Designing mobile APIs

7a0e72a6f55811246bb5d9a946fd2e49?s=47 Radoslav Stankov
November 30, 2013
Technology
3
130

Designing mobile APIs

Video: https://www.youtube.com/watch?v=Y6LiPJV0EH4

7a0e72a6f55811246bb5d9a946fd2e49?s=128

Radoslav Stankov

November 30, 2013
Tweet

More Decks by Radoslav Stankov

See All by Radoslav Stankov
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
2
220
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
74
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
16
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
49
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
3
130
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
3
150
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
57
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
63
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
37

Other Decks in Technology

See All in Technology
13d64bff196e33cc6b352f226137d16e?s=48 monoqlo
6
400
F301c0275838d562c72ea9177e7ddc68?s=48 fkino
7
610
B29f42636a5f1249b640473d49aa4514?s=48 linedevth
1
180
53e2d354b3299d64a54af680865516d5?s=48 satotakeshi
3
480
9df0566fad9c9ca3bf669917848878fe?s=48 i35_267
5
1.3k
F400611942a8b7a695f741f9a720fcf8?s=48 koooootake
9
910
13d936e697fe0f4fa96f926d0a712f6c?s=48 sansanbuildersbox
3
100
2564c99f616f1ecfc0f617a6fe87e2a9?s=48 penguin045
0
140
8a84268593355816432ceaf78777d585?s=48 dena_tech
0
150
253ab1300a7e9526141c2f15d3cb4ae7?s=48 shinpy
0
110
Ae4ace6ba2b695fd37e4121faef66b43?s=48 katsushun89
0
220
F866c47f0761aac633225b6919538e1c?s=48 matsuji
8
320

Featured

See All Featured
C35e01544a0dd94a2cf1619ee8a42ebb?s=48 clairelew
10
1.2k
E837d2996f52008ace055a08fbfff992?s=48 frogandcode
121
20k
F383c6a4dc55e331bbe2987b622cee6b?s=48 stephaniewalter
256
10k
7edec06b5435e0dac07a353b2cc26253?s=48 geeforr
330
29k
651dcfe41723207fbb0aa044a4f7c07f?s=48 dotmariusz
94
5k
766b9746b59e6f09e280cd33cf4ed419?s=48 skipperchong
4
490
016edace78ffe826f2348d1e0c504afd?s=48 maggiecrowley
5
250
4262b9cfacfb6b2c77f23e1d0310cd3e?s=48 myddelton
104
10k
D83926c323d4f9289f947b4b4e76b939?s=48 jensimmons
205
9.9k
7cbd3f5f922d798cc312eaf596de7ae6?s=48 iamctodd
10
1.4k
44b54d2ffcb7857004071cc6795dde11?s=48 cassininazir
345
20k
E13c31390e0369fcd5972292ce0e7b92?s=48 jnunemaker
PRO
40
4.3k

Transcript

  1. Radoslav Stankov BlagoevgradConf 2013 30/11/2013 Designing Mobile APIs

  2. Radoslav Stankov @rstankov ! ! ! ! http://rstankov.com http://github.com/rstankov

  3. None

  4. I have a plan!

  5. None

  6. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  7. Mobile in numbers

  8. None

  9. Web App Mobile API

  10. Mobile API

  11. Example

  12. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  13. 1.Versioning! 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  14. Versioning

  15. http://fantasy-football.com/api/v1/team/1.json

  16. http://fantasy-football.com/api/v1/team/1.json

  17. https://fantasy-football.com/api/v1/team/1.json

  18. https://fantasy-football.com/api/v1/team/1.json

  19. https://fantasy-football.com/api/v1/team/1.json

  20. https://mobile.fantasy-football.com/v1/team/1.json

  21. https://mobile.fantasy-football.com/v1/team/1.json

  22. https://mobile.fantasy-football.com/v1/team/1.json

  23. Content-Types that are acceptable for the response. Accept Header

  24. https://mobile.fantasy-football.com/v1/team/1.json

  25. Accept: application/json https://mobile.fantasy-football.com/v1/team/1.json

  26. Accept: application/json https://mobile.fantasy-football.com/v1/team/1

  27. Accept: application/json https://mobile.fantasy-football.com/v1/team/1

  28. Accept: application/vnd.football-team.com; version=1, application/json https://mobile.fantasy-football.com/v1/team/1

  29. Accept: application/vnd.football-team.com; version=1, application/json https://mobile.fantasy-football.com/team/1

  30. 1.Versioning! 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  31. 1.Versioning 2.Headers! 3.Error responses 4.Authentication 5.REST Agenda

