Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Launching GitHub's Public GraphQL API

359024e7132672aaeef4a3e792be4ae5?s=47 Brooks Swinnerton
May 21, 2017
Technology
2
440

Launching GitHub's Public GraphQL API

359024e7132672aaeef4a3e792be4ae5?s=128

Brooks Swinnerton

May 21, 2017
Tweet

More Decks by Brooks Swinnerton

See All by Brooks Swinnerton
Building GitHub Integrations with Webhooks and REST
359024e7132672aaeef4a3e792be4ae5?s=48 bswinnerton
2
95
Launching GitHub's GraphQL API
359024e7132672aaeef4a3e792be4ae5?s=48 bswinnerton
4
480
Optimizing APIs for Consumers with GraphQL
359024e7132672aaeef4a3e792be4ae5?s=48 bswinnerton
2
360
GitHub GraphQL API
359024e7132672aaeef4a3e792be4ae5?s=48 bswinnerton
4
90
GraphQL for Rubyists
359024e7132672aaeef4a3e792be4ae5?s=48 bswinnerton
0
240
The Road To Code: Ruby
359024e7132672aaeef4a3e792be4ae5?s=48 bswinnerton
0
57
The history of Vim
359024e7132672aaeef4a3e792be4ae5?s=48 bswinnerton
0
83

Other Decks in Technology

See All in Technology
Cloud Foundryの移行先はどこか? オープンソースPaaS探し
49844569246a6d183a5551bb74895e2a?s=48 kolinz
0
360
20220731 如何跟隨開源技術保持你的職涯發展
D907136acebc72f1df878541b26f271a?s=48 pichuang
0
120
ぼくらが選んだ次のMySQL 8.0 / MySQL80 Which We Choose
A3966f193f4bef226a0d3e3c1f728d7f?s=48 line_developers
PRO
7
3.1k
今 SLI/SLO の監視をするなら Sloth が良さそうという話
Cb17938137021ead2656d0fe58b7c7b1?s=48 shotakitazawa
1
290
20220803投資先CXO候補者向け 会社紹介資料_合同会社BLUEPRINT
08b07f5e5f554c4f4a6a30ef1cca28ad?s=48 hik
0
510
#awsbasics [LT] サーバレスECにおける Step Functions の使い方
74cec195bfb6cb5165256d88cb7fcf0f?s=48 miu_crescent
0
860
You're M̶u̶t̶e̶d̶ Rooted
Cc23340e1d811f083fb8d2dd1213c42b?s=48 patrickwardle
1
7.4k
ロボットの実行すらメンドクサイ!?
3a06a93a8db01666fd2b822484930594?s=48 kou12092
0
220
マルチテナントSaaSのカスタム要件に、 Auth0テナントを分割せず向き合う! / Multi tenant SaaS with Auth0
8e8410eb785755ae2cb485f85dbab6e8?s=48 hiroga
0
110
バッファープールが大きいMySQL v5.7でDROP DATABASEが詰まった原因と対策 / Causes and Remedies for DROP DATABASE Stuck in MySQL v5.7 with Large Buffer Pool
A3966f193f4bef226a0d3e3c1f728d7f?s=48 line_developers
PRO
4
840
eBPFで実現するコンテナランタイムセキュリティ / Container Runtime Security with eBPF
2f73f93f91c4401b0baf12029226a681?s=48 tobachi
PRO
5
1.8k
Oblivious Online Monitoring for Safety LTL Specification via Fully Homomorphic Encryption
126139a2ee6a8e441e12208d0b6be790?s=48 anqou
0
370

Featured

See All Featured
10 Git Anti Patterns You Should be Aware of
Dafc4723e9a1c067796c0fec6f509774?s=48 lemiorhan
638
52k
Music & Morning Musume
A60068bce2e73de3a37ca9d2dbe36092?s=48 bryan
35
4.3k
Imperfection Machines: The Place of Print at Facebook
7c8469ee8c9e594c65c59b919626c08d?s=48 scottboms
253
12k
Designing on Purpose - Digital PM Summit 2013
7653c7c449918ff6542880a8c284f5e7?s=48 jponch
106
5.7k
Large-scale JavaScript Application Architecture
96270e4c3e5e9806cf7245475c00b275?s=48 addyosmani
499
110k
XXLCSS - How to scale CSS and keep your sanity
1b8ad785acdd1ce1c99914b1c2a4e10e?s=48 sugarenia
236
1.1M
Making the Leap to Tech Lead
32de0bd2ba869609d26fd052a4622778?s=48 cromwellryan
113
7.4k
Teambox: Starting and Learning
Aebc2d07a50011e2a30d38435fde564a?s=48 jrom
123
7.7k
Build your cross-platform service in a week with App Engine
5f83ef806155b403c3393160ce51f955?s=48 jlugia
219
17k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
F383c6a4dc55e331bbe2987b622cee6b?s=48 stephaniewalter
269
12k
From Idea to $5000 a Month in 5 Months
E4f5d494ebdc9e7cce1aecf3ce3e8bc1?s=48 shpigford
373
44k
What's in a price? How to price your products and services
Dad095ea7038f89f760419ce475d5d14?s=48 michaelherold
229
9.4k

