SlideShare a Scribd company logo

Building RESTful APIs

Silota Inc., profile picture
Silota Inc.

The document discusses the essentials of building RESTful APIs using Python, highlighting key concepts such as the definition of APIs, the principles of REST, and best practices for API design. It emphasizes the importance of intuitive documentation, error handling, and security measures while also advocating the use of Django REST Framework for effective API development. The presentation includes examples and resources to aid in understanding API functionality and implementation.

Technology
1 of 36
Downloaded 102 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
Building RESTful APIs Vancouver Python Day November 16, 2013 Ganesh Swami www.silota.com
Hi • Programming professionally for 10+ years • x86 assembly, STL, boost, python-boost, python ! • Built emacs-­‐wiki-­‐blog: first blogging engine for Emacs!
SILOTA • Search As A Service • • full stack: crawling, indexing, retrieving, tag deployment Python shop: • • ansible   • sentry   • django   • • pelican   django-­‐rest-­‐framework   In beta testing: love more feedback!
APIs: What & Why
What is an API? Application Programming Interface ! An API is the interface implemented by an application which allows other applications to communicate with it.
What is an API? communicate
What is REST? • REpresentational State Transfer • logical resources manipulated with HTTP verbs • modern best practice • wide adoption • contrast with SOAP
Why build an API? • explosion of devices connected to the internet • can be a company’s greatest asset • bizdev 2.0: internal developers, consultants, partners, customers
Sample APIs • aws • dropbox • instagram • pinterest • github • stripe • salesforce • parse • …
Source: Mary Meeker’s Internet Trends 2013
APIs: How
Top 3 qualities • Intuitive • • no surprises, easy to learn Documented • • • simple answers to simple questions references, tutorials & quick starts Opinionated • camelCase, ids, responses, pagination, etc.
Building RESTful APIs
Resources, Status Codes & Errors
Resources • Nouns, not verbs • Coarse grained, not fine grained • example: let’s build a document datastore!
Smells like RPC • /getDocument   • /getAllDocuments   • /createDocument   • /updateDocument   • /deleteDocument
Smells like RPC • /getDocument   • /getAllDocuments   • /createDocument   • /updateDocument   • /deleteDocument This is a bad example. ! Don’t do this!
Embrace HTTP • GET,  POST,  PUT,  PATCH,  DELETE   ! • Explorable with simple tools
Embrace HTTP GET  /document GET  /document/19 POST  /document Retrieve all documents Retrieve a specific document #19 Create a new document PUT  /document/19 Update an existing document #19 DELETE  /document/19 Delete an existing document #19
Bipartite graph /documents /documents/:id GET error POST PUT error PATCH error DELETE …
Status Codes 2xx OK, created, all good, carry on 4xx User error: bad API key, malformed data, item not found, etc. 5xx Server error
Errors • Errors • as descriptive as possible • developers are your customers • never naked 4xx/5xx HTTP errors
Errors <xml  version="1.0"?>   <Error>          <Message>A  server  error  has  occurred</Message>          <Description>Unknown  Error</Description>          <Id>1234</Id>   </Error> Just no.
Errors {      "code"  :  1234,      "message"  :  "Unsupported  media  type  ‘text/html’  in  request",      "description"  :  "Requests  need  to  have  the  Content-­‐Type  HTTP   header  set  to  ‘application/json’"   }
pip-install httpie
Best practices security base URLs serialization timestamps versioning caching gzip logging
Best practices security https all the way base URLs api.companyname.com serialization json timestamps ISO 8601 & UTC versioning /v1/ caching ETag & Last-Modified gzip always & pretty print responses logging if possible
Recap • https + gzip + json • draw bipartite graph of nouns and verbs • great documentation • no surprises
django-­‐rest-­‐framework
Why use a framework?
Myths • roll your own • use a ‘lightweight’ framework • too tied to django • too slow
Features • pagination • permission • authentication • serialization • throttling • data validation • proper HTTP response handling
Magic formula: Mixins Views Authentication Permissions Throttling CreateAPIView Token Any SimpleRate ListAPIView Session Token AnonRate RetrieveAPIView OAuth Authentication DeleteAPIView
Four step formula 1. create the model 2. write the serializer 3. write the view 4. configure the urls
References • How to Design a Good API and Why it Matters: • • Best Practices for Designing a Pragmatic RESTful API • • http://www.vinaysahni.com/best-practices-for-a-pragmaticrestful-api REST worst practices: • • http://lcsd05.cs.tamu.edu/slides/keynote.pdf http://jacobian.org/writing/rest-worst-practices/ http://django-rest-framework.org/
Keep in touch! Ganesh Swami! www.silota.com ganesh@silota.com @gane5h

More Related Content

PPTX
Django rest framework
Blank Chen
 
PDF
Django rest framework tips and tricks
xordoquy
 
PDF
API Design & Security in django
Tareque Hossain
 
PPTX
REST Easy with Django-Rest-Framework
Marcel Chastain
 
PDF
Introduction to Django REST Framework, an easy way to build REST framework in...
Zhe Li
 
