=48 lauravandoore
19
2.9k
How GitHub (no longer) Works
78b475797a14c84799063c7cd073962f?s=48 holman
296
140k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
95d9f37115fbb0d13135d0f77132f856?s=48 morganepeng
104
16k
Testing 201, or: Great Expectations
A9704266587836f7e784235e5073b93e?s=48 jmmastey
21
5.4k

Transcript

  1. MOVE FAST, DON'T BREAK YOUR API AMBER FENG @amfeng

  2. None

  3. LET'S BUILD AN API!

  4. post '/v1/charges' do card_number = params[:card_number] amount = params[:amount] charge

    = create_charge(card_number, amount) json { id: charge.id, amount: charge.amount card_number: charge.redacted_card_number, success: charge.success } end

  5. post '/v1/charges' do ... unless card_number.length == 16 return {error:

    "Invalid card number."} end unless amount > 0 and amount <= CHARGE_MAX return {error: "Invalid amount."} end ... end

  6. post '/v1/charges' do api_key = get_api_key user = User.find_by_key(api_key) unless

    user return {error: "Invalid API key."} end ... end

  7. curl https://stripe.com/v1/charges -u API_KEY -d card_number=4242424242424242 -d amount=100 => {

    id: "ch_xxx", amount: 100, card_number: "*4242", success: true }
  8. None

  9. WHAT NEXT?

  10. WHAT NEXT? MORE ENDPOINTS

  11. WHAT NEXT? MORE ENDPOINTS MORE FUNCTIONALITY

  12. WHAT NEXT? MORE ENDPOINTS MORE FUNCTIONALITY MORE CHANGES

  13. WHAT NEXT? MORE ENDPOINTS MORE FUNCTIONALITY MORE CHANGES MORE PROBLEMS

  14. LARGE, TANGLED CODEBASE

  15. COPY-PASTA

  16. ERROR-PRONE DEPENDENCIES

  17. "CRAP, I FORGOT TO UPDATE THE DOCS!" — Everyone ever

  18. HOW DO WE MAKE IT BETTER?

  19. DESIGN FOR YOURSELF, TOO

  20. SEPARATE DIFFERENT LAYERS OF LOGIC

  21. Authentication Validation Endpoint-specific logic Constructing the response Error handling

  22. Error handler Authenticator API logic

  23. use ErrorHandler use Authenticator get '/v1/charges/:id' do user = env.user

    id = params[:id] unless user.get_charge(id) raise UserError.new("No charge #{id}!") end end

  24. APIMethods & APIResources

  25. class ChargeCreateMethod < AbstractAPIMethod required :amount, :integer required :card_number, :string

    resource ChargeAPIResource def execute create_charge(amount, card_number) end end

  26. class ChargeAPIResource < AbstractAPIResource required :id, :string required :amount, :integer

    required :card_number, :string required :success, :boolean def describe_card_number charge.redacted_card_number end end

  27. post '/v1/charges' do APIMethod::ChargeCreateMethod.invoke end get '/v1/charges' do APIMethod::ChargeRetrieveMethod.invoke end

  28. MAKE IT HARD TO MESS UP

  29. class ChargeCreateMethod < AbstractAPIMethod required :amount, :integer required :card_number, :string

    document :amount, "Amount, in cents." document :card_number, "The card number." ... end

  30. HIDE BACKWARDS COMPATIBILITY

  31. <todo: tweet>

  32. def execute if !user.version_1? && params[:amount] raise UserError.new("Invalid param.") end

    ... if !user.version_1? response.delete(:amount) end end

  33. GATES

  34. - :version: 2014-09-24 :new_gates: - :gate: allows_amount :description: >- Sending

    amount is now deprecated.

  35. def execute if !user.gating(:allows_amount) && params[:amount] raise UserError.new("Invalid param.") end

    ... if !user.gating(:allows_amount) response.delete(:amount) end end

  36. COMPATIBILITY LAYERS

  37. Request compatibility API logic Construct API response Response compatibility

  38. IN THE REAL WORLD

  39. 106 ENDPOINTS 65 VERSIONS 6 API CLIENTS

  40. DESIGN FOR YOURSELF: SEPARATE LAYERS OF LOGIC MAKE IT HARD

    TO MESS UP HIDE BACKWARDS COMPAT

  41. WHAT ELSE?

  42. NOT SURE. (WE'RE STILL FIGURING IT OUT AS WE GO.)

  43. THANKS! (: @amfeng