  32. Headers

  33. User-Agent User-Agent: iOS 7.1

  34. Accept-Language Accept-Language: en

  35. ! • X-Api-Key • X-Push-Notification-Id • X-Checksum • …. Custom

  36. ! • X-Api-Key • X-Push-Notification-Id • X-Checksum • …. Custom

  37. 1.Versioning 2.Headers! 3.Error responses 4.Authentication 5.REST Agenda

  38. 1.Versioning 2.Headers 3.Error responses! 4.Authentication 5.REST Agenda

  39. Error responses

  40. HTTP Statuses Code Description 400 Bad Request 401 Unauthorized 402

    Account Is Locked 404 Not Found 405 Method Not Allowed 422 Unprocessable Entity 426 To Many Requests 500 Internal Server Error

  41. HTTP Statuses http://httpstatus.es/

  42. Response Body { “message”: “Invalid api key” } GET https://mobile.fantasy-football.com/teams/1

  43. 422 - Unprocessable Entity { “errors”: {
 “name”: [“Already taken”],

    “budget”: [“Must be more than 0”] } } POST https://mobile.fantasy-football.com/teams/

  44. 1.Versioning 2.Headers 3.Error responses! 4.Authentication 5.REST Agenda

  45. 1.Versioning 2.Headers 3.Error responses 4.Authentication! 5.REST Agenda

  46. Authentication

  47. WWW-Authentication > WWW-Authenticate: Basic realm=“Fantasy Football” ! < Authorization: Basic

    QWxhZGRpbjpvcGVuIHNlc2FtZQ==

  48. WWW-Authentication > WWW-Authenticate: Digest realm=“Fantasy Football", … ! < Authorization:

    Digest username=“User", …

  49. WWW-Authentication Authorization: Token token=“7C1100AD4A6D45A6B2E022B”

  50. None

  51. Public ~ vs ~ Private

  52. OAuth ~ vs ~ Token

  53. OAuth ~ vs ~ Token

  54. Tokens Method URL Description POST /token Create new token
 (with

    login credentials) DELETE /token Delete token HEAD /token Check if token is active PATCH /token Renew a token (if tokens can expire)

  55. 1.Versioning 2.Headers 3.Error responses 4.Authentication! 5.REST Agenda

  56. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  57. REST

  58. Teams Method URL Description GET /my/teams Returns all teams POST

    /my/teams Create new team GET /my/teams/1 Return given team PATCH /my/teams/1 Update given team DELETE /my/teams/1 Delete given team

  59. {
 “id”: 1, “name”: “Real Blagoevgrad”,
 “players”: { /* players

    */ } } POST /my/teams Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  60. {
 “id”: 1, “name”: “Real Blagoevgrad”,
 “players”: { /* players

    */ } } GET /my/teams/1 Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  61. {
 “id”: 1, “name”: “Bayern Blagoevgrad”,
 “players”: { /* players

    */ } } PATCH /my/teams/1 Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  62. GET /teams Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

    [{
 “id”: 1, “name”: “Bayern Blagoevgrad”,
 “owner”: { /* owner */ },
 “players”: { /* players */ }, }, { /* other team */ }]

  63. Paging (1) X-Total: 10 X-Offset: 2 X-Offset: 3

  64. Paging (2) Link: <https://fantasy-football.com/teams/?page=3>; rel="next", <https://fantasy-football.com/teams/?page=1>; rel=“previous”, <https://fantasy-football.com/teams/?page=1>; rel=“first”, <https://fantasy-football.com/teams/?page=100>;

    rel=“last”

  65. Paging (3) Link: <https://fantasy-football.com/teams/?after-id=1213>; rel="next"

  66. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  67. Bonus

  68. Mobile API ~ vs ~ Regular API

  69. Syncing / Offline

  70. Postman Chrome plugin

  71. Good API example http://developer.github.com/v3/

  72. Questions?

  73. @rstankov Thank you :)