Upgrade to Pro — share decks privately, control downloads, hide ads and more …

API Survival

Lorna Mitchell
October 01, 2015
Technology
2
100

API Survival

Very minimal slide deck, basically the diagrams to go with my FOWA tutorial

Lorna Mitchell

October 01, 2015
Tweet

More Decks by Lorna Mitchell

See All by Lorna Mitchell
Introduction to OpenAPI Specification
lornajane
1
580
Create PDFs from markup with rst2pdf
lornajane
2
670
Serverless Microservices are the New Black
lornajane
3
92
Serverless Computing with Apache OpenWhisk
lornajane
0
82
Build A Serverless Data Pipeline
lornajane
1
690
SQL, NoSQL and Beyond
lornajane
0
920
Build a Serverless Data Pipeline
lornajane
1
970
Road Trip Through Database Country
lornajane
1
900
Serverless Microservices Are The New Black
lornajane
1
99

Other Decks in Technology

See All in Technology
普段有償でサポート業務をしているCSAが技術知見を無料で公開する理由
07jp27
1
630
「手動オペレーションに定評がある」と言われた私が心がけていること / phpcon_odawara2024
blue_goheimochi
2
320
インシデントレスポンスのライフサイクルを廻すポイントってなに / Pinpoints of Incidentresponse Lifecycle for Operation
sakaitakeshi
1
300
Vertex AI を中心に 生成AIのアップデートを共有します
kaz1437
0
110
コンテナセキュリティの基本と脅威への対策
kyohmizu
3
690
入社後初めてのタスクでk8sアップグレードした話.pdf
kkato1
1
380
Delivering Millions of Messages within seconds @ Duolingo
pelelgrino
0
320
元インフラエンジニアに成る / Human Resources to Human Relations
bobtani
3
770
NLP2024 参加報告LT ~RAGの生成評価と懇親戦略~ / nlp2024_attendee_presentation_LT_masuda
taro_masuda
1
200
キャラクター制御のためのプロンプト術 for LINE Bot
uezo
0
520
検証を通して見えてきたTiDBの性能特性
lycorptech_jp
PRO
6
3.3k
Apple Vision Pro trial session
akkeylab
0
120

Featured

See All Featured
BBQ
matthewcrist
80
8.7k
What’s in a name? Adding method to the madness
productmarketing
PRO
15
2.6k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
6
990
Music & Morning Musume
bryan
41
5.6k
Fantastic passwords and where to find them - at NoRuKo
philnash
36
2.5k
Statistics for Hackers
jakevdp
789
220k
Building Adaptive Systems
keathley
30
1.8k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
501
140k
Happy Clients
brianwarren
91
6.4k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
18
6.9k
GitHub's CSS Performance
jonrohan
1023
450k
How to train your dragon (web standard)
notwaldorf
72
5.1k

Transcript

  1. API Survival Kit Lorna Mitchell, FOWA 2015

  2. The (Vague) Plan • Meet and greet new APIs •

    Inspecting traffic and debugging APIs • Webhooks and publishing local services remotely • Tools for API publishers

  3. Today's Resources These slides and some (updating) reference material: http://lornajane.net/resources/

  4. Finding APIs Search! • Directories such as http://www.programmableweb.com/apis/directory • There's

    an apis.json search tool http://apis.io/about

  5. Documentation Look for overview documentation. What do you look for

    when you read API documentation for the first time?

  6. Tools for First Contact • curl http://curl.haxx.se/ • httpie https://github.com/jkbrzt/httpie

    (python) • Postman https://www.getpostman.com/ (Chrome app)

  7. Token-based Authentication This approach allows: • restrictable access • revokable

    tokens

  8. OAuth 2 OAuth is designed for the relationship between: •

    a User • a "Provider" who already has a relationship with the user and the user's data - e.g. Facebook • a "Consumer" whom the User would like to have access to some of their data stored with the provider - e.g. Mobile app

  9. OAuth 2 OAuth 2 (rather than the original OAuth 1)

    recognises trust Supports various ways of granting access Full spec: http://tools.ietf.org/html/rfc6749

  10. Authorization Code Grant

  11. Owner Creds Grant

  12. OAuth in Action

  13. Challenge: Meet an API Talk to an API successfully using

    a tool of your choice.

  14. Challenge: Meet an API Make an authenticated call to an

    API successfully using a tool of your choice.

  15. Tools for Inspecting Traffic Tools used in this section: •

    Charles Proxy: http://www.charlesproxy.com/ • mitmproxy: http://mitmproxy.org/ Browsers all have their own tools • Firefox has firebug http://getfirebug.com/ • Chrome and IE dev tools installed by default

  16. API Backend, Web Frontend

  17. API Backend, Web Frontend

  18. Exercise http://www.w3schools.com/ajax/ajax_example.asp <-- go here and inspect the ajax calls,

    headers and body. Repeat the call. "Try it yourself" button, lets you edit the JS if you are so minded.

  19. Sample endpoints When testing API tools you may find it

    helpful to use some of the ready-made endpoints: • http://httpbin.org/ • http://requestb.in/ • http://httpresponder.com/

  20. Webhooks

  21. Webhooks

  22. Webhooks

  23. Webhooks

  24. Webhooks

  25. Questions? (feel free to email later [email protected])