Save 37% off PRO during our Black Friday Sale! »

Designing mobile APIs

7a0e72a6f55811246bb5d9a946fd2e49?s=47 Radoslav Stankov
November 30, 2013
Technology
3
160

Designing mobile APIs

Video: https://www.youtube.com/watch?v=Y6LiPJV0EH4

7a0e72a6f55811246bb5d9a946fd2e49?s=128

Radoslav Stankov

November 30, 2013
Tweet

More Decks by Radoslav Stankov

See All by Radoslav Stankov
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
2
25
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
320
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
96
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
200
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
98
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
87
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
0
82
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
1
620
7a0e72a6f55811246bb5d9a946fd2e49?s=48 rstankov
4
510

Other Decks in Technology

See All in Technology
5c4a9121473a13463ca3d8c0cf6d3152?s=48 o3
2
380
156a7b659a9b4aba83a8c0a33515a06f?s=48 e11i0t_4lders0n
1
1.3k
506d54f33118160c5d41f73d223544d0?s=48 wataru420
0
170
Cdf97a1b1b132c56582773c3ba09a3a6?s=48 rakus_dev
0
110
8fa31051503b09846584c49cd53d2f80?s=48 asei
0
280
7a29c02251394fc05ebd88c631c562dc?s=48 takufujii
0
340
46839cf590a549efe13547c17a6b2fde?s=48 isaoshimizu
5
1.5k
Dc5157c1e1b11923f4cdd210ee27d4af?s=48 patorash
1
270
997716e957fe4db19491b2794346a7ce?s=48 airreader
0
280
74cec195bfb6cb5165256d88cb7fcf0f?s=48 miu_crescent
2
170
484571ccba0db66b69dc11761afdd0c4?s=48 chiroito
1
190
5d9cd19df0e91caac118b793b4f803d5?s=48 takefumiyoshii
31
9.3k

Featured

See All Featured
D09fad3e36ae6841f54820be0e907f7a?s=48 rocio
156
12k
A16eb159db895e3b01d3dc95767ad595?s=48 jonyablonski
40
1.8k
B83d5b590577969ee79a5ad845411a7d?s=48 ammeep
660
55k
5f2da528927a2ec9ba4fec2069cbc958?s=48 kneath
298
39k
1b75d89772b7eea1f6c89fbf362607d9?s=48 moore
129
22k
5f83ef806155b403c3393160ce51f955?s=48 jlugia
218
16k
1519587b1a0febb658c36c94f6272b0d?s=48 roundedbygravity
249
21k
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
74
1.7k
7c8469ee8c9e594c65c59b919626c08d?s=48 scottboms
253
11k
A9704266587836f7e784235e5073b93e?s=48 jmmastey
21
5.2k
Bfd6b681ec6e8c9bef82ff0521c364f7?s=48 kastner
56
2.1k
433acaea1012b25d97ae66da9b998dad?s=48 malarkey
122
16k

Transcript

  1. Radoslav Stankov BlagoevgradConf 2013 30/11/2013 Designing Mobile APIs

  2. Radoslav Stankov @rstankov ! ! ! ! http://rstankov.com http://github.com/rstankov

  3. None

  4. I have a plan!

  5. None

  6. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  7. Mobile in numbers

  8. None

  9. Web App Mobile API

  10. Mobile API

  11. Example

  12. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  13. 1.Versioning! 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  14. Versioning

  15. http://fantasy-football.com/api/v1/team/1.json

  16. http://fantasy-football.com/api/v1/team/1.json

  17. https://fantasy-football.com/api/v1/team/1.json

  18. https://fantasy-football.com/api/v1/team/1.json

  19. https://fantasy-football.com/api/v1/team/1.json

  20. https://mobile.fantasy-football.com/v1/team/1.json

  21. https://mobile.fantasy-football.com/v1/team/1.json

  22. https://mobile.fantasy-football.com/v1/team/1.json

  23. Content-Types that are acceptable for the response. Accept Header

  24. https://mobile.fantasy-football.com/v1/team/1.json

  25. Accept: application/json https://mobile.fantasy-football.com/v1/team/1.json

  26. Accept: application/json https://mobile.fantasy-football.com/v1/team/1

  27. Accept: application/json https://mobile.fantasy-football.com/v1/team/1

  28. Accept: application/vnd.football-team.com; version=1, application/json https://mobile.fantasy-football.com/v1/team/1

  29. Accept: application/vnd.football-team.com; version=1, application/json https://mobile.fantasy-football.com/team/1

  30. 1.Versioning! 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  31. 1.Versioning 2.Headers! 3.Error responses 4.Authentication 5.REST Agenda

