REST - Valtech

A204e1fe2002bc6d087391759c3dfab0?s=47 Mårten Gustafson
March 09, 2012
Programming
4
330

REST - Valtech

Presentation on REST given at Valtech Stockholm.

Approx 60 minutes.

A204e1fe2002bc6d087391759c3dfab0?s=128

Mårten Gustafson

March 09, 2012
Tweet

More Decks by Mårten Gustafson

See All by Mårten Gustafson
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
3
250
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
0
990
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
0
130
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
0
120
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
2
520
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
9
4.5k
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
2
95
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
3
130
A204e1fe2002bc6d087391759c3dfab0?s=48 chids
1
190

Other Decks in Programming

See All in Programming
Ffc500baeba9a1024e2c8273203c9f90?s=48 raulh82vlc
3
1.3k
Acb6390b6c4b5192f40e10601b63dafc?s=48 twkiiim
0
230
D225ebf0faa666ac7655cc7e4689283c?s=48 dlew
2
180
9eed44f137609e6ce3b6f1e14f80b9e1?s=48 izumin5210
6
3k
023b04c98f39cc041293d780352432ff?s=48 koic
4
1.6k
Bf5ee9059859ed5d855b5ff4680e63e2?s=48 track3jyo
4
690
F2496b53b4e6d5a589d8dc1781c11978?s=48 tatsumi0000
1
330
49833977598de9524fa85cacb93a42ce?s=48 philcalcado
0
110
Bb49e68eb46070029845fb3022d9026f?s=48 yukilabo
1
180
3cfad86677c5966ecfe9b81955fa3489?s=48 youkan2002
0
270
70ae2d149767d4198aac83453481b8dd?s=48 amaotone
0
130
Fccbd625997f63e7b251d9725cb905a5?s=48 futo23
2
600

Featured

See All Featured
6bb82b13cda86d3b821fa44100335ddf?s=48 thoeni
3
360
6804f1775cb4babfcc3851298566fbce?s=48 tanoku
85
8.4k
91cefdf141106fa10674aae74ce05890?s=48 yeseniaperezcruz
297
31k
61857dafbd287b3027c4dcea9008ad3c?s=48 carmenhchung
19
990
1177e050db6bafe62885362edf6e3537?s=48 lauravandoore
8
1.1k
96270e4c3e5e9806cf7245475c00b275?s=48 addyosmani
309
21k
B6a8f005f39d23ffc930508ac9da68b9?s=48 vanstee
115
4.7k
E4f5d494ebdc9e7cce1aecf3ce3e8bc1?s=48 shpigford
165
18k
719435d98d452de7ac367c828266cf01?s=48 erikaheidi
11
3.9k
462dad0dd24c568a32dcdb0ae895ae1b?s=48 rasmusluckow
316
18k
E4f5d494ebdc9e7cce1aecf3ce3e8bc1?s=48 shpigford
366
42k
282d599b414022eba5096510f675b6e2?s=48 chrislema
231
16k

Transcript

  1. Hi! My name is Mårten Gustafson

  2. I used to work here...

  3. ...now I work here... (and I brought give-away readers)

  4. Representational State Transfer

  5. Representational State Transfer

  6. REST

  7. RESTful

  8. HTTP

  9. means of INTEGRATING disparate stuff

  10. (my DARK and shameful PAST) * 4 years of: **

    IBM WebSphere ** ESB ** SOAP/WSDL ** Enterprisey * REST vs SOAP vs HTTP vs JMS vs WMQ vs PUB/SUB vs EDA vs HA vs D/R

  11. INTEGRATIONs

  12. APIs

  13. INTERFACEs

  14. UNIFORM * REST defines a uniform interface * As opposed

    to SOAP, CORBA, etc

  15. GET PUT POST DELETE - list all foo - 501

    - create a new foo - 501 a/b/c/foo

  16. GET PUT POST DELETE - details of {id} - update

    the {id} - 501 - delete the {id} a/b/c/foo/{id}

  17. VERBs

  18. (OPTIONS) * not common (yet) * mention: pre-flight

  19. GET * retrieve

  20. HEAD * retrieve without content (ie metadata)

  21. POST * create (without known id) or update (with/without -

    unsafe)

  22. PUT * update or create with known id (idempotent)

  23. DELETE * remove

  24. (TRACE) * ?

  25. (CONNECT) * ?

  26. IDEMPOTENT * Without side effects * Fine to call multiple

    times

  27. safe idempotent unsafe OPTIONS X (x) GET X (x) HEAD

    X (x) POST X PUT X X DELETE X X TRACE X (x) CONNECT

  28. DEVELOPing

  29. WELL BEHAVED * be well behaved * read up on

    HTTP/1.1

  30. ETag * The most overlooked HTTP header in API design?

    Allows concurrency control * if-match: “<etag>” * if-none-match: “<etag>” * 304 not modified * version number

  31. VARY * Tell clients/caches which headers that forms the response

    (ie what’s the cache-combo) * ie: Vary: Accept ( /foo/bar vs /foo/bar : XML vs JSON)

  32. CACHE-CONTROL * age * no-cache * no-store

  33. EXPIRES * Expire any cached copies after...

  34. BENEFITs

  35. CLIENTS PROXIES SERVERS LOAD BALANCERS * will all understand and

    act accordingly * in addition cool modern software does HTTP/REST out-of-the-box (CouchDB, Riak)

  36. PLANNING

  37. URLs * What will your URL scheme look like *

    How will it evolve * Identify natural points of extension/evolution

  38. DNS * This is part of your URL * Think

    about partitioning (subdomains) * Think about future transition, separation, isolation * Does Wildcard DNS make sense to you?

