Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Practical Network for Android Developers

Dinorah Tovar
March 31, 2021
Technology
1
66

Practical Network for Android Developers

In this talk we are gonna be talking about the Network data layer with a different vision that usually is addressed, cause networking on Android is difficult to work with, with multiples carriers, streaming different and rich contents, and all of this should arrive at our users without missing a single detail.

We will cover the next couple of topics:

Part 1 — HTTP and Network Layer
Part 2 — TLS, Certificates, and Pinning
Part 3 — Authenticators and Interceptors
Part 4 — Performance, Redundancy, and Concurrency
Part 5 — Testing and Integration

Dinorah Tovar

March 31, 2021
Tweet

More Decks by Dinorah Tovar

See All by Dinorah Tovar
6 weeks of Compose or 
How a good Design System is vital in Compose
dinorahto
3
340
Kotlin + Maths
dinorahto
1
66
Fragments in Compose
dinorahto
0
70
Kotlin + Maths
dinorahto
0
18
Metrics we should know - or not! but we are gonna learn it!
dinorahto
0
21
Hosting states in Compose
dinorahto
1
170
Starting in Android World
dinorahto
0
19
LifecycleOwners and Flows: Cleaning the UI
dinorahto
0
150
Wild Storage for Android Developers
dinorahto
0
68

Other Decks in Technology

See All in Technology
アプリケーション開発をさらに加速させるフレームワークとCI/CD技術
sbtechnight
PRO
0
350
Oracle Exadata Database Service on [email protected] X9M ([email protected]) 技術詳細
oracle4engineer
PRO
0
1.1k
Wrangler って何だ?-ちょっとよく分からないのでCloudflareのCLIツールを深掘りしてみる-
kentosuzuki
0
120
5分でまとめるAWSマイグレーション / 5minutes aws migration
se_o_chan
1
170
dbtでデータ品質活動
foursue
6
1.3k
軟體品質不只測試: LINE QA團隊分享
line_developers_tw
PRO
0
4.8k
新卒入社から1500人規模のCTOに: エンジニアが圧倒的に成長する3つのコツ / 技育祭2023春
carta_engineering
1
740
How we build Ads Platform in Rust
mapbox_jp
1
190
ワイヤレス電力伝送について
sbtechnight
PRO
0
390
LINE Blockchain Developers APIではじめるWeb3
sbtechnight
PRO
0
350
cronworkflowを用いた バッチ障害時の運用改善
ayanonanjo
0
230
QAでE2Eテストを普及させるには?
freee
0
130

Featured

See All Featured
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
182
15k
A better future with KSS
kneath
230
16k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
38
3.7k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
32
7.2k
Robots, Beer and Maslow
schacon
154
7.4k
Become a Pro
speakerdeck
PRO
6
3.3k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
44
14k
A Tale of Four Properties
chriscoyier
149
21k
Documentation Writing (for coders)
carmenintech
51
3k
We Have a Design System, Now What?
morganepeng
37
6k
Code Reviewing Like a Champion
maltzj
508
38k
A Modern Web Designer's Workflow
chriscoyier
689
180k

Transcript

  1. Practical Network for
    Android Developers
    Dinorah Tova
    r

    Google Developer Expert

    Platform Mobile Engineer

    @ konfío.mx
    @ddinorahtovar
    @ddinorahtovar

    View Slide

  2. Network is
    important!

    View Slide

  3. Network means a lot of things
    @ddinorahtovar

    Data Layer
    Network

    Presentation Layer
    UI
    Models


    Entities
    Domain Layer

    View Slide

  4. Network means a lot of things
    @ddinorahtovar
    •Concurrency
    •Clients
    •Connections (WIFI, Cell)
    •Http versions and frames

    View Slide

  5. Network means a lot of things
    @ddinorahtovar
    Request
    Response
    Click Origin Server

    View Slide

  6. Network means a lot of things
    @ddinorahtovar
    •Request — Make an HTTP request to an URL
    •Response — Will return an error or success
    •Data that can be parsed — Parsing of a String as
    response to a Data Class