  32. Headers

  33. User-Agent User-Agent: iOS 7.1

  34. Accept-Language Accept-Language: en

  35. ! • X-Api-Key • X-Push-Notification-Id • X-Checksum • …. Custom

  36. ! • X-Api-Key • X-Push-Notification-Id • X-Checksum • …. Custom

  37. 1.Versioning 2.Headers! 3.Error responses 4.Authentication 5.REST Agenda

  38. 1.Versioning 2.Headers 3.Error responses! 4.Authentication 5.REST Agenda

  39. Error responses

  40. HTTP Statuses Code Description 400 Bad Request 401 Unauthorized 402

    Account Is Locked 404 Not Found 405 Method Not Allowed 422 Unprocessable Entity 426 To Many Requests 500 Internal Server Error

  41. HTTP Statuses http://httpstatus.es/

  42. Response Body { “message”: “Invalid api key” } GET https://mobile.fantasy-football.com/teams/1

  43. 422 - Unprocessable Entity { “errors”: {
 “name”: [“Already taken”],

    “budget”: [“Must be more than 0”] } } POST https://mobile.fantasy-football.com/teams/

  44. 1.Versioning 2.Headers 3.Error responses! 4.Authentication 5.REST Agenda

  45. 1.Versioning 2.Headers 3.Error responses 4.Authentication! 5.REST Agenda

  46. Authentication

  47. WWW-Authentication > WWW-Authenticate: Basic realm=“Fantasy Football” ! < Authorization: Basic

    QWxhZGRpbjpvcGVuIHNlc2FtZQ==

  48. WWW-Authentication > WWW-Authenticate: Digest realm=“Fantasy Football", … ! < Authorization:

    Digest username=“User", …

  49. WWW-Authentication Authorization: Token token=“7C1100AD4A6D45A6B2E022B”

  50. None

  51. Public ~ vs ~ Private

  52. OAuth ~ vs ~ Token

  53. OAuth ~ vs ~ Token

  54. Tokens Method URL Description POST /token Create new token
 (with

    login credentials) DELETE /token Delete token HEAD /token Check if token is active PATCH /token Renew a token (if tokens can expire)

  55. 1.Versioning 2.Headers 3.Error responses 4.Authentication! 5.REST Agenda

  56. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  57. REST

  58. Teams Method URL Description GET /my/teams Returns all teams POST

    /my/teams Create new team GET /my/teams/1 Return given team PATCH /my/teams/1 Update given team DELETE /my/teams/1 Delete given team

  59. {
 “id”: 1, “name”: “Real Blagoevgrad”,
 “players”: { /* players

    */ } } POST /my/teams Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  60. {
 “id”: 1, “name”: “Real Blagoevgrad”,
 “players”: { /* players

    */ } } GET /my/teams/1 Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  61. {
 “id”: 1, “name”: “Bayern Blagoevgrad”,
 “players”: { /* players

    */ } } PATCH /my/teams/1 Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

  62. GET /teams Accept: application/vnd.fantasy-football.com; version=1,application/json
 Authentication: Token token=“0BD8AF0AAB86619” X-Api-Key: “7C1100AD4A6D45A6B2E022B”

    [{
 “id”: 1, “name”: “Bayern Blagoevgrad”,
 “owner”: { /* owner */ },
 “players”: { /* players */ }, }, { /* other team */ }]

  63. Paging (1) X-Total: 10 X-Offset: 2 X-Offset: 3

  64. Paging (2) Link: <https://fantasy-football.com/teams/?page=3>; rel="next", <https://fantasy-football.com/teams/?page=1>; rel=“previous”, <https://fantasy-football.com/teams/?page=1>; rel=“first”, <https://fantasy-football.com/teams/?page=100>;

    rel=“last”

  65. Paging (3) Link: <https://fantasy-football.com/teams/?after-id=1213>; rel="next"

  66. 1.Versioning 2.Headers 3.Error responses 4.Authentication 5.REST Agenda

  67. Bonus

  68. Mobile API ~ vs ~ Regular API

  69. Syncing / Offline

  70. Postman Chrome plugin

  71. Good API example http://developer.github.com/v3/

  72. Questions?

  73. @rstankov Thank you :)