KEMBAR78
API Best Practices | KEY
UL
Uploaded byUri Lavi
1,033 views

API Best Practices

This document outlines best practices for designing public APIs and web APIs. It recommends using HTTP and JSON/XML formats and keeping APIs simple with clear documentation. Rules include using plural nouns for resources, HTTP verbs to act on collections/elements, limiting relationship depth to 3 levels, versioning APIs and maintaining backwards compatibility, using status codes and verbose error messages, supporting both synchronous and asynchronous responses, handling re-entrant requests safely, and formatting data as JSON by default. Automated testing of APIs with clients in different languages is also advised.

API Best Practices @urilavi http://bit.ly/scisr
Public API/ Web API HTTP / HTTPS XML/JSON
Rule #0 http://www.flickr.com/photos/holeymoon/2131118247/
Rule #1 - Funnel Try Build Adopt
Simplicity? TDD public API At least 3 clients Different languages http://www.flickr.com/photos/giosp/3933753363/
Cross Cutting Concerns Authentication/Authorization Versioning Sync/Async Re-entrance Pagination Caching Throttling
RESTfulness * Use plural names (reads better with GET) * Avoid methods (it isn’t traversal and grows fast) Nouns (Method-less) 2 base URLS per resource /events /events/10
RESTfulness HTTP Verbs on collections/elements Create POST /events Fetch GET /events/12345 Update PUT /events/12345
Method-based * Use verbs * Make the documentation clear that these are “non resource” operations Convert Translate
Rule #2 - Relationships
Rule #2 - Relationships Keep it simple - 3 levels
Rule #2 - Relationships Keep it simple - 3 levels GET /lecturers/events/10
Rule #3 - Complexity? http://www.flickr.com/photos/takomabibelot/4373062612/
Rule #4 - Versioning * Maintain at least one version back GET api/v1/events/10
Rule #4 - Versioning * Maintain at least one version back GET api/v1/events/10
Rule #5 - Errors HTTP status codes {200, 400, 500} Verbose messages link to documentation
Rule #6 - Sync / Async Result available - sync Result available in x time - async PicScout’s API
Rule #7- Re-entrance http://www.flickr.com/photos/leovan/2152274834/ POST /funds/accounts/1000/ {‘value’: 100, ‘token’: ‘xbds213’}
Rule #8 - Formatting JaaD = JSON as a Default
Rule #9 - Automation? http://www.flickr.com/photos/r80o/39304743/ APIs are for humans

More Related Content

PPTX
Web Performance 101
byUri Lavi
 
PDF
Speed Index, explained!
byStefan Baumgartner
 
PPTX
Building High Performance Websites - Session-1
byUsama Nada
 
PPTX
How fast are we going now?
bySteve Souders
 
PDF
Grokking REST (ZendCon 2010)
byBen Ramsey
 
KEY
Speed is Essential for a Great Web Experience
byAndy Davies
 
PPTX
Web performance optimization for modern web applications
byChris Love
 
PPTX
do u webview?
bySteve Souders
 
Web Performance 101
byUri Lavi
 
Speed Index, explained!
byStefan Baumgartner
 
Building High Performance Websites - Session-1
byUsama Nada
 
How fast are we going now?
bySteve Souders
 
Grokking REST (ZendCon 2010)
byBen Ramsey
 
Speed is Essential for a Great Web Experience
byAndy Davies
 
Web performance optimization for modern web applications
byChris Love
 
do u webview?
bySteve Souders
 

What's hot

KEY
Sniffing the Mobile Context
byAndy Davies
 
PDF
Progressive Enhancement 2.0 (Conference Agnostic)
byNicholas Zakas
 
PPTX
Browser Wars Episode 1: The Phantom Menace
byNicholas Zakas
 
PDF
State of jQuery '09
byjeresig
 
PPTX
High Performance Websites
byParham
 
PDF
Making the web faster
byPatrick Meenan
 
PDF
Speed is Essential for a Great Web Experience (Canvas Conf Version)
byAndy Davies
 
PDF
[jqconatx] Adaptive Images for Responsive Web Design
byChristopher Schmitt
 
PDF
PC Monitoring Software
byAaron Davis
 
PDF
Keep the Web Fast
byChris Fetherston
 
PPTX
5 single page application principles developers need to know
byChris Love
 
PDF
SearchLove San Diego 2018 | Tom Anthony | An Introduction to HTTP/2 & Service...
byDistilled
 
