Upgrade to Pro — share decks privately, control downloads, hide ads and more …

API Survival

Lorna Mitchell
October 01, 2015
Technology
2
110

API Survival

Very minimal slide deck, basically the diagrams to go with my FOWA tutorial

Lorna Mitchell

October 01, 2015
Tweet

More Decks by Lorna Mitchell

See All by Lorna Mitchell
Introduction to OpenAPI Specification
lornajane
1
660
Create PDFs from markup with rst2pdf
lornajane
3
730
Serverless Microservices are the New Black
lornajane
3
110
Serverless Computing with Apache OpenWhisk
lornajane
0
95
Build A Serverless Data Pipeline
lornajane
1
720
SQL, NoSQL and Beyond
lornajane
0
1k
Build a Serverless Data Pipeline
lornajane
1
1k
Road Trip Through Database Country
lornajane
1
940
Serverless Microservices Are The New Black
lornajane
1
130

Other Decks in Technology

See All in Technology
Oracle Cloud Infrastructure データベース・クラウド:各バージョンのサポート期間
oracle4engineer
PRO
28
13k
Application Development WG Intro at AppDeveloperCon
salaboy
0
190
アジャイルでの品質の進化 Agile in Motion vol.1/20241118 Hiroyuki Sato
shift_evolve
0
160
マルチモーダル / AI Agent / LLMOps 3つの技術トレンドで理解するLLMの今後の展望
hirosatogamo
37
12k
SREによる隣接領域への越境とその先の信頼性
shonansurvivors
2
520
AWS Lambda のトラブルシュートをしていて思うこと
kazzpapa3
2
180
第1回 国土交通省 データコンペ参加者向け勉強会③ - Snowflake x estie編 -
estie
0
130
Lambdaと地方とコミュニティ
miu_crescent
2
370
IBC 2024 動画技術関連レポート / IBC 2024 Report
cyberagentdevelopers
PRO
0
110
ISUCONに強くなるかもしれない日々の過ごしかた/Findy ISUCON 2024-11-14
fujiwara3
8
870
TypeScriptの次なる大進化なるか!? 条件型を返り値とする関数の型推論
uhyo
2
1.7k
CysharpのOSS群から見るModern C#の現在地
neuecc
2
3.4k

Featured

See All Featured
Music & Morning Musume
bryan
46
6.2k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
131
33k
Put a Button on it: Removing Barriers to Going Fast.
kastner
59
3.5k
StorybookのUI Testing Handbookを読んだ
zakiyama
27
5.3k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
232
17k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
44
6.8k
Being A Developer After 40
akosma
86
590k
Designing on Purpose - Digital PM Summit 2013
jponch
115
7k
What’s in a name? Adding method to the madness
productmarketing
PRO
22
3.1k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
329
21k
Intergalactic Javascript Robots from Outer Space
tanoku
269
27k
Faster Mobile Websites
deanohume
305
30k

Transcript

  1. API Survival Kit Lorna Mitchell, FOWA 2015

  2. The (Vague) Plan • Meet and greet new APIs •

    Inspecting traffic and debugging APIs • Webhooks and publishing local services remotely • Tools for API publishers

  3. Today's Resources These slides and some (updating) reference material: http://lornajane.net/resources/

  4. Finding APIs Search! • Directories such as http://www.programmableweb.com/apis/directory • There's

    an apis.json search tool http://apis.io/about

  5. Documentation Look for overview documentation. What do you look for

    when you read API documentation for the first time?

  6. Tools for First Contact • curl http://curl.haxx.se/ • httpie https://github.com/jkbrzt/httpie

    (python) • Postman https://www.getpostman.com/ (Chrome app)

  7. Token-based Authentication This approach allows: • restrictable access • revokable

    tokens

  8. OAuth 2 OAuth is designed for the relationship between: •

    a User • a "Provider" who already has a relationship with the user and the user's data - e.g. Facebook • a "Consumer" whom the User would like to have access to some of their data stored with the provider - e.g. Mobile app

  9. OAuth 2 OAuth 2 (rather than the original OAuth 1)

    recognises trust Supports various ways of granting access Full spec: http://tools.ietf.org/html/rfc6749

  10. Authorization Code Grant

  11. Owner Creds Grant

  12. OAuth in Action

  13. Challenge: Meet an API Talk to an API successfully using

    a tool of your choice.

  14. Challenge: Meet an API Make an authenticated call to an

    API successfully using a tool of your choice.

  15. Tools for Inspecting Traffic Tools used in this section: •

    Charles Proxy: http://www.charlesproxy.com/ • mitmproxy: http://mitmproxy.org/ Browsers all have their own tools • Firefox has firebug http://getfirebug.com/ • Chrome and IE dev tools installed by default

  16. API Backend, Web Frontend

  17. API Backend, Web Frontend

  18. Exercise http://www.w3schools.com/ajax/ajax_example.asp <-- go here and inspect the ajax calls,

    headers and body. Repeat the call. "Try it yourself" button, lets you edit the JS if you are so minded.

  19. Sample endpoints When testing API tools you may find it

    helpful to use some of the ready-made endpoints: • http://httpbin.org/ • http://requestb.in/ • http://httpresponder.com/

  20. Webhooks

  21. Webhooks

  22. Webhooks

  23. Webhooks

  24. Webhooks

  25. Questions? (feel free to email later [email protected])