    View Slide

  7. Network means a lot of things
    @ddinorahtovar
    Uniform Resource Locator
    Headers
    Body

    View Slide

  8. Network Errors are for surviving
    @ddinorahtovar
    •1xx — Everything is cool, just wait a little bit
    •2xx — Everything is fine, fully successful
    •3xx —The response is somewhere else

    View Slide

  9. Network Errors are for surviving
    @ddinorahtovar
    •4xx— The request by the client is poorly
    fulfilled, so this is an error from the mobile
    side
    •5xx — The server failed to fulfill a correct
    request, so this is an error from the backend
    side

    View Slide

  10. Http and Network Clients

    View Slide

  11. Http Methods
    @ddinorahtovar
    GET
    PATCH
    DELETE
    POST
    PUT

    View Slide

  12. Http Methods
    @ddinorahtovar
    GET
    PATCH
    DELETE
    POST
    PUT
    •GET — Push data from server
    •POST — Create new resources
    •PUT — Update resources
    •PATCH — Update specific resources
    •DELETE — Delete resources

    View Slide

  13. HttpClient
    @ddinorahtovar
    •HttpClient are clases to handle Http connection,
    methods and frames of data

    View Slide

  14. Cache
    @ddinorahtovar
    •Database Catching — Database provide an
    impactful factor of your app performance.
    •CDN — Global network of edge locations to
    deliver a cached copy of your APIs content
    •DNS — Every domain request made on the internet
    essentially queries DNS cache servers in order to
    resolve the IP address

    View Slide

  15. Cache policies
    @ddinorahtovar
    •Designed for non suffering and be aware that not
    everything change in a second
    •File allocation
    •max-age [Max time available]
    •Size space

    View Slide

  16. Cache policies
    @ddinorahtovar
    •Cache file and policies

    View Slide

  17. Cache
    @ddinorahtovar
    •To force a full refresh, add the noCache()

    View Slide

  18. TSL, Certificates and
    Pinning

    View Slide

  19. Transport Layer Security (TLS)
    @ddinorahtovar
    •Transport Layer Security (TLS) is the successor
    protocol to SSL. TLS is an improved version of
    SSL.
    •Depends on HTTP and the multiple flavors
    available

    View Slide

  20. TSL depends of HTTPs
    @ddinorahtovar
    Version Content
    Http/1.1

    with TLS
    Http/2

    with TLS
    TLS streams, TCP streams & Packages
    Frames division
    UDP packages + QUIC streams
    Http/3

    with TLS

    View Slide

  21. TSL depends of HTTPs
    @ddinorahtovar
    HTTP/1.1

    TCP streams and
    packets
    HTTP/2

    Frames division
    HTTP/3

    QUIC streams

    View Slide

  22. TSL
    @ddinorahtovar
    •Using HTTPS in our servers is enough?
    •Want to be safe? Then, lets talk about
    encryption
    •Short Answer: No

    View Slide

  23. Your App

    TSL
    @ddinorahtovar
    Origin Server

    Encrypted Certificates

    TSL/SSL

    View Slide

  24. TSL in your HTTP client
    @ddinorahtovar

    View Slide

  25. TSL
    @ddinorahtovar
    •What is a cipherSuite?
    val cipher = Cipher.getInstance("AES/CBC/PKCS5Padding")
    Schema
    Model
    Padding

    View Slide

  26. TSL
    @ddinorahtovar
    •What is a cipherSuite?
    .cipherSuites(

    CipherSuite.TLS_RSA_WITH_AES_128_CBC_SHA,

    CipherSuite.TLS_RSA_WITH_AES_128_GCM_SHA256

    )
    TLS Bulk
    encryption
    Key exchange
    and
    signature
    Message auth

    View Slide

  27. Certificates
    @ddinorahtovar
    •In a typical SSL usage scenario, a server is
    configured with a certificate containing a public
    key as well as a matching private key. As part of
    the handshake between an SSL client and server,
    the server proves it has the private key by
    signing its certificate with public-key
    cryptography

    View Slide

  28. Certificates
    @ddinorahtovar
    CER (.CRT
    )

    PFX

    View Slide

  29. Certificates
    @ddinorahtovar

    View Slide

  30. Security is important
    @ddinorahtovar
    •You can check “Modern security for Android
    developers”

    View Slide

  31. Authenticators &
    Interceptors

    View Slide

  32. Interceptors are amazing!
    @ddinorahtovar
    Your App
    OkHttp

    Core
    Internet
    Loggin
    Interceptor
    Network
    Interceptor

    View Slide

  33. Loggin interceptors
    @ddinorahtovar
    •They give us information about the Headers or
    Body levels of the request and response
    •Only Debug
    •They can leak information

    View Slide

  34. Loggin interceptors
    @ddinorahtovar

    View Slide

  35. Network interceptors
    @ddinorahtovar
    •They give us the chance to modify request and
    responses
    •Can be used in production
    •Amazing for handling errors like 401!

    View Slide

  36. Network interceptor
    @ddinorahtovar

    View Slide

  37. Network interceptors
    @ddinorahtovar
    •Do we need it like that?
    •Let’s do it in a cool way
    ->
    •Short Answer: well, maybe no

    View Slide

  38. Network Interceptor
    @ddinorahtovar

    View Slide

  39. Interceptor.Chain
    @ddinorahtovar
    •We need to talk about Interceptor.Chain
    •Specially about RealInterceptorChain

    View Slide

  40. Interceptor.Chain
    @ddinorahtovar
    •Here is where all the HTTP work happens

    View Slide

  41. Network Interceptor
    @ddinorahtovar

    View Slide

  42. Authenticator
    @ddinorahtovar
    •Returns a request that includes a credential to
    satisfy an authentication
    •Authenticate by returning a follow-up request
    that includes an authorization

    View Slide

  43. Authenticator
    @ddinorahtovar
    Your App Authenticator Your server
    401
    Try to
    access
    Refresh
    Refresh
    Normal
    request
    Normal
    request

    View Slide

  44. Authenticators
    @ddinorahtovar

    View Slide

  45. A tip for OkHttpClient

    View Slide

  46. OkHttpClient and Start up time
    @ddinorahtovar
    •Slow the times of creating

    View Slide

  47. @ddinorahtovar
    •Dagger Party tricks by Zac Sweers
    OkHttpClient and Start up time

    View Slide

  48. Performance

    View Slide

  49. Performance!
    @ddinorahtovar
    •Depends of many things
    •Redundancy
    •Concurrency
    •OkHttpClient*

    View Slide

  50. Concurrency
    @ddinorahtovar
    •Is not proper mobile but is important!
    Fault tolerance
    High Availability

    View Slide

  51. Concurrency
    @ddinorahtovar
    Pools
    Threading
    •Is about three things
    Coroutines*

    View Slide

  52. Threading
    @ddinorahtovar
    UI Thread
    Dispatcher IO

    Suspendable action

    View Slide

  53. Connection Pool
    @ddinorahtovar
    CPU operation
    like Files
    Databases
    Network

    View Slide

  54. Testing

    View Slide

  55. Testing should be simpl
    @ddinorahtovar
    Your App MockResponse MockWebServer
    Intercept
    call
    Normal
    request
    Mocked
    response
    Normal
    request

    View Slide

  56. MockWebServer
    @ddinorahtovar
    •Let you manipulate the responses and let you
    verify request were made as expected
    •Testing of:
    •Request/Response
    •Body’s responses
    •Header’s

    View Slide

  57. MockWebServer
    @ddinorahtovar
    •Simple setup

    View Slide

  58. MockWebServer
    @ddinorahtovar
    •Adding responses is pretty simple!

    View Slide

  59. MockWebServer
    @ddinorahtovar

    View Slide

  60. Practical Network for
    Android Developers
    Dinorah Tova
    r

    Google Developer Expert

    Platform Mobile Engineer

    @ konfío.mx
    @ddinorahtovar
    @ddinorahtovar

    View Slide