Good to Great: API Design Patterns Beyond REST

A1bbf2de1c3ef1db1c54d77d2ab17de2?s=47 Jeremiah Lee
March 08, 2014
Programming
19
6.9k

Good to Great: API Design Patterns Beyond REST

Introducing the Resource Verb style of APIs at SXSW.

Audio at https://soundcloud.com/officialsxsw/good-to-great-api-design

http://schedule.sxsw.com/2014/events/event_IAP20752

A1bbf2de1c3ef1db1c54d77d2ab17de2?s=128

Jeremiah Lee

March 08, 2014
Tweet

More Decks by Jeremiah Lee

See All by Jeremiah Lee
A1bbf2de1c3ef1db1c54d77d2ab17de2?s=48 jeremiahlee
2
580
A1bbf2de1c3ef1db1c54d77d2ab17de2?s=48 jeremiahlee
0
660
A1bbf2de1c3ef1db1c54d77d2ab17de2?s=48 jeremiahlee
1
170
A1bbf2de1c3ef1db1c54d77d2ab17de2?s=48 jeremiahlee
4
350
A1bbf2de1c3ef1db1c54d77d2ab17de2?s=48 jeremiahlee
10
4.8k

Other Decks in Programming

See All in Programming
87137598c23e3e90755e5d7476d21405?s=48 bastnic
1
630
E387c487b4fea568909cf805f91afe92?s=48 yuta24
4
350
72a2082c6a4dd79ad68befb3db911616?s=48 mraible
1
100
249b3122eee454c0a818bfe7851418e4?s=48 fromkk
1
300
4ce43cd2535d0afe50065a743af646e9?s=48 dianaarnos
0
300
Cd34440e6c181704f318319e131af68d?s=48 naokioouchi
1
790
9bf923e39671cde83584e3e926296c13?s=48 kishikawakatsumi
8
2.1k
364d59ac0b4b4e5eee8aeb27a127d176?s=48 tgalopin
1
340
C101832d230db74f754e50126903b991?s=48 shoichiimamura
1
110
Cb4d62dd7c1d325863696c45e9b6484d?s=48 yaminoma
2
810
9f3a83db74bee75a64b5e6ed106a775c?s=48 twada
41
9.6k
4578d99b560b2a470e05288ef6766ac2?s=48 paulk
4
3.2k

Featured

See All Featured
761be20b5ebd271008bcee1244fc5b52?s=48 matthewcrist
70
7k
433acaea1012b25d97ae66da9b998dad?s=48 malarkey
118
15k
027d1ebf66cc039a0bd3b55eeadbe75d?s=48 sachag
266
16k
E6c6e133e74c3b83f04d2861deaa1c20?s=48 searls
202
35k
96270e4c3e5e9806cf7245475c00b275?s=48 addyosmani
1348
190k
Aff5641764408271f7bc398f2097edd0?s=48 denniskardys
219
110k
Eb8975af8e49e19e3dd6b6b84a542e26?s=48 qrush
282
18k
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
70
3.5k
E13c31390e0369fcd5972292ce0e7b92?s=48 jnunemaker
PRO
40
4.4k
A9179349dd2bdc67f377719f56d85656?s=48 garrettdimon
284
110k
Be9caeb9d4ef9944d151af909063ed6e?s=48 samlambert
236
9.8k
D67fff74178013024d833b3eec6cf27f?s=48 lynnandtonic
266
16k

Transcript

  1. API Design Patterns Beyond REST Jeremiah Lee • SXSW •

    2014-03-07T15:30:00-06:00

  2. #DX @Jeremiah @JeremiahLee

  3. None

  4. "Don't make me think!" is something users get to scream

    at us, as API providers. 
 It is not how API providers get to approach API design.

  5. The secret to  machines talking to machines  is

    to speak human first.

  6. Brief history…

  7. Credit: Marsh Gardiner, @earth2marsh Brian Mulloy, @landlessness

  8. Credit: Marsh Gardiner, @earth2marsh Brian Mulloy, @landlessness

  9. Credit: Marsh Gardiner, @earth2marsh Brian Mulloy, @landlessness Nerd fights.

  10. Credit: Marsh Gardiner, @earth2marsh Brian Mulloy, @landlessness http://www.flickr.com/photos/45713725@N00/8573651373/in/photolist-e4CcRp-biQQKX-7YZVKs http://kevinwarnock.com/2010/02/

  11. Credit: Marsh Gardiner, @earth2marsh Brian Mulloy, @landlessness

  12. RV: General Philosophy • User adoption is the highest priority.

    • Know your users. • Opt for the most obvious. • Use-cases over technical purity. • Errors and corrective guidance matter a lot. • No design is perfect. Accept that change will happen. • It’s your responsibility to eliminate pain.

  13. HTTP: 3 places for data • Method and URL •

    Headers • Body

  14. REQUEST GET http://api.example.com/1/users.json?sort=asc ! Host: api.example.com Accept: application/json Accept-Language: en-US,en

    Accept-Encoding: gzip, deflate Authorization: Bearer 1a2b3c4d5e6f7g8h9i0j Connection: keep-alive If-None-Match: "1394292863" RESPONSE HTTP/1.1 200 OK Content-Language: en Date: Sat, 08 Mar 2014 15:53:58 GMT Vary: Accept-Encoding Content-Length: 827 Content-Type: application/json;charset=UTF-8 ETag: "1394292864" ! { "users": [ { "aboutMe": "Start simple. Dream big. Do good. Be well.", "avatar": "https://d6y8zfzc2qfsl.cloudfront.net/F9C84BE0-52C5-AF63-2E5 "avatar150": "https://d6y8zfzc2qfsl.cloudfront.net/F9C84BE0-52C5-AF63- "city": "San Francisco", "country": "US", "dateOfBirth": "1984-01-15",

  15. Resources & Collections GET https://api.example.com/1/articles GET https://api.example.com/1/articles/{article-id} HTTP 1.1/200 OK

  16. Creating Resources POST https://api.example.com/1/articles PUT https://api.example.com/1/articles/{article-id} HTTP 1.1/201 Created HTTP

    1.1/202 Accepted (pending)

  17. Updating Resources PUT https://api.example.com/1/articles/{article-id} PATCH https://api.example.com/1/articles/{article-id} HTTP 1.1/200 OK HTTP

    1.1/202 Accepted (pending)

  18. Deleting Resources DELETE https://api.example.com/1/articles/{article-id} HTTP 1.1/204 No Content

  19. More Resource Verbs POST https://api.example.com/1/articles/{article-id}/publish POST https://api.example.com/1/articles/{article-id}/star HTTP 1.1/200 OK

    HTTP 1.1/202 Accepted (pending)

  20. RV on the Resource • Content Type GET /api/articles/1234 HTTP/1.1

    Accept: application/vnd.api.article+json; version=2.0 GET /2/articles/1234.json —VS— þ

  21. RV on the Resource • Content Type • Dates Twitter

    "created_at": "Thu Nov 03 05:19:38 +0000 2011" Foursquare: "createdAt": 1320296464 Bing "DateTime": "2011-10-29T09:35:00Z" þ

  22. RV on the Resource • Content Type • Dates •

    Arrays vs Objects "supportedLanguages": [ { "country": "United States", "languages": ["English", "Spanish"] }, { "country": "Canada", "languages": ["English", "French"] } ] "supportedLanguages": { "us": { "country": "United States", "languages": ["English", "Spanish"] }, "ca": { "country": "Canada", "languages": ["English", "French"] } }

  23. RV on the Collection • Sorting
 GET /articles?orderby=date&sort=desc

  24. RV on the Collection • Sorting • Pagination
 "pagination": {


    "offset": 10,
 "limit": 10,
 "afterDate" | "beforeDate": "2014-01-15",
 "sort": "asc" | "desc",
 "previous": "https://api.example.com/1/articles.json? offset=0&limit=10&afterDate=2014-01-15&sort=desc",
 "next": "https://api.example.com/1/articles.json? offset=20&limit=10&afterDate=2014-01-15&sort=desc"
 }

  25. RV on the Collection • Sorting • Pagination • Searching


    GET /articles?search=SXSW

  26. RV on the Collection • Sorting • Pagination • Searching

    • Filtering
 From Elasticsearch
 POST /articles/filter { "filter": { "range": { "age": { "from": 10, "to": 20 } }
 } }

  27. RV on the Collection • Sorting • Pagination • Searching

    • Filtering • Syncing
 GET /articles/sync?since=2014-01-15T09:15Z
 
 Check out RFC-6902, "JSON Patch"

  28. RV on the URL • Collection-Resource
 GET /articles
 GET /articles/{article-id}

    • Relationships: dependent or independent
 GET /articles/{article-id}/comments/{comment-id}
 GET /articles and GET /authors • Or name the relationship
 GET /partnerships/{partnership-id} • Provide conveniences
 GET https://graph.facebook.com/me/likes

  29. Errors Happen • Use the best HTTP error code. 400

    Bad Request (you messed up something) 401 Unauthorized (Authorization invalid for some reason) 403 Forbidden (you don’t have permission) 404 Not Found (doesn’t exist or you can’t know it exists) 409 Conflict 429 Too Many Requests 5xx API is frakked up

  30. Errors Happen • Use the right error code. • If

    using JSON, "error" as top level property. { "error": { "status": 400, "code": "bad_request", "message": "The 'email' parameter is required.", "helpUrl": "https://dev.example.com/docs/blah" } }

  31. Errors Happen • Use the right error code. • If

    using JSON, “error” as top level property. • Be descriptive. • Be corrective. • Be informative.

  32. Authentication • OAuth 1.0a, “2.0” • Basic Auth https://jeremiah:myPasswordYo@api.example.com/1/articles.json •

    Personal Access Tokens

  33. Versioning • Have it. in the URL. GET /api/articles/1234 HTTP/1.1

    Accept: application/vnd.api.article+json; version=2.0 GET /2/articles/1234.json —VS— þ

  34. Versioning • Have it. in the URL. • Prevent it.

  35. Versioning • Have it. in the URL. • Prevent it.

    • Mitigate it.

  36. Versioning • Have it. in the URL. • Prevent it.

    • Mitigate it.

  37. Versioning • Have it. in the URL. • Prevent it.

    • Mitigate it. • Do it. • Test it. • Communicate it. • Incentivize upgrading. Measure it. • Support it. for longer than you want.

  38. The secret to  machines talking to machines  is

    to speak human first.

  39. Thank you for your time. ! More content available at


    http://dx.jeremiahlee.com ! @ResourceVerb • @JeremiahLee Please support the
 Electronic Frontier Foundation

  40. Q & A WEBHOOKS BATCHING REQUESTS OPTIONS HEADER LIMITING RESPONSE

    FIELDS API ANALYTICS SANDBOX ENVIRONMENTS 3rd PARTY LOGS ANTI-PATTERNS GZIP COOL USES OF HEADERS DEV USABILITY TESTING camelCasing http://dx.jeremiahlee.com • @ResourceVerb • @JeremiahLee
  41. None