Upgrade to Pro — share decks privately, control downloads, hide ads and more …

WebHooks: The API Strikes Back at CloudConf 2017

WebHooks: The API Strikes Back at CloudConf 2017

These days many APIs are more than just simple REST services. Through WebHooks, APIs are talking back, giving us more information and prompting further action from our applications. But what is the best way to react to these demanding APIs?

We'll look at some services that use Webhooks, exploring reasons to use WebHooks and the emerging best practices. Then we'll look at the other side, implementing WebHook endpoints. Does consuming WebHooks make our application an API? What are the easiest ways to develop and test with WebHooks? We'll cover security, performance and standards all wrapped up with some live coded examples.

By the end we'll know how to handle anything an API can throw back at us.

Phil Nash

March 16, 2017

More Decks by Phil Nash

Other Decks in Programming


  1. Webhooks everywhere • Twilio • GitHub • Heroku • Braintree

    • Stripe • MailChimp • SendGrid • DropBox • ...and many more
  2. Sending Webhooks • Be a good HTTP client • Deal

    with failures • Sign requests
  3. Webhooks • Tunnelling for development • Verify signatures • Use

    HTTPS • Respond quickly to Webhooks • Idempotence