PPTX
Write an API for Almost Anything: The Amazing Power and Flexibility of Django...
Caktus Group
 
PDF
Building an API with Django and Django REST Framework
Christopher Foresman
 
PDF
Apache Sling as an OSGi-powered REST middleware
Robert Munteanu
 
Django rest framework
Blank Chen
 
Django rest framework tips and tricks
xordoquy
 
API Design & Security in django
Tareque Hossain
 
REST Easy with Django-Rest-Framework
Marcel Chastain
 
Introduction to Django REST Framework, an easy way to build REST framework in...
Zhe Li
 
Write an API for Almost Anything: The Amazing Power and Flexibility of Django...
Caktus Group
 
Building an API with Django and Django REST Framework
Christopher Foresman
 
Apache Sling as an OSGi-powered REST middleware
Robert Munteanu
 

What's hot (20)

PDF
Unlocking the Magical Powers of WP_Query
Dustin Filippini
 
ZIP
Drupal, Android and iPhone
Alexandru Badiu
 
PPTX
In-browser storage and me
Jason Casden
 
PDF
Middleware in Golang: InVision's Rye
Cale Hoopes
 
PDF
RESTFul development with Apache sling
Sergii Fesenko
 
PPTX
Making Watir and Cucumber an efficient tool for Web UI Automation
Ruslan Strazhnyk
 
PPT
Build Your Own CMS with Apache Sling
Bob Paulin
 
KEY
WordPress APIs
mdawaffe
 
PPTX
PowerShell for SharePoint Admins
Rick Taylor
 
PDF
Euroclojure2014: Schema & Swagger - making your Clojure web APIs more awesome
Metosin Oy
 
PDF
TDD a REST API With Node.js and MongoDB
Valeri Karpov
 
ODP
2017 Codemotion OWASP ZAP in CI/CD
Simon Bennetts
 
PDF
Two scoops of Django - Deployment
flywindy
 
PDF
JCR and Sling Quick Dive
Paolo Mottadelli
 
PDF
MEAN Stack Workshop at Node Philly, 4/9/14
Valeri Karpov
 
PPTX
Ci of js and apex using jasmine, phantom js and drone io df14
Kevin Poorman
 
PDF
Case study: JBoss Developer Studio, an IDE for Web, Mobile and Cloud applicat...
Max Andersen
 
ODP
2017 DevSecCon ZAP Scripting Workshop
Simon Bennetts
 
PDF
SANS DFIR Prague: PowerShell & WMI
Joe Slowik
 
PDF
Configuration As Code - Adoption of the Job DSL Plugin at Netflix
Justin Ryan
 
Unlocking the Magical Powers of WP_Query
Dustin Filippini
 
Drupal, Android and iPhone
Alexandru Badiu
 
In-browser storage and me
Jason Casden
 
Middleware in Golang: InVision's Rye
Cale Hoopes
 
RESTFul development with Apache sling
Sergii Fesenko
 
Making Watir and Cucumber an efficient tool for Web UI Automation
Ruslan Strazhnyk
 
Build Your Own CMS with Apache Sling
Bob Paulin
 
WordPress APIs
mdawaffe
 
PowerShell for SharePoint Admins
Rick Taylor
 
Euroclojure2014: Schema & Swagger - making your Clojure web APIs more awesome
Metosin Oy
 
TDD a REST API With Node.js and MongoDB
Valeri Karpov
 
2017 Codemotion OWASP ZAP in CI/CD
Simon Bennetts
 
Two scoops of Django - Deployment
flywindy
 
JCR and Sling Quick Dive
Paolo Mottadelli
 
MEAN Stack Workshop at Node Philly, 4/9/14
Valeri Karpov
 
Ci of js and apex using jasmine, phantom js and drone io df14
Kevin Poorman
 
Case study: JBoss Developer Studio, an IDE for Web, Mobile and Cloud applicat...
Max Andersen
 
2017 DevSecCon ZAP Scripting Workshop
Simon Bennetts
 
SANS DFIR Prague: PowerShell & WMI
Joe Slowik
 
Configuration As Code - Adoption of the Job DSL Plugin at Netflix
Justin Ryan
 
Ad

Viewers also liked (20)

PPTX
RESTful APIs: Promises & lies
Tareque Hossain
 
PDF
RESTful API Design, Second Edition
Apigee | Google Cloud
 
PPT
Linux Composite Communication
Tareque Hossain
 
PDF
12 tips on Django Best Practices
David Arcos
 
PPTX
Maak Kennis Met Finchline 110207
Fred van Dijk
 
PPTX
Mobile api test approach
Indium Software
 
PDF
Introduction to Big Data Infrastructure
Silota Inc.
 