  39. SECURITY * HTTPS + basic auth (one stop shop) *

    API auth (client certificates, OAuth) * SSL cookies

  40. VERSIONING * This is the hard part

  41. http://api.foo/v1/bar application/xml + easy (ie browser compatible)

  42. http://api.foo/v1/bar application/xml - URL changes with version - Breaks the

    URL = resource REST thingy

  43. http://api.foo/bar application/vnd.bar-v1+xml - hard (ie NOT browser compatible)

  44. http://api.foo/bar application/vnd.bar-v1+xml + version is independent of URL

  45. application/vnd.foo-v1+xml application/vnd.foo-v2+xml * Vary: “Accept”

  46. REPRESENTATION

  47. http://api.foo/bar application/xml + easy (ie browser compatible)

  48. http://api.foo/bar.xml + even easier (ie really browser compatible) - more

    info in URL

  49. http://api.foo/bar application/vnd.bar-v1+xml

  50. http://api.foo/bar application/vnd.bar-v1+xml + representation is independent of URL

  51. USABILITY

  52. PROXIES

  53. http://api.foo/v1/bar.xml

  54. http://api.foo/v1/bar.xml

  55. http://api.foo/v1/bar.xml http://api.foo/bar

  56. http://api.foo/v1/bar.xml http://api.foo/bar application/vnd.bar-v1+xml

  57. http://api.foo/v1/bar.xml http://api.foo/bar application/vnd.bar-v1+xml

  58. http://api.foo/v1/bar.xml http://api.foo/bar application/vnd.bar-v1+xml

  59. HATEOAS

  60. WAT?!

  61. LINKs * State transitions

  62. MIMEs * Representations

  63. LINK + MIME

  64. CONTRACTS * What do we promise our clients? * Read

    these: - http://martinfowler.com/bliki/TolerantReader.html - http://martinfowler.com/articles/consumerDrivenContracts.html

  65. SERIALIZED FORM + Easy programming (initially, typed proxies) - Rigid

    (will not bend, will break)

  66. SCHEMAS * Good for automated testing * If you give

    them away, assume people will generate proxies (and depend on serialized form) * Consider not providing any (or model them loose, xs:any etc - I’m not sure it’s a good idea)

  67. GUARANTEES * Fields annotated with “#userid” will have the following

    form * Attributes named “email” will conform standard X * This document contains one, and only one field annotated “#id”, which is the unique id for Y

  68. ROBUSTNESS

  69. <user> <id>1234</id> <name> <first>Mårten</first> <last>Gustafson</last> </name> </user> * XPath

  70. <user> <id>1234</id> <name> <first>Mårten</first> <last>Gustafson</last> </name> </user> /user/name/last * Rigid

  71. <user> <id>1234</id> <name> <first>Mårten</first> <last>Gustafson</last> </name> </user> //last * Adaptive

    * Might return multiple

  72. <user> <id>1234</id> <name> <first>Mårten</first> <last>Gustafson</last> </name> </user> //last[1] * Adaptive

    * Only one

  73. <user> <id>1234</id> <name> <first id=”#name.first”>Mårten</first> <last id=”#name.last”>Gustafson</last> </name> </user> *

    Annotated

  74. <user> <id>1234</id> <name> <first id=”#name.first”>Mårten</first> <last id=”#name.last”>Gustafson</last> </name> </user> //last[1]

    * Still works

  75. <user> <id>1234</id> <name> <first id=”#name.first”>Mårten</first> <last id=”#name.last”>Gustafson</last> </name> </user> //*[@id='#name.last'][1]

    * Adaptive

  76. <user> <id>1234</id> <first id=”#name.first”>Mårten</first> <last id=”#name.last”>Gustafson</last> </user> //*[@id='#name.last'][1] * Still

    works

  77. <named> <first id="#name.first">Mårten</first> <last id="#name.last">Gustafson</last> </named> //*[@id='#name.last'][1] * Still works

  78. <yeah> <foo id="#name.first">Mårten</foo> <bar id="#name.last">Gustafson</bar> </yeah> //*[@id='#name.last'][1] * Still works

  79. INFORMATION MODELLING * This is hard, usually “versioning hard”

  80. #name.first * Format * Values * Guarantees

  81. URL DNS MIME LINKS PROXY

  82. URL DNS MIME LINKS =CONTRACT

  83. ?

  84. @martengustafson marten.gustafson@gmail.com http://marten.gustafson.pp.se/talks * Representations