Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Building API For The REST of Us

Terry
September 26, 2016
Programming
8
690

Building API For The REST of Us

Slides in RubyConf China 2016 Chengdu

Terry

September 26, 2016
Tweet

More Decks by Terry

See All by Terry
RubyConf China Welcome Slides
poshboytl
1
75
Rails Girls Chengdu 2014
poshboytl
2
310
Refactoring Re-education
poshboytl
5
950
How we test our projects
poshboytl
29
1.8k

Other Decks in Programming

See All in Programming
データベースのオペレーターであるCloudNativePGがStatefulSetを使わない理由に迫る
nnaka2992
0
240
Ça bouge du côté des animations CSS !
goetter
2
160
SwiftUI移行のためのインプレッショントラッキング基盤の構築
kokihirokawa
0
160
Datadog DBMでなにができる? JDDUG Meetup#7
nealle
0
150
AWS Step Functions は CDK で書こう!
konokenj
4
630
ナレッジイネイブリングにAIを活用してみる ゆるSRE勉強会 #9
nealle
0
160
責務と認知負荷を整える! 抽象レベルを意識した関心の分離
yahiru
8
1.5k
『テスト書いた方が開発が早いじゃん』を解き明かす #phpcon_nagoya
o0h
PRO
9
2.5k
PHPカンファレンス名古屋2025 タスク分解の試行錯誤〜レビュー負荷を下げるために〜
soichi
1
730
XStateを用いた堅牢なReact Components設計~複雑なClient Stateをシンプルに~ @React Tokyo ミートアップ #2
kfurusho
1
990
Rails 1.0 のコードで学ぶ find_by* と method_missing の仕組み / Learn how find_by_* and method_missing work in Rails 1.0 code
maimux2x
1
250
Serverless Rust: Your Low-Risk Entry Point to Rust in Production (and the benefits are huge)
lmammino
1
160

Featured

See All Featured
Code Reviewing Like a Champion
maltzj
521
39k
Done Done
chrislema
182
16k
Faster Mobile Websites
deanohume
306
31k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
30
2.2k
Improving Core Web Vitals using Speculation Rules API
sergeychernyshev
10
520
Statistics for Hackers
jakevdp
797
220k
How GitHub (no longer) Works
holman
314
140k
The Power of CSS Pseudo Elements
geoffreycrofte
75
5.5k
Scaling GitHub
holman
459
140k
How to train your dragon (web standard)
notwaldorf
91
5.9k
Embracing the Ebb and Flow
colly
84
4.6k
jQuery: Nuts, Bolts and Bling
dougneiner
63
7.7k

Transcript

  1. Building API For The REST of Us — Terry Tai

  2. About Me

  3. Host of Teahour.FM

  4. Creator of Railscasts-China

  5. I’m working for My Color Way 619'4 䨅⃚

  6. Co-founder of fengche.co

  7. Co-team of Peatio Project

  8. Let’s Building API

  9. Conditions • Based on Ruby on Rails • Not a

    pure API service, web is still the first-class citizen • Client builder is resource owner or ourselves

  10. 1. Stack Choice

  11. VS

  12. Performance

  13. Flexibility

  14. Level of abstraction

  15. Community

  16. I like Grape a little bit more!

  17. DSL Higer Abstraction

  18. Isolation

  19. Michael Bleigh Grape is created by my coworker in Intridea.

    He is also the creator of oauth2, omniauth, hashie, multi_json …

  20. 2. Routes & Version

  21. In Rails

  22. In Grape

  23. Rails with version in header

  24. Rails with version in header

  25. Rails with version in header

  26. Grape with version in header

  27. 3. Request & Params

  28. Params Encoding application/x-www-form-urlencoded multipart/form-data application/json

  29. Sending Params

  30. Rails server side

  31. Grape server side

  32. Grape params real world example

  33. 4.Authentication

  34. Basic Auth

  35. None

  36. With HTTPS?

  37. None

  38. Token Based Auth

  39. Token Based Auth • Simple • A little bit more

    secure than Basic Auth • Muti-tokens for authorisation

  40. Digest Based Auth

  41. What we use?

  42. Open Source Exchange

  43. Ancun

  44. Zhiren

  45. Signature based Authentication?

  46. Amazon use the similar strategy

  47. None

  48. One request includes: • access_key • tonce • payload •

    signature

  49. Signature

  50. payload

  51. None

  52. Everything Work Well until..

  53. payload

  54. WTF is that?

  55. Why not use JSON?

  56. One request includes: • access_key • tonce • payload •

    signature

  57. Strategy • Put business related data in payload as JSON

    • Put authentication related data out of payload

  58. Simpler than Amazon

  59. 5.Resource Presenter

  60. If you use Grape

  61. If you use Rails

  62. The most quick way

  63. Extract a Presenter layer

  64. Extract a Presenter layer

  65. Treat it as View!

  66. Jbuilder

  67. –DHH “Every time you use a loop in your view,

    but you don’t use partial, you might be wrong.”

  68. Jbuilder

  69. RABL

  70. None

  71. It’s not View

  72. Active Model Serializers

  73. View A new layer VS

  74. Two Stories ̽Terry ݏݏᦖඳԪ̾

  75. Story 1

  76. After user signup send him/her a welcome email

  77. Where to put this line?

  78. User model callback

  79. after_create ?

  80. after_commit on create

  81. Send in Callback

  82. Send in Controller

  83. Which one is the BEST way?

  84. I don’t know

  85. The second solution is from Rails Guides

  86. Story 2

  87. Jan Xie Ex-Intridea programmer Ex-Peatio co-member Founder of Cryptape ruby-pinyin

    author ruby-ethereum author My darling….

  88. His last project in Ruby?

  89. Python, Go

  90. Sinatra Node

  91. When A record created, B,C,D must be created at the

    same time

  92. A B C D

  93. None
  94. None

  95. Communicating emotions

  96. It’s become better but not BEST!

  97. What’s the BEST way?

  98. Jan’s solution — Service

  99. My solution — PubSub

  100. My solution — PubSub

  101. My solution — PubSub

  102. My solution — PubSub You can use Wisper gem to

    do similar thing

  103. Two hours PK…

  104. We decide change Nothing

  105. Maybe, there is no BEST way We need know why

    people think different We need know compromise

  106. Welcome to Chengdu ́౮᮷҅ Ӟଷ๶ԧ੪ӧమᐶ୏ጱउ૱̶͂

  107. Spicy Food

  108. Girls

  109. Spicy Food

  110. Girls

  111. RubyConf China in Chengdu

  112. We are hiring!

  113. None

  114. BTW҅I’m ́ፗካ͂

  115. Enjoy your “one night in Chengdu”