PPT
Are RESTful APIs Well-designed? Detection of their Linguistic (Anti)Patterns
Francis Palma
 
PDF
All you need to know when designing RESTful APIs
Jesús Espejo
 
PPTX
API Management Part 1 - An Introduction to Azure API Management
BizTalk360
 
PDF
RESTFul API Design and Documentation - an Introduction
Miredot
 
PDF
Open-E DSS V7 Active-Active Load Balanced iSCSI HA Cluster (with bonding)
open-e
 
PDF
Pycon 2008: Python Command-line Tools *Nix
Lecturer UC Davis & Northwestern
 
PDF
Securing Your API
Jason Austin
 
PPTX
Red Hat Storage Day Seattle: Why Software-Defined Storage Matters
Red_Hat_Storage
 
PPT
Swift Architecture and Practice, by Alex Yang
Hui Cheng
 
PPTX
Software Defined presentation
John Rhodes
 
PDF
Microservices with Swagger, Flask and Docker
Dhilipsiva DS
 
PPTX
Core Concept: Software Defined Everything
Thanakrit Lersmethasakul
 
PPTX
"FCoE vs. iSCSI - Making the Choice" from Interop Las Vegas 2011
Stephen Foskett
 
RESTful APIs: Promises & lies
Tareque Hossain
 
RESTful API Design, Second Edition
Apigee | Google Cloud
 
Linux Composite Communication
Tareque Hossain
 
12 tips on Django Best Practices
David Arcos
 
Maak Kennis Met Finchline 110207
Fred van Dijk
 
Mobile api test approach
Indium Software
 
Introduction to Big Data Infrastructure
Silota Inc.
 
Are RESTful APIs Well-designed? Detection of their Linguistic (Anti)Patterns
Francis Palma
 
All you need to know when designing RESTful APIs
Jesús Espejo
 
API Management Part 1 - An Introduction to Azure API Management
BizTalk360
 
RESTFul API Design and Documentation - an Introduction
Miredot
 
Open-E DSS V7 Active-Active Load Balanced iSCSI HA Cluster (with bonding)
open-e
 
Pycon 2008: Python Command-line Tools *Nix
Lecturer UC Davis & Northwestern
 
Securing Your API
Jason Austin
 
Red Hat Storage Day Seattle: Why Software-Defined Storage Matters
Red_Hat_Storage
 
Swift Architecture and Practice, by Alex Yang
Hui Cheng
 
Software Defined presentation
John Rhodes
 
Microservices with Swagger, Flask and Docker
Dhilipsiva DS
 
Core Concept: Software Defined Everything
Thanakrit Lersmethasakul
 
"FCoE vs. iSCSI - Making the Choice" from Interop Las Vegas 2011
Stephen Foskett
 
Ad

Similar to Building RESTful APIs (20)

PPTX
Super simple introduction to REST-APIs (2nd version)
Patrick Savalle
 
PDF
Django Rest Framework | How to Create a RESTful API Using Django | Django Tut...
Edureka!
 
PDF
REST in pieces
sparkfabrik
 
PDF
[drupalday2017] - REST in pieces
DrupalDay
 
PPTX
Apitesting.pptx
NamanVerma88
 
PDF
API Basics
Ritul Chaudhary
 
PDF
zendframework2 restful
tom_li
 
PDF
Coding 100-session-slides
Cisco DevNet
 
PPTX
Api crash
Hoang Nguyen
 
PPTX
Api crash
Luis Goldster
 
PPTX
Api crash
Harry Potter
 
PPTX
Api crash
Fraboni Ec
 
PPTX
Api crash
Tony Nguyen
 
PPTX
Api crash
Young Alista
 
PPTX
Api crash
James Wong
 
PPTX
REST-API introduction for developers
Patrick Savalle
 
PDF
REST APIs, Girls Who Code
Twitter Developers
 
PDF
REST API Recommendations
Jeelani Shaik
 
PDF
Panoramic view of web APIs
Karen Immanuel
 
PPTX
Http and REST APIs.
Rahul Tanwani
 
Super simple introduction to REST-APIs (2nd version)
Patrick Savalle
 
Django Rest Framework | How to Create a RESTful API Using Django | Django Tut...
Edureka!
 
REST in pieces
sparkfabrik
 
[drupalday2017] - REST in pieces
DrupalDay
 
Apitesting.pptx
NamanVerma88
 
API Basics
Ritul Chaudhary
 
zendframework2 restful
tom_li
 
Coding 100-session-slides
Cisco DevNet
 
Api crash
Hoang Nguyen
 
Api crash
Luis Goldster
 
Api crash
Harry Potter
 
Api crash
Fraboni Ec
 
Api crash
Tony Nguyen
 
Api crash
Young Alista
 
Api crash
James Wong
 
REST-API introduction for developers
Patrick Savalle
 
REST APIs, Girls Who Code
Twitter Developers
 
REST API Recommendations
Jeelani Shaik
 
Panoramic view of web APIs
Karen Immanuel
 
Http and REST APIs.
Rahul Tanwani
 

Recently uploaded (20)

PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Cloud computing and distributed systems.
kkkkkhan
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
A Presentation on Artificial Intelligence
memembruh336
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 

Building RESTful APIs