意図せぬレスポンスを防ぐAPI設計2つのコツ / Startup Rails #6

ҙਤͤ͵ϨεϙϯεΛ ๷͙APIઃܭ2ͭͷίπ 2017/7/18 taogawa

ࣗݾ঺հ • גࣜձࣾΩονϋΠΫ ΤϯδχΞ • খ઒ ߶ (taogawa) • αʔόʔαΠυΛओʹ୲౰͍ͯ͠·͢ɻ

ྉཧΛͭ͘Δਓͱ৯΂ΔਓͷަྲྀίϛϡχςΟαΠτ KitchHike https://kitchhike.com/

TechBlog΋΍ͬͯ·͢ http://tech.kitchhike.com/ ʮDHHྲྀͷϧʔςΟϯάͰಘΒΕΔϝϦοτͱɺऔΓೖΕΔ্ͰͷϙΠϯτʯ ͱ͍͏هࣄΛॻ͖·ͨ͠

API։ൃʹ ͖ͭ·ͱ͏໰୊

ʮҙਤͤ͵Ϩεϙϯεʯ Λ๷͙ϙΠϯτ

render json: @user.as_json # => response # { # "id":
1, # "first_name": "hike", # "last_name": "kitch", # ... # "password_digest": "xxxxxxxxx" # !!!!! # }

ҙਤͤ͵Ϩεϙϯε • ϢʔβʔຊਓͷΈݟΕΔ΂͖ඇެ։৘ใΛϨ εϙϯεͰฦ͍ͯ͠Δ • Ծʹඇެ։APIͰ͋ͬͯ΋ΫϥΠΞϯτʹσʔ λ͕౉ΔͨΊɺආ͚ͳͯ͘͸͍͚ͳ͍ • ҰํͰͪΐͬͱͨ͠ϛεʹΑΔόά͕ೖΓࠐ Έ΍͍͢

ҙਤͤ͵ϨεϙϯεΛ ઃܭϨϕϧͰ๷͙

1. Ϩεϙϯε߲໨͸ ϗϫΠτϦετํࣜ

ϒϥοΫϦετํࣜΛࢭΊΑ͏ • ϒϥοΫϦετํࣜ͸ϛεΛ͠΍͍͢ • ͍ͭͷ·ʹ͔ΧϥϜ͕ՃΘͬͨ • ϒϥοΫϦετ΁ͷ෇͚Ճ͑࿙Ε • ۩ମతʹݴ͑͹ as_json
͸ࢭΊͨ΄͏͕͍͍ Ͱ͢

before render json: @user.as_json # => response # { #
"id": 1, # "first_name": "hike", # "last_name": "kitch", # ... # } • as_json͸σϑΥϧτͰશͯͷ߲໨Λฦ͢ͷͰ ਏ͍ɾɾɾ

ϗϫΠτϦετํࣜʹ͠Α͏ • ϨεϙϯεͰฦ͢΂͖߲໨Λ໌จԽ͢Δ • ॻ͔ͳ͍߲໨͸Ϩεϙϯεʹؚ·Εͳ͍ • ActiveModelSerializer, Jbuilder • as_json
͕ආ͚ΒΕͳͯ͘΋ɺͤΊͯonlyࢦఆ Λ͠Α͏

after class UserSerializer < ActiveModel::Serializer attributes :id, :full_name def full_name
"#{object.first_name} #{object.last_name}" end end # => response # { # "id": 1, # "full_name": "hike kitch" # }

2. Ϣʔβʔࣗ਎/ͦΕҎ֎ͷ Ϧιʔε͸ΤϯυϙΠϯτΛ ෼͚Δ

Α͋͘Δύλʔϯ • ΫΤϦύϥϝʔλͰϨεϙϯεΛग़͠෼͚Δ • Ϩεϙϯεͷग़͠෼͚ͷ৚݅൑ఆϛε • ެ։Ϧιʔε͚ͩͷͭ΋Γ͕ϢʔβʔͷϓϥΠ ϕʔτϦιʔε΋ฦ͍ͯͨ͠

before # /kitchens/:id?scope=self class KitchensController < ApplicationController def show if
params[:scope] == "self" # ... else # ... end end end

͍ͬͦΤϯυϙΠϯτΛ ෼͚Α͏ • ΫΤϦύϥϝʔλͰͷ৚݅෼ذͰ͸ͳ͘ɺί ϯτϩʔϥࣗମΛ෼͚Δ • ϓϥΠϕʔτϦιʔε͸selfͷωʔϜεϖʔε ഑ԼʹҰݩԽ

after # /kitchens/:id class KitchensController < ApplicationController def show end
end # /self/kitchens/:id class Self::KitchensController < ApplicationController def show end end

ΤϯυϙΠϯτ෼ׂͷϝϦοτ • ৚݅෼ذͷϛεͷ৺഑Λͳͤͨ͘ • ҆৺ײ͕ͱͯ΋େ͖͍ • ͜ͷΤϯυϙΠϯτ͸ɺ͜ͷϨεϙϯεɺͷ ੾Γ෼͚͕͸͖ͬΓͨ͠ • ։ൃऀͷೝࣝҧ͍Λͳͤͨ͘

ΤϯυϙΠϯτ෼ׂͷσϝϦο τ • ౰વAPIίʔϧ਺͸૿͑Δ • N+1ʹ͸ͳΒͳ͍ͷͰڐ༰͍ͯ͠Δ • ෼ׂͨ͠ίϯτϩʔϥͰͷίʔυͷॏෳ͕ى ͜Γ΍͍͢ •
Ϟσϧ૚ʹίʔυΛدͤͯରԠ

·ͱΊ • ҙਤͤ͵ϨεϙϯεΛฦ͞ͳ͍ઃܭ2ͭͷίπ • Ϩεϙϯε͸ϗϫΠτϦετํࣜʹ͢Δ • ৚݅෼ذΑΓΤϯυϙΠϯτͷ෼ׂ

We’re Hiring!