Transcript

  1. + a

  2. Hi, I’m Brooks

  3. I work at !

  4. let’s talk about launching the GitHub GraphQL API

  5. How our GraphQL API came to be

  6. March 20th, 2016 proposal submitted

  7. we had dreams of APIv4

  8. multiple resources in one roundtrip

  9. schema introspection

  10. April 6th, 2016 proof of concept done

  11. { current_user { login repositories(affiliation: "owner") { id name }

    } }

  12. April 12th, 2016 New team created

  13. September 14th, 2016 early access

  14. Today >100 million queries/day

  15. We learned some things along the way

  16. Tooling

  17. documentation

  18. https://github.com/gjtorikian/graphql-docs

  19. GraphiQL all-in-one

  20. "but we’re going to need a Ruby client"

  21. github/graphql-client

  22. objects in exchange for a query

  23. collocate our queries with our views

  24. but in Rails

  25. query profiling

  26. query { repository(owner:"rails", name:"rails") { viewerHasStarred } }

  27. { "data": { "repository": { "viewerHasStarred": false } }, "extensions":

    { "totalDuration": 42.06737782806158, "trackedAssociations": {}, "profiling": { "Repository:viewerHasStarred": { "type": "Boolean!", "sql": [ { "duration": 2.07, "sql": "SELECT 1 AS one FROM `repositories` INNER JOIN `stars` ON `repositories`.`id` = `stars`.`starrable_id` WHERE `stars`.`user_id` = 934497 AND `stars`.`starrable_type` = 'Repository' AND `repositories`.`id` = 8514 LIMIT 1 " } ] } } } }

  28. Authorization

  29. reusing the OAuth logic from our REST API

  30. OAuth scopes are granted to a token

  31. token is used to make a request

  32. familiar to our users

  33. less for us to build

  34. Organization = GraphQL::ObjectType.define do name "Organization" accepted_scopes ["read:org", "admin:org"] end

  35. Organization = GraphQL::ObjectType.define do name "Organization" accepted_scopes ["read:org", "admin:org"] end

  36. but with ✨ GraphQL ✨…

  37. we can analyze the query before resolution

  38. query { organization(login:"github") { members { totalCount } } }

  39. query { organization(login:"github") { members { totalCount } } }

  40. Organization = GraphQL::ObjectType.define do name "Organization" accepted_scopes ["read:org", "admin:org"] end

  41. but this isn’t perfect

  42. in some cases you need to perform resolution first

  43. repo vs public_repo

  44. we’ve introduced an authz layer for resolution

  45. Schema design

  46. first off

  47. there’s more than one

  48. one for new & sensitive features

  49. one for everyone else

  50. Organization = GraphQL::ObjectType.define do name "Organization" accepted_scopes ["read:org"] end

  51. Organization = GraphQL::ObjectType.define do name "Organization" accepted_scopes ["read:org"] visibility :public

    end

  52. Organization = GraphQL::ObjectType.define do name "Organization" accepted_scopes ["read:org"] visibility :public

    end

  53. CoolNewFeature = GraphQL::ObjectType.define do name "CoolNewFeature" accepted_scopes ["repo"] visibility :internal

    end

  54. mandatory first/last arguments on connections

  55. query { viewer { repositories(last:30) { edges { node {

    name } } } } }

  56. query { viewer { repositories(last:30) { edges { node {

    name } } } } }

  57. is/has/can prefix

  58. query { repository(owner:"rails", name:"rails") { isFork hasIssuesEnabled viewerCanAdminister } }

  59. query { repository(owner:"rails", name:"rails") { isFork hasIssuesEnabled viewerCanAdminister } }

  60. avoiding fields that should be types

  61. query { repository(owner:"rails", name:"rails") { ownerLogin } }

  62. query { repository(owner:"rails", name:"rails") { ownerLogin } }

  63. query { repository(owner:"rails",name:"rails") { owner { login } } }

  64. Feature Parity

  65. schema driven development* *stay tuned!

  66. with our REST API

  67. new features were developed for the UI

  68. then staff-shipped

  69. then released

  70. REST API work started after the ship

  71. but, today…

  72. all new features are built with GraphQL

  73. from the start

  74. CoolNewFeature = GraphQL::ObjectType.define do name "CoolNewFeature" accepted_scopes ["repo"] visibility :internal

    end

  75. CoolNewFeature = GraphQL::ObjectType.define do name "CoolNewFeature" accepted_scopes ["repo"] visibility :internal

    end

  76. CoolNewFeature = GraphQL::ObjectType.define do name "CoolNewFeature" accepted_scopes ["repo"] visibility :public

    end

  77. this allows us to build a true public API

  78. this allows us to build a true public API

  79. this allows us to build a true platform

  80. shared between GitHubbers and integrators

  81. but change is scary

  82. GraphQL-backed REST APIs

  83. this works great for new features

  84. but what about legacy features?

  85. GET https://api.github.com/user

  86. enter Scientist

  87. github/scientist

  88. measure data discrepancies

  89. measure the difference in performance

  90. None

  91. Where we’re headed

  92. static analysis of schema during code review

  93. rate limiting

  94. expose global relay IDs in REST API

  95. preview new fields and objects with headers

  96. Thank you
 @bswinnerton on Twitter & GitHub @brooks on Slack