Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Designing mobile APIs

7a0e72a6f55811246bb5d9a946fd2e49?s=47 Radoslav Stankov
November 30, 2013
Technology
3
140

Designing mobile APIs

Video: https://www.youtube.com/watch?v=Y6LiPJV0EH4

7a0e72a6f55811246bb5d9a946fd2e49?s=128

Radoslav Stankov

November 30, 2013
Tweet

More Decks by Radoslav Stankov

See All by Radoslav Stankov
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
50
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
33
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
53
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
420
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
4
360
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
2
100
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
45
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
91
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
5
170

Other Decks in Technology

See All in Technology
3f001aaf60bab10db9740d0d95dd85d2?s=48 nisshii0313
1
170
Cd823abda454a7a2065fe6fe273ae84b?s=48 viva_tweet_x
1
430
B2517024bfcd3621738de6036a25b3e9?s=48 iwashi
1
200
7ff130a0c1a4966472a4bdfaaf05e791?s=48 chandi
0
130
08672189228a165c14ed8d896f9a4d3a?s=48 akitok_
2
740
877f92a3597118cda2715790fa170ad4?s=48 benzookapi
1
430
Db4af41c084fb66f56725d0b3b40fb09?s=48 go5paopao
9
1.3k
Fdcc88b334334c866232fab429ccca33?s=48 lancers_pr
4
1.5k
02e11e1c79e926b59d011839bb10ab04?s=48 minma
0
190
9e7a653ed313b3da4b263a772bfc5026?s=48 clustervr
0
240
Ddac93a4fdff089ff3c641b7c1d02255?s=48 imdigitallab
0
490
Cc568a0b1284645f9fb927b2343eb87e?s=48 youtalk
0
420

Featured

See All Featured
Ae14cc4491ac334f9cd23f9f93b4305e?s=48 orderedlist
PRO
328
36k
96270e4c3e5e9806cf7245475c00b275?s=48 addyosmani
311
21k
96270e4c3e5e9806cf7245475c00b275?s=48 addyosmani
494
110k
D8fc2580cfaca035f666d9e4ee79a7f7?s=48 mongodb
23
3.9k
7c8469ee8c9e594c65c59b919626c08d?s=48 scottboms
251
11k
25c7c18223fb42a4c6ae1c8db6f50f9b?s=48 mojombo
359
62k
44b54d2ffcb7857004071cc6795dde11?s=48 cassininazir
347
20k
2bb923c57a1fdc3a2eb484bb8d565fd2?s=48 ufuk
56
5.4k
D36d2c1821af9249b69ff7f5ed60529b?s=48 tammielis
237
23k
3ab1249be442027903e1180025340b3f?s=48 reverentgeek
27
2k
245cee81a9c424266e5e401d844ea881?s=48 lara
15
2.7k
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
779
240k

Transcript

  1. Radoslav Stankov BlagoevgradConf 2013 30/11/2013 Designing Mobile APIs

  2. Radoslav Stankov @rstankov ! ! ! ! http://rstankov.com http://github.com/rstankov

  3. None

  4. I have a plan!

  5. None

  6. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  7. Mobile in numbers

  8. None

  9. Web App Mobile API

  10. Mobile API

  11. Example

  12. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  13. 1.Versioning! 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  14. Versioning

  15. http://fantasy-football.com/api/v1/team/1.json

  16. http://fantasy-football.com/api/v1/team/1.json

  17. https://fantasy-football.com/api/v1/team/1.json

  18. https://fantasy-football.com/api/v1/team/1.json

  19. https://fantasy-football.com/api/v1/team/1.json

  20. https://mobile.fantasy-football.com/v1/team/1.json

  21. https://mobile.fantasy-football.com/v1/team/1.json

  22. https://mobile.fantasy-football.com/v1/team/1.json

  23. Content-Types that are acceptable for the response. Accept Header

  24. https://mobile.fantasy-football.com/v1/team/1.json

  25. Accept: application/json https://mobile.fantasy-football.com/v1/team/1.json

  26. Accept: application/json https://mobile.fantasy-football.com/v1/team/1

  27. Accept: application/json https://mobile.fantasy-football.com/v1/team/1

  28. Accept: application/vnd.football-team.com; version=1, application/json https://mobile.fantasy-football.com/v1/team/1

  29. Accept: application/vnd.football-team.com; version=1, application/json https://mobile.fantasy-football.com/team/1

  30. 1.Versioning! 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  31. 1.Versioning 2.Headers! 3.Error responses 4.Authentication 5.REST Agenda

  32. Headers

  33. User-Agent User-Agent: iOS 7.1

  34. Accept-Language Accept-Language: en

  35. ! • X-Api-Key • X-Push-Notification-Id • X-Checksum • …. Custom

  36. ! • X-Api-Key • X-Push-Notification-Id • X-Checksum • …. Custom

  37. 1.Versioning 2.Headers! 3.Error responses 4.Authentication 5.REST Agenda

  38. 1.Versioning 2.Headers 3.Error responses! 4.Authentication 5.REST Agenda

  39. Error responses

  40. HTTP Statuses Code Description 400 Bad Request 401 Unauthorized 402

    Account Is Locked 404 Not Found 405 Method Not Allowed 422 Unprocessable Entity 426 To Many Requests 500 Internal Server Error

  41. HTTP Statuses http://httpstatus.es/

  42. Response Body { “message”: “Invalid api key” } GET https://mobile.fantasy-football.com/teams/1

  43. 422 - Unprocessable Entity { “errors”: {
 “name”: [“Already taken”],

    “budget”: [“Must be more than 0”] } } POST https://mobile.fantasy-football.com/teams/

  44. 1.Versioning 2.Headers 3.Error responses! 4.Authentication 5.REST Agenda

  45. 1.Versioning 2.Headers 3.Error responses 4.Authentication! 5.REST Agenda

  46. Authentication

  47. WWW-Authentication > WWW-Authenticate: Basic realm=“Fantasy Football” ! < Authorization: Basic

    QWxhZGRpbjpvcGVuIHNlc2FtZQ==

  48. WWW-Authentication > WWW-Authenticate: Digest realm=“Fantasy Football", … ! < Authorization:

    Digest username=“User", …

  49. WWW-Authentication Authorization: Token token=“7C1100AD4A6D45A6B2E022B”

  50. None

  51. Public ~ vs ~ Private

  52. OAuth ~ vs ~ Token

  53. OAuth ~ vs ~ Token

  54. Tokens Method URL Description POST /token Create new token
 (with

    login credentials) DELETE /token Delete token HEAD /token Check if token is active PATCH /token Renew a token (if tokens can expire)

  55. 1.Versioning 2.Headers 3.Error responses 4.Authentication! 5.REST Agenda

  56. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  57. REST

  58. Teams Method URL Description GET /my/teams Returns all teams POST

    /my/teams Create new team GET /my/teams/1 Return given team PATCH /my/teams/1 Update given team DELETE /my/teams/1 Delete given team

  59. {
 “id”: 1, “name”: “Real Blagoevgrad”,
 “players”: { /* players

    */ } } POST /my/teams Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  60. {
 “id”: 1, “name”: “Real Blagoevgrad”,
 “players”: { /* players

    */ } } GET /my/teams/1 Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  61. {
 “id”: 1, “name”: “Bayern Blagoevgrad”,
 “players”: { /* players

    */ } } PATCH /my/teams/1 Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  62. GET /teams Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

    [{
 “id”: 1, “name”: “Bayern Blagoevgrad”,
 “owner”: { /* owner */ },
 “players”: { /* players */ }, }, { /* other team */ }]

  63. Paging (1) X-Total: 10 X-Offset: 2 X-Offset: 3

  64. Paging (2) Link: <https://fantasy-football.com/teams/?page=3>; rel="next", <https://fantasy-football.com/teams/?page=1>; rel=“previous”, <https://fantasy-football.com/teams/?page=1>; rel=“first”, <https://fantasy-football.com/teams/?page=100>;

    rel=“last”

  65. Paging (3) Link: <https://fantasy-football.com/teams/?after-id=1213>; rel="next"

  66. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  67. Bonus

  68. Mobile API ~ vs ~ Regular API

  69. Syncing / Offline

  70. Postman Chrome plugin

  71. Good API example http://developer.github.com/v3/

  72. Questions?

  73. @rstankov Thank you :)