意図せぬレスポンスを防ぐAPI設計2つのコツ / Startup Rails #6

意図せぬレスポンスを防ぐAPI設計2つのコツ / Startup Rails #6

taogawa

More Decks by taogawa

Other Decks in Programming

Featured

Transcript

ҙਤͤ͵ϨεϙϯεΛ ๷͙APIઃܭ2ͭͷίπ 2017/7/18 taogawa

ࣗݾ঺հ • גࣜձࣾΩονϋΠΫ ΤϯδχΞ • খ઒ ߶ (taogawa) • αʔόʔαΠυΛओʹ୲౰͍ͯ͠·͢ɻ

ྉཧΛͭ͘Δਓͱ৯΂ΔਓͷަྲྀίϛϡχςΟαΠτ KitchHike https://kitchhike.com/

TechBlog΋΍ͬͯ·͢ http://tech.kitchhike.com/ ʮDHHྲྀͷϧʔςΟϯάͰಘΒΕΔϝϦοτͱɺऔΓೖΕΔ্ͰͷϙΠϯτʯ ͱ͍͏هࣄΛॻ͖·ͨ͠

API։ൃʹ ͖ͭ·ͱ͏໰୊

ʮҙਤͤ͵Ϩεϙϯεʯ Λ๷͙ϙΠϯτ

render json: @user.as_json # => response # { # "id":

ҙਤͤ͵Ϩεϙϯε • ϢʔβʔຊਓͷΈݟΕΔ΂͖ඇެ։৘ใΛϨ εϙϯεͰฦ͍ͯ͠Δ • Ծʹඇެ։APIͰ͋ͬͯ΋ΫϥΠΞϯτʹσʔ λ͕౉ΔͨΊɺආ͚ͳͯ͘͸͍͚ͳ͍ • ҰํͰͪΐͬͱͨ͠ϛεʹΑΔόά͕ೖΓࠐ Έ΍͍͢

ҙਤͤ͵ϨεϙϯεΛ ઃܭϨϕϧͰ๷͙

1. Ϩεϙϯε߲໨͸ ϗϫΠτϦετํࣜ

ϒϥοΫϦετํࣜΛࢭΊΑ͏ • ϒϥοΫϦετํࣜ͸ϛεΛ͠΍͍͢ • ͍ͭͷ·ʹ͔ΧϥϜ͕ՃΘͬͨ • ϒϥοΫϦετ΁ͷ෇͚Ճ͑࿙Ε • ۩ମతʹݴ͑͹ as_json

before render json: @user.as_json # => response # { #

ϗϫΠτϦετํࣜʹ͠Α͏ • ϨεϙϯεͰฦ͢΂͖߲໨Λ໌จԽ͢Δ • ॻ͔ͳ͍߲໨͸Ϩεϙϯεʹؚ·Εͳ͍ • ActiveModelSerializer, Jbuilder • as_json

after class UserSerializer < ActiveModel::Serializer attributes :id, :full_name def full_name

2. Ϣʔβʔࣗ਎/ͦΕҎ֎ͷ Ϧιʔε͸ΤϯυϙΠϯτΛ ෼͚Δ

Α͋͘Δύλʔϯ • ΫΤϦύϥϝʔλͰϨεϙϯεΛग़͠෼͚Δ • Ϩεϙϯεͷग़͠෼͚ͷ৚݅൑ఆϛε • ެ։Ϧιʔε͚ͩͷͭ΋Γ͕ϢʔβʔͷϓϥΠ ϕʔτϦιʔε΋ฦ͍ͯͨ͠

before # /kitchens/:id?scope=self class KitchensController < ApplicationController def show if

͍ͬͦΤϯυϙΠϯτΛ ෼͚Α͏ • ΫΤϦύϥϝʔλͰͷ৚݅෼ذͰ͸ͳ͘ɺί ϯτϩʔϥࣗମΛ෼͚Δ • ϓϥΠϕʔτϦιʔε͸selfͷωʔϜεϖʔε ഑ԼʹҰݩԽ

after # /kitchens/:id class KitchensController < ApplicationController def show end

ΤϯυϙΠϯτ෼ׂͷϝϦοτ • ৚݅෼ذͷϛεͷ৺഑Λͳͤͨ͘ • ҆৺ײ͕ͱͯ΋େ͖͍ • ͜ͷΤϯυϙΠϯτ͸ɺ͜ͷϨεϙϯεɺͷ ੾Γ෼͚͕͸͖ͬΓͨ͠ • ։ൃऀͷೝࣝҧ͍Λͳͤͨ͘

ΤϯυϙΠϯτ෼ׂͷσϝϦο τ • ౰વAPIίʔϧ਺͸૿͑Δ • N+1ʹ͸ͳΒͳ͍ͷͰڐ༰͍ͯ͠Δ • ෼ׂͨ͠ίϯτϩʔϥͰͷίʔυͷॏෳ͕ى ͜Γ΍͍͢ •

·ͱΊ • ҙਤͤ͵ϨεϙϯεΛฦ͞ͳ͍ઃܭ2ͭͷίπ • Ϩεϙϯε͸ϗϫΠτϦετํࣜʹ͢Δ • ৚݅෼ذΑΓΤϯυϙΠϯτͷ෼ׂ

We’re Hiring!