REST - Valtech

A204e1fe2002bc6d087391759c3dfab0?s=47 Mårten Gustafson
March 09, 2012
Programming
4
330

REST - Valtech

Presentation on REST given at Valtech Stockholm.

Approx 60 minutes.

A204e1fe2002bc6d087391759c3dfab0?s=128

Mårten Gustafson

March 09, 2012
Tweet

More Decks by Mårten Gustafson

See All by Mårten Gustafson
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
3
240
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
0
980
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
0
120
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
0
120
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
2
520
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
9
4.5k
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
2
93
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
3
130
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
1
190

Other Decks in Programming

See All in Programming
Aae878e0b108379a60ca627ee262befa?s=48 susanpotter
0
170
15934fa2aa7b2ce21f091e9b7cffa856?s=48 manfredsteyer
0
190
88493e31e8ac7540094d35f7cda46c8a?s=48 lnit
8
3.1k
F28abade40c3fa0565f578f7dbae6560?s=48 orumin
2
1.2k
38a509643276213e62730e92ef220405?s=48 masatakamiki
0
190
744a38d972036c3bd0bcdaddafdd5f26?s=48 mathetake
4
2.1k
E48bd6aeb77b88d5762cd5d96e2c397d?s=48 wen_liao
2
1k
D9e4d5a4b36f83fbde1076815df1362f?s=48 bmack
0
180
Db2247a5b4226e1f6f74a9bd87810090?s=48 hiroakis
3
490
Fc358d63dcdcbad7a5c29198785dec2c?s=48 naototty
1
250
Fc96157614ee73039c4a575906167979?s=48 fukumura
0
260
0b26590a0a8b0f1da140ed5de9b68379?s=48 usamik26
0
110

Featured

See All Featured
5b9fe87ec1faa67a4599782930f45ec9?s=48 sstephenson
144
11k
A9a491b0fcbe0fbce3d64063a37add99?s=48 rmw
7
550
9375a9529679f1b42b567a640d775e7d?s=48 schacon
144
6.4k
D83926c323d4f9289f947b4b4e76b939?s=48 jensimmons
205
9.9k
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
70
3.3k
A60068bce2e73de3a37ca9d2dbe36092?s=48 bryan
100
11k
7c8469ee8c9e594c65c59b919626c08d?s=48 scottboms
250
11k
95d9f37115fbb0d13135d0f77132f856?s=48 morganepeng
86
11k
Ef32e0b1ac5082450dc8c1fca3a26b5c?s=48 cherdarchuk
65
250k
1519587b1a0febb658c36c94f6272b0d?s=48 roundedbygravity
240
20k
E14f55d3f939977cecbf51b64ff6f861?s=48 keithpitt
398
20k
Dad095ea7038f89f760419ce475d5d14?s=48 michaelherold
224
8.2k

Transcript

  1. Hi! My name is Mårten Gustafson

  2. I used to work here...

  3. ...now I work here... (and I brought give-away readers)

  4. Representational State Transfer

  5. Representational State Transfer

  6. REST

  7. RESTful

  8. HTTP

  9. means of INTEGRATING disparate stuff

  10. (my DARK and shameful PAST) * 4 years of: **

    IBM WebSphere ** ESB ** SOAP/WSDL ** Enterprisey * REST vs SOAP vs HTTP vs JMS vs WMQ vs PUB/SUB vs EDA vs HA vs D/R

  11. INTEGRATIONs

  12. APIs

  13. INTERFACEs

  14. UNIFORM * REST defines a uniform interface * As opposed

    to SOAP, CORBA, etc

  15. GET PUT POST DELETE - list all foo - 501

    - create a new foo - 501 a/b/c/foo

  16. GET PUT POST DELETE - details of {id} - update

    the {id} - 501 - delete the {id} a/b/c/foo/{id}

  17. VERBs

  18. (OPTIONS) * not common (yet) * mention: pre-flight

  19. GET * retrieve

  20. HEAD * retrieve without content (ie metadata)

  21. POST * create (without known id) or update (with/without -

    unsafe)

  22. PUT * update or create with known id (idempotent)

  23. DELETE * remove

  24. (TRACE) * ?

  25. (CONNECT) * ?

  26. IDEMPOTENT * Without side effects * Fine to call multiple

    times

  27. safe idempotent unsafe OPTIONS X (x) GET X (x) HEAD

    X (x) POST X PUT X X DELETE X X TRACE X (x) CONNECT

  28. DEVELOPing

  29. WELL BEHAVED * be well behaved * read up on

    HTTP/1.1

  30. ETag * The most overlooked HTTP header in API design?

    Allows concurrency control * if-match: “<etag>” * if-none-match: “<etag>” * 304 not modified * version number

  31. VARY * Tell clients/caches which headers that forms the response

    (ie what’s the cache-combo) * ie: Vary: Accept ( /foo/bar vs /foo/bar : XML vs JSON)

  32. CACHE-CONTROL * age * no-cache * no-store

  33. EXPIRES * Expire any cached copies after...

  34. BENEFITs

  35. CLIENTS PROXIES SERVERS LOAD BALANCERS * will all understand and

    act accordingly * in addition cool modern software does HTTP/REST out-of-the-box (CouchDB, Riak)

  36. PLANNING

  37. URLs * What will your URL scheme look like *

    How will it evolve * Identify natural points of extension/evolution

  38. DNS * This is part of your URL * Think

    about partitioning (subdomains) * Think about future transition, separation, isolation * Does Wildcard DNS make sense to you?

