Upgrade to Pro — share decks privately, control downloads, hide ads and more …

WebHooks: The API Strikes Back at CloudConf 2017

Phil Nash
March 16, 2017
Programming
0
260

WebHooks: The API Strikes Back at CloudConf 2017

These days many APIs are more than just simple REST services. Through WebHooks, APIs are talking back, giving us more information and prompting further action from our applications. But what is the best way to react to these demanding APIs?

We'll look at some services that use Webhooks, exploring reasons to use WebHooks and the emerging best practices. Then we'll look at the other side, implementing WebHook endpoints. Does consuming WebHooks make our application an API? What are the easiest ways to develop and test with WebHooks? We'll cover security, performance and standards all wrapped up with some live coded examples.

By the end we'll know how to handle anything an API can throw back at us.

Phil Nash

March 16, 2017
Tweet

More Decks by Phil Nash

See All by Phil Nash
Four steps from JavaScript to TypeScript
philnash
3
410
JavaScript Apps Go Intl - GIDS Live 2021
philnash
2
260
You're on Mute! WebRTC and our Lives on Screen - GIDS Live 2021
philnash
1
270
Better API DX with a CLI - APIdays Jakarta
philnash
0
340
The trouble with webhooks - at Apidays Live Hong Kong
philnash
2
200
Four steps from JavaScript to TypeScript
philnash
0
390
Fantastic passwords and where to find them - at NoRuKo
philnash
50
2.9k
The trouble with webhooks - at APIdays Singapore
philnash
0
290
What's going on with Project Fugu? at DevTalks Reimagined
philnash
0
430

Other Decks in Programming

See All in Programming
とにかくAWS GameDay!AWSは世界の共通言語! / Anyway, AWS GameDay! AWS is the world's lingua franca!
seike460
PRO
1
860
EventSourcingの理想と現実
wenas
6
2.3k
Click-free releases & the making of a CLI app
oheyadam
2
110
ふかぼれ!CSSセレクターモジュール / Fukabore! CSS Selectors Module
petamoriken
0
150
よくできたテンプレート言語として TypeScript + JSX を利用する試み / Using TypeScript + JSX outside of Web Frontend #TSKaigiKansai
izumin5210
6
1.7k
Why Jakarta EE Matters to Spring - and Vice Versa
ivargrimstad
0
1k
Amazon Qを使ってIaCを触ろう!
maruto
0
400
型付き API リクエストを実現するいくつかの手法とその選択 / Typed API Request
euxn23
8
2.2k
RubyLSPのマルチバイト文字対応
notfounds
0
120
3 Effective Rules for Using Signals in Angular
manfredsteyer
PRO
1
100
ActiveSupport::Notifications supporting instrumentation of Rails apps with OpenTelemetry
ymtdzzz
1
230
受け取る人から提供する人になるということ
little_rubyist
0
230

Featured

See All Featured
Code Reviewing Like a Champion
maltzj
520
39k
Performance Is Good for Brains [We Love Speed 2024]
tammyeverts
6
410
Documentation Writing (for coders)
carmenintech
65
4.4k
How STYLIGHT went responsive
nonsquared
95
5.2k
KATA
mclloyd
29
14k
Fontdeck: Realign not Redesign
paulrobertlloyd
82
5.2k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
229
52k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
8
860
Teambox: Starting and Learning
jrom
133
8.8k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
42
9.2k
A Philosophy of Restraint
colly
203
16k
It's Worth the Effort
3n
183
27k

Transcript

  1. None

  2. WeB HookS

  3. The api StrikeS bacK

  4. A long time ago, in a galaxy far, far away...

  5. None

  6. Phil Nash @philnash http:/ /philna.sh [email protected]

  7. WeB HookS

  8. Today • What are WebHooks? • Sending WebHooks • Receiving

    WebHooks

  9. WHAT ARE WEBHOOKS?

  10. WHY USE WEBHOOKS?

  11. REAL TIME DATA

  12. http:/ /www.flickr.com/photos/25834786@N03/4585036818 - secretlondon123

  13. GETTING THE RIGHT RESPONSE

  14. WHO USES WEBHOOKS?

  15. Webhooks everywhere • Twilio • GitHub • Heroku • Braintree

    • Stripe • MailChimp • SendGrid • DropBox • ...and many more

  16. DEMO

  17. SENDING WEBHOOKS

  18. BE A GOOD HTTP CLIENT

  19. CACHING AND COOKIES

  20. DEALING WITH ERRORS

  21. RETRIES OR FALLBACKS?

  22. SECURITY

  23. HTTPS

  24. HTTP AUTH

  25. SIGN REQUESTS

  26. Sending Webhooks • Be a good HTTP client • Deal

    with failures • Sign requests

  27. WORKING WITH WEBHOOKS

  28. None

  29. NGROK

  30. SECURITY

  31. USE HTTPS

  32. VERIFY THE SIGNATURE

  33. SOME WEBHOOK PROVIDERS DON'T SIGN THEIR REQUESTS

  34. ¯\_( ツ)_/¯

  35. SHARE SECRETS

  36. PERFORMANCE

  37. BE GOOD TO YOURSELF AND THE WEBHOOK

  38. DELAY LONG RUNNING TASKS

  39. IDEMPOTENCE

  40. WHAT ABOUT THE RETRIES?

  41. Webhooks • Tunnelling for development • Verify signatures • Use

    HTTPS • Respond quickly to Webhooks • Idempotence

  42. Thanks! @philnash http:/ /philna.sh [email protected]