PDF
17 Web Performance Metrics You Should Care About
byEvgeny Tsarkov
 
PDF
How I learned to stop worrying and love the .htaccess file
byRoxana Stingu
 
PPTX
Word campktm speed-security
byDigamber Pradhan
 
PDF
The Case for HTTP/2 - Internetdagarna 2015 - Stockholm
byAndy Davies
 
PPT
Fast and Easy Website Tuneups
byJeff Wisniewski
 
PPTX
Web Performance Optimization
byPatrick Meenan
 
PPTX
10 Tips to make your Website lightning-fast - SMX Stockholm 2012
byBastian Grimm
 
PPTX
A faster journey with HTTP
byMichael Ewins
 
Sniffing the Mobile Context
byAndy Davies
 
Progressive Enhancement 2.0 (Conference Agnostic)
byNicholas Zakas
 
Browser Wars Episode 1: The Phantom Menace
byNicholas Zakas
 
State of jQuery '09
byjeresig
 
High Performance Websites
byParham
 
Making the web faster
byPatrick Meenan
 
Speed is Essential for a Great Web Experience (Canvas Conf Version)
byAndy Davies
 
[jqconatx] Adaptive Images for Responsive Web Design
byChristopher Schmitt
 
PC Monitoring Software
byAaron Davis
 
Keep the Web Fast
byChris Fetherston
 
5 single page application principles developers need to know
byChris Love
 
SearchLove San Diego 2018 | Tom Anthony | An Introduction to HTTP/2 & Service...
byDistilled
 
17 Web Performance Metrics You Should Care About
byEvgeny Tsarkov
 
How I learned to stop worrying and love the .htaccess file
byRoxana Stingu
 
Word campktm speed-security
byDigamber Pradhan
 
The Case for HTTP/2 - Internetdagarna 2015 - Stockholm
byAndy Davies
 
Fast and Easy Website Tuneups
byJeff Wisniewski
 
Web Performance Optimization
byPatrick Meenan
 
10 Tips to make your Website lightning-fast - SMX Stockholm 2012
byBastian Grimm
 
A faster journey with HTTP
byMichael Ewins
 

Viewers also liked

PDF
510G CV 150315 Shane Harris - General R6
byShane Harris
 
PDF
Why don't we have REAL IP to the Edge in Buildings?
byMemoori
 
PPTX
EL FUTURO DEL AGUA: TRATAMIENTO Y REUTILIZACIÓN.
byAlba Santos Ortega
 
PDF
Institutional Change and Parental Compensation in Intergenerational attainment
byTITA research
 
PPTX
Презентация 1.20 - Радиофикация
byИлья Конышев
 
PPT
Presentacion del sector
bymayraMeneses-23
 
PDF
Pri pro presentasion
byyoprst
 
PPTX
My Presentation
byLaura Barker
 
PPTX
Twitter for Researchers
byUniversity of York Library
 
PPTX
Hcv - immune evasion mechanisms
byMarina Ibrahim
 
PPT
Seres autenticos
byamstramgramduval
 
PPTX
IoT DDoS Attacks: the stakes have changed
byGreat Bay Software
 
PPTX
Unit 2 Rules
byGrace Ng
 
510G CV 150315 Shane Harris - General R6
byShane Harris
 
Why don't we have REAL IP to the Edge in Buildings?
byMemoori
 
EL FUTURO DEL AGUA: TRATAMIENTO Y REUTILIZACIÓN.
byAlba Santos Ortega
 
Institutional Change and Parental Compensation in Intergenerational attainment
byTITA research
 
Презентация 1.20 - Радиофикация
byИлья Конышев
 
Presentacion del sector
bymayraMeneses-23
 
Pri pro presentasion
byyoprst
 
My Presentation
byLaura Barker
 
Twitter for Researchers
byUniversity of York Library
 
Hcv - immune evasion mechanisms
byMarina Ibrahim
 
Seres autenticos
byamstramgramduval
 
IoT DDoS Attacks: the stakes have changed
byGreat Bay Software
 
Unit 2 Rules
byGrace Ng
 

Similar to API Best Practices

PPS
I can has API? A Love Story
byCal Henderson
 
PDF
Avoiding API Library Antipatterns
byPaul Mison
 
PPTX
Webservices: The RESTful Approach
byMushfekur Rahman
 
PDF
BeJUG JAX-RS Event
byStephan Janssen
 
PPTX
REST Methodologies
byjrodbx
 
PPSX
Restful web services rule financial
byRule_Financial
 
PDF
REST API Recommendations
byJeelani Shaik
 
PDF
Design Web Api
byTailor Fontela
 
PDF
Restful design at work v2.0
byBoulder Java User's Group
 
PPTX
Restful webservice
byDong Ngoc
 
PPT
RESTful SOA - 中科院暑期讲座
byLi Yi
 
KEY
Building Tomorrow's Web Services
byPat Cappelaere
 
PPT
APITalkMeetupSharable
byObaidur (OB) Rashid
 
PDF
MuleSoft Surat Virtual Meetup#21 - MuleSoft API and RAML Design Best Practice...
byJitendra Bafna
 
PDF
What is REST?
bySaeid Zebardast
 
PDF
APIs : Mapping the way
byWSO2
 
PDF
Open Ap Is State Of The Market
byConSanFrancisco123
 
PDF
Restful design principles
byGeison Goes
 
PPTX
Cloud Side: REST APIs - Best practices
byNicolas FOATA
 
PPTX
RESTful design
byRobert MacLean
 
I can has API? A Love Story
byCal Henderson
 
Avoiding API Library Antipatterns
byPaul Mison
 
Webservices: The RESTful Approach
byMushfekur Rahman
 
BeJUG JAX-RS Event
byStephan Janssen
 
REST Methodologies
byjrodbx
 
Restful web services rule financial
byRule_Financial
 
REST API Recommendations
byJeelani Shaik
 
Design Web Api
byTailor Fontela
 
Restful design at work v2.0
byBoulder Java User's Group
 
Restful webservice
byDong Ngoc
 
RESTful SOA - 中科院暑期讲座
byLi Yi
 
Building Tomorrow's Web Services
byPat Cappelaere
 
APITalkMeetupSharable
byObaidur (OB) Rashid
 
MuleSoft Surat Virtual Meetup#21 - MuleSoft API and RAML Design Best Practice...
byJitendra Bafna
 
What is REST?
bySaeid Zebardast
 
APIs : Mapping the way
byWSO2
 
Open Ap Is State Of The Market
byConSanFrancisco123
 
Restful design principles
byGeison Goes
 
Cloud Side: REST APIs - Best practices
byNicolas FOATA
 
RESTful design
byRobert MacLean
 

More from Uri Lavi

PPTX
JavaScript TDD
byUri Lavi
 
PPTX
Intro to Mahout
byUri Lavi
 
PPT
Cloud Aware Architecture
byUri Lavi
 
PPTX
Software craftsmanship - 4
byUri Lavi
 
PPTX
Software Craftsmanship - 3
byUri Lavi
 
PPTX
Software Craftsmanship - 2
byUri Lavi
 
PPTX
Software Craftsmanship - 1 Meeting
byUri Lavi
 
PPTX
Effective Code Review
byUri Lavi
 
JavaScript TDD
byUri Lavi
 
Intro to Mahout
byUri Lavi
 
Cloud Aware Architecture
byUri Lavi
 
Software craftsmanship - 4
byUri Lavi
 
Software Craftsmanship - 3
byUri Lavi
 
Software Craftsmanship - 2
byUri Lavi
 
Software Craftsmanship - 1 Meeting
byUri Lavi
 
Effective Code Review
byUri Lavi
 

Recently uploaded

PDF
Cassandra vs. ScyllaDB: Evolutionary Differences
byScyllaDB
 
PPTX
Session 5 - Specialized AI Associate Series: Build a Document Understanding ...
byDianaGray10
 
PDF
Expert Python App Development Company for Modern Enterprises
bySynapseIndia
 
PDF
Planetek Italia Corporate Profile brochure
byPlanetek Italia Srl
 
PDF
NDP Act GAID Simplified: From Confusion to Compliance
byMuiz Adeleke
 
PDF
Beyond Generative AI: Creating Demand for Compute in the 2030s
byReidar Wasenius
 
PPTX
"The Art of Web Scraping: Tree Algorithms and JS Magic", Dmytro Tarasenko
byFwdays
 
PDF
A 4-Terminal Approach to Validating Charge Conservation in MOSFET Compact Models
byEalwan Lee
 
PDF
Unlock This Brilliant App Freezur That Builds Brainrot Videos That Captivate ...
bySOFTTECHHUB
 
PDF
Application Monitoring and Observability: Elastic Stack Solution for Producti...
byPattabhi Amperayani
 
PDF
Unlocking Full-Stack Observability for AIOps: A Precisely Ironstream for Big ...
byPrecisely
 
PDF
Dragino商品カタログ 2025.7 LoRaWAN・NB-IