Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Designing mobile APIs

7a0e72a6f55811246bb5d9a946fd2e49?s=47 Radoslav Stankov
November 30, 2013
Technology
3
160

Designing mobile APIs

Video: https://www.youtube.com/watch?v=Y6LiPJV0EH4

7a0e72a6f55811246bb5d9a946fd2e49?s=128

Radoslav Stankov

November 30, 2013
Tweet

More Decks by Radoslav Stankov

See All by Radoslav Stankov
React Architecture at Product Hunt
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
2
62
React Component Anti-Patterns
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
400
How to an effective developer
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
110
Domain Driven Design Kinda
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
300
Testing React Hooks with Confidence
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
120
Product Development
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
2
100
Developing apps with React & Electron
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
100
React Native Architecture at Product Hunt
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
710
React Architecture at Product Hunt
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
4
640

Other Decks in Technology

See All in Technology
多様な成熟度のデータ活用を総合支援するKADOKAWA Connectedのデータ組織について
058dd218ad1491cf904b1105b94fe5a8?s=48 kadokawaconnected
PRO
0
180
NFT(非代替性トークン)、DeFi(分散金融) の虚像と実像 / NFT (Non-Fungible Token), DeFi (Decentralized Finance): False and Real Images
847a328633b1df6b11cc2f72430025e6?s=48 ks91
PRO
0
240
What's new in Vision
53e2d354b3299d64a54af680865516d5?s=48 satotakeshi
0
130
雑な攻撃からELBを守る一工夫 +おまけ / Know-how to protect servers from miscellaneous attacks
8e8410eb785755ae2cb485f85dbab6e8?s=48 hiroga
0
190
複数のスクラムチームをサポートするエンジニアリングマネジメントの話
4bddf664b03da8ad6b8d61660dcdc682?s=48 okeicalm
0
900
ウォーターフォールとアジャイルと楽楽明細/Waterfall×Agile×Rakurakumeisai
83c3e0e87371c50399ac898308bdbb92?s=48 whitefox_73
1
340
Compose の LazyColumn パフォーマンス改善で取り組んだこと
F46a37b9f855c245f72a07b04045216a?s=48 tomoya0x00
0
210
Build 2022で発表されたWindowsアプリ開発のあれこれ振り返ろう
49bf5c26799bbfb3d445c757c1fe8374?s=48 hatsunea
1
350
GeoLocationAnchor and MKTileOverlay
61a68b2172503ecdf7a7f7757df56071?s=48 toyship
0
100
モブに早く慣れたい人のためのガイド / A Guide to Getting Started Quickly with Mob Programming
A97eee01397705443a72a48ce29d3e19?s=48 cybozuinsideout
PRO
2
1.3k
OPENLOGI Company Profile
5c588fdfe782f92fa6b081903edd82bb?s=48 hr01
0
230
インタラクティブなメディアの地図投影法: WebメルカトルからAdaptive Projectionsへ / MIERUNE 社内勉強会 #033
C6b97a47d5406cfdef50a5c755751c16?s=48 sorami
2
210

Featured

See All Featured
Making Projects Easy
C4de88ea47538e4594750e3861a341c8?s=48 brettharned
98
4.3k
Product Roadmaps are Hard
7cbd3f5f922d798cc312eaf596de7ae6?s=48 iamctodd
34
6.5k
A Tale of Four Properties
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
149
21k
Fashionably flexible responsive web design (full day workshop)
433acaea1012b25d97ae66da9b998dad?s=48 malarkey
396
62k
Fight the Zombie Pattern Library - RWD Summit 2016
9fa239b3154a0169d99ab7bf1422dd12?s=48 marcelosomers
226
15k
Facilitating Awesome Meetings
245cee81a9c424266e5e401d844ea881?s=48 lara
29
4k
A better future with KSS
5f2da528927a2ec9ba4fec2069cbc958?s=48 kneath
225
15k
Happy Clients
C51b39fa3c79ccb99dcb8a076bc98287?s=48 brianwarren
89
5.6k
Bash Introduction
812e1705ff0f8bc1bcf18587bde687d5?s=48 62gerente
597
210k
Build your cross-platform service in a week with App Engine
5f83ef806155b403c3393160ce51f955?s=48 jlugia
219
17k
GraphQLの誤解/rethinking-graphql
3cb4e761dbdb7aebd1ffd85f752e1e3e?s=48 sonatard
27
6.5k
Streamline your AJAX requests with AmplifyJS and jQuery
9cde37f47e4a800ea081ea42de8d749a?s=48 dougneiner
126
8.5k

Transcript

  1. Radoslav Stankov BlagoevgradConf 2013 30/11/2013 Designing Mobile APIs

  2. Radoslav Stankov @rstankov ! ! ! ! http://rstankov.com http://github.com/rstankov

  3. None

  4. I have a plan!

  5. None

  6. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  7. Mobile in numbers

  8. None

  9. Web App Mobile API

  10. Mobile API

  11. Example

  12. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  13. 1.Versioning! 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  14. Versioning

  15. http://fantasy-football.com/api/v1/team/1.json

  16. http://fantasy-football.com/api/v1/team/1.json

  17. https://fantasy-football.com/api/v1/team/1.json

  18. https://fantasy-football.com/api/v1/team/1.json

  19. https://fantasy-football.com/api/v1/team/1.json

  20. https://mobile.fantasy-football.com/v1/team/1.json

  21. https://mobile.fantasy-football.com/v1/team/1.json

  22. https://mobile.fantasy-football.com/v1/team/1.json

  23. Content-Types that are acceptable for the response. Accept Header

  24. https://mobile.fantasy-football.com/v1/team/1.json

  25. Accept: application/json https://mobile.fantasy-football.com/v1/team/1.json

  26. Accept: application/json https://mobile.fantasy-football.com/v1/team/1

  27. Accept: application/json https://mobile.fantasy-football.com/v1/team/1

  28. Accept: application/vnd.football-team.com; version=1, application/json https://mobile.fantasy-football.com/v1/team/1

  29. Accept: application/vnd.football-team.com; version=1, application/json https://mobile.fantasy-football.com/team/1

  30. 1.Versioning! 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  31. 1.Versioning 2.Headers! 3.Error responses 4.Authentication 5.REST Agenda

  32. Headers

  33. User-Agent User-Agent: iOS 7.1

  34. Accept-Language Accept-Language: en

  35. ! • X-Api-Key • X-Push-Notification-Id • X-Checksum • …. Custom

  36. ! • X-Api-Key • X-Push-Notification-Id • X-Checksum • …. Custom

  37. 1.Versioning 2.Headers! 3.Error responses 4.Authentication 5.REST Agenda

  38. 1.Versioning 2.Headers 3.Error responses! 4.Authentication 5.REST Agenda

  39. Error responses

  40. HTTP Statuses Code Description 400 Bad Request 401 Unauthorized 402

    Account Is Locked 404 Not Found 405 Method Not Allowed 422 Unprocessable Entity 426 To Many Requests 500 Internal Server Error

  41. HTTP Statuses http://httpstatus.es/

  42. Response Body { “message”: “Invalid api key” } GET https://mobile.fantasy-football.com/teams/1

  43. 422 - Unprocessable Entity { “errors”: {
 “name”: [“Already taken”],

    “budget”: [“Must be more than 0”] } } POST https://mobile.fantasy-football.com/teams/

  44. 1.Versioning 2.Headers 3.Error responses! 4.Authentication 5.REST Agenda

  45. 1.Versioning 2.Headers 3.Error responses 4.Authentication! 5.REST Agenda

  46. Authentication

  47. WWW-Authentication > WWW-Authenticate: Basic realm=“Fantasy Football” ! < Authorization: Basic

    QWxhZGRpbjpvcGVuIHNlc2FtZQ==

  48. WWW-Authentication > WWW-Authenticate: Digest realm=“Fantasy Football", … ! < Authorization:

    Digest username=“User", …

  49. WWW-Authentication Authorization: Token token=“7C1100AD4A6D45A6B2E022B”

  50. None

  51. Public ~ vs ~ Private

  52. OAuth ~ vs ~ Token

  53. OAuth ~ vs ~ Token

  54. Tokens Method URL Description POST /token Create new token
 (with

    login credentials) DELETE /token Delete token HEAD /token Check if token is active PATCH /token Renew a token (if tokens can expire)

  55. 1.Versioning 2.Headers 3.Error responses 4.Authentication! 5.REST Agenda

  56. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  57. REST

  58. Teams Method URL Description GET /my/teams Returns all teams POST

    /my/teams Create new team GET /my/teams/1 Return given team PATCH /my/teams/1 Update given team DELETE /my/teams/1 Delete given team

  59. {
 “id”: 1, “name”: “Real Blagoevgrad”,
 “players”: { /* players

    */ } } POST /my/teams Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  60. {
 “id”: 1, “name”: “Real Blagoevgrad”,
 “players”: { /* players

    */ } } GET /my/teams/1 Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  61. {
 “id”: 1, “name”: “Bayern Blagoevgrad”,
 “players”: { /* players

    */ } } PATCH /my/teams/1 Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  62. GET /teams Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

    [{
 “id”: 1, “name”: “Bayern Blagoevgrad”,
 “owner”: { /* owner */ },
 “players”: { /* players */ }, }, { /* other team */ }]

  63. Paging (1) X-Total: 10 X-Offset: 2 X-Offset: 3

  64. Paging (2) Link: <https://fantasy-football.com/teams/?page=3>; rel="next", <https://fantasy-football.com/teams/?page=1>; rel=“previous”, <https://fantasy-football.com/teams/?page=1>; rel=“first”, <https://fantasy-football.com/teams/?page=100>;

    rel=“last”

  65. Paging (3) Link: <https://fantasy-football.com/teams/?after-id=1213>; rel="next"

  66. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  67. Bonus

  68. Mobile API ~ vs ~ Regular API

  69. Syncing / Offline

  70. Postman Chrome plugin

  71. Good API example http://developer.github.com/v3/

  72. Questions?

  73. @rstankov Thank you :)