  39. SECURITY * HTTPS + basic auth (one stop shop) *

    API auth (client certificates, OAuth) * SSL cookies

  40. VERSIONING * This is the hard part

  41. http://api.foo/v1/bar application/xml + easy (ie browser compatible)

  42. http://api.foo/v1/bar application/xml - URL changes with version - Breaks the

    URL = resource REST thingy

  43. http://api.foo/bar application/vnd.bar-v1+xml - hard (ie NOT browser compatible)

  44. http://api.foo/bar application/vnd.bar-v1+xml + version is independent of URL

  45. application/vnd.foo-v1+xml application/vnd.foo-v2+xml * Vary: “Accept”

  46. REPRESENTATION

  47. http://api.foo/bar application/xml + easy (ie browser compatible)

  48. http://api.foo/bar.xml + even easier (ie really browser compatible) - more

    info in URL

  49. http://api.foo/bar application/vnd.bar-v1+xml

  50. http://api.foo/bar application/vnd.bar-v1+xml + representation is independent of URL

  51. USABILITY

  52. PROXIES

  53. http://api.foo/v1/bar.xml

  54. http://api.foo/v1/bar.xml

  55. http://api.foo/v1/bar.xml http://api.foo/bar

  56. http://api.foo/v1/bar.xml http://api.foo/bar application/vnd.bar-v1+xml

  57. http://api.foo/v1/bar.xml http://api.foo/bar application/vnd.bar-v1+xml

  58. http://api.foo/v1/bar.xml http://api.foo/bar application/vnd.bar-v1+xml

  59. HATEOAS

  60. WAT?!

  61. LINKs * State transitions

  62. MIMEs * Representations

  63. LINK + MIME

  64. CONTRACTS * What do we promise our clients? * Read

    these: - http://martinfowler.com/bliki/TolerantReader.html - http://martinfowler.com/articles/consumerDrivenContracts.html

  65. SERIALIZED FORM + Easy programming (initially, typed proxies) - Rigid

    (will not bend, will break)

  66. SCHEMAS * Good for automated testing * If you give

    them away, assume people will generate proxies (and depend on serialized form) * Consider not providing any (or model them loose, xs:any etc - I’m not sure it’s a good idea)

  67. GUARANTEES * Fields annotated with “#userid” will have the following

    form * Attributes named “email” will conform standard X * This document contains one, and only one field annotated “#id”, which is the unique id for Y

  68. ROBUSTNESS

  69. <user> <id>1234</id> <name> <first>Mårten</first> <last>Gustafson</last> </name> </user> * XPath

  70. <user> <id>1234</id> <name> <first>Mårten</first> <last>Gustafson</last> </name> </user> /user/name/last * Rigid

  71. <user> <id>1234</id> <name> <first>Mårten</first> <last>Gustafson</last> </name> </user> //last * Adaptive

    * Might return multiple

  72. <user> <id>1234</id> <name> <first>Mårten</first> <last>Gustafson</last> </name> </user> //last[1] * Adaptive

    * Only one

  73. <user> <id>1234</id> <name> <first id=”#name.first”>Mårten</first> <last id=”#name.last”>Gustafson</last> </name> </user> *

    Annotated

  74. <user> <id>1234</id> <name> <first id=”#name.first”>Mårten</first> <last id=”#name.last”>Gustafson</last> </name> </user> //last[1]

    * Still works

  75. <user> <id>1234</id> <name> <first id=”#name.first”>Mårten</first> <last id=”#name.last”>Gustafson</last> </name> </user> //*[@id='#name.last'][1]

    * Adaptive

  76. <user> <id>1234</id> <first id=”#name.first”>Mårten</first> <last id=”#name.last”>Gustafson</last> </user> //*[@id='#name.last'][1] * Still

    works

  77. <named> <first id="#name.first">Mårten</first> <last id="#name.last">Gustafson</last> </named> //*[@id='#name.last'][1] * Still works

  78. <yeah> <foo id="#name.first">Mårten</foo> <bar id="#name.last">Gustafson</bar> </yeah> //*[@id='#name.last'][1] * Still works

  79. INFORMATION MODELLING * This is hard, usually “versioning hard”

  80. #name.first * Format * Values * Guarantees

  81. URL DNS MIME LINKS PROXY

  82. URL DNS MIME LINKS =CONTRACT

  83. ?

  84. @martengustafson marten.gustafson@gmail.com http://marten.gustafson.pp.se/talks * Representations