Designing a Beautiful REST+JSON API

preview_player
Показать описание
In this presentation, Les Hazlewood - Stormpath CTO and Apache Shiro PMC Chair - will share all of the golden nuggets learned while designing, implementing and supporting JSON-based REST APIs, using examples from a clean real-world REST+JSON API built with Java technologies. He will cover:

- JSON-based data formats in a RESTful API
- References to other JSON-based resources (aka 'linking')
- Resource collections and pagination
- How to map (and how not to map) HTTP methods to Resource CRUD
- Resource partial updates
- Supporting HTTP Method Overloading for clients that don't support HTTP PUT and DELETE
- API versioning strategies
- Meaningful Error responses
- Many-to-many resource relationships
- HTTP Caching and Optimistic concurrency control
- Authentication and Security

  1. InfoQ
  2. Designing
  3. Beautiful
  4. REST JSON
  5. API
  6. Les Hazlewood
Рекомендации по теме
Designing a Beautiful 1:25:53

Designing a Beautiful REST+JSON API

Les Hazlewood: Designing 0:52:27

Les Hazlewood: Designing a Beautiful REST+JSON API

Designing a beautiful 0:19:26

Designing a beautiful rest json api

DevNexus 2016 - 1:11:55

DevNexus 2016 - Designing a Beautiful REST+JSON API - Les Hazlewood

What Is REST 0:05:21

What Is REST API? Examples And How To Use It: Crash Course System Design #3

REST APIs Explained 0:00:32

REST APIs Explained in 30 secs #javascript #python #web #coding #programming

Beautiful REST+JSON APIs 1:23:29

Beautiful REST+JSON APIs with Ion at Silicon Valley Code Camp 2016

RESTful APIs in 0:11:20

RESTful APIs in 100 Seconds // Build an API from Scratch with Node.js Express

Spring Boot Tutorial 0:17:39

Spring Boot Tutorial for Beginners (Part 1) [Build Your First REST API Step-by-Step]

Beautiful REST & 0:56:48

Beautiful REST & JSON APIs

How to Design 0:00:08

How to Design a REST API (Best Practices & Standards)

Learn JSON in 0:12:00

Learn JSON in 10 Minutes

Pragmatic JSON API 0:20:56

Pragmatic JSON API Design

'JSON API: convention 0:25:44

'JSON API: convention driven API design', by Steve Klabnik APIdays Paris 2013

Michał Karzyński - 0:25:48

Michał Karzyński - Building beautiful RESTful APIs using Flask

REST API Design: 0:21:01

REST API Design: Avoid future proofing with the JSON junk drawer

Les Hazlewood: Build 0:55:08

Les Hazlewood: Build a Killer Client for Your REST+JSON API

Restful JSON API 0:04:32

Restful JSON API Design Using Open API

Difference Between REST 0:07:24

Difference Between REST API vs Web API vs SOAP API Explained

APIs for Beginners 3:07:07

APIs for Beginners - How to use an API (Full Course / Tutorial)

How To Visualize 0:00:28

How To Visualize JSON Files

API Design Tip 0:00:16

API Design Tip - Design APIs first, If you don't, you will regret it later. API Tip #Shorts

GORUCO 2018: Building 0:10:35

GORUCO 2018: Building Efficient APIs with JSON-API by Rushaine McBean

REST + JSON 2:01:08

REST + JSON APIDesign from Strompath

Комментарии
Автор

The best session for learning Rest API. I enjoyed learning.

Mali
Автор

One of the primary advantage of putting version numbers in the Content Type/MIME is that clients wouldn't be all forced to upgrade whole sale if a new API comes in. Clients can use API v2 to access application resource while still using v1 to access accounts resource. And since the HATEOAS URL between these resources are unadulterated URL without format or version specifier, it will all just be part of content negotiation to request different version of the format. The draw back is that supporting multiple version of an API concurrently requires lots of planning and designing and setting Accept Headers isn't as easy as appending to the URL when using regular web browser.

OTOH, if you put version numbering in the URL, you'll have to add special handling to be able to add the version parameter to the URL returned by HATEOAS to requests different versions of the API. The advantage is that it's easier for human to switch between formats/version when navigating the API using regular web browser.

yvrelna
Автор

Excellent presentation! Wes is awesome and very knowledgeable. Heard other presentations by him (on Apache Shiro).

onetamer
Автор

Really interesting talk, however the sound quality is horrible.

Rubafix
Автор

VERY GOOD! thanks you for sharing your vase knowledge.

RobotalkerSupport
Автор

1:03:28 example of a collection resource

ruixue
Автор

can have nested URL paths like you stated - that's not a problem, but you don't want the client interpolating values in those URLs - you want those values pre-populated in the response document before the client reads it.  

This is because UriTemplates are not RESTful (unless you have a special media type that codifies how UriTemplates should work, but that's a whole 'nuther topic outside the scope of what most people expect as 'normal' links).

Think about it - when a web browser access a web page, does it interpolate URLs with variables to get to other pages?  Absolutely not - it simply access whatever URLs are in the current document.

Ideal RESTful APIs embrace HATEOAS: when designing your REST API, think of a REST client like a browser: it should receive an initial 'index' response, and *everything* accessible to the client should be accessible from that initial response or anything that that can be traversed by links.

anjin
Автор

16:45, "head, is what you would kinda expect... "

unknowmOOsewasfound
Автор

You should not mix up REST semantics with specific implementation semantics, like the 'HREF' in JSON. You would need to define seperate semantics for each distinct content/media-type.

Better stick to HTTP specifications as much as possible. It already covers this problem through "Web linking" in the HTTP Response in RFC 5988. You can discover using 'cheap' HEAD-requests. (Note: your main HREF seems to be just the Location header?)


Also, exploding/expanding resources does not feel like being very clean. Better use multipart for that purpose, so entities itself don't have to be changed in their representation (and so could be cached); it'll that way still be contained in a single request/response.


Also, you seem to bypass Accept-Ranges by introducing 'limit' and 'offset' query params.


Anyway, I really appriciate the video, great work!

robertdewilde
Автор

Great information, the speaker knew his stuff and was very concise. The audience kept aggravating me with their incessant interruptions though.

gabriel_export
Автор

i think the OAuth protocol is pretty standardized now

sb
Автор

Having access to these slides would be very helpful. slideshare net / stormpath / rest-jsonapis (there they are)

batbawls
Автор

love the starting music .. can anyone tell me where I can download this :p

nishanth
Автор

this video is really good about the design of API :) after that I was left with a big interrogation: the authorization part. Could somebody redirect me to some place where we can learn methods about how to define access and authorization rules for a client to interact with our API?

amidaobscura
Автор

you should fix the audio. the echo is VERY distracting

balls
Автор

shazam says it's maXXXimum's "destroy the dancefloor" - the flatline remix (much better than the original)

fatchat
join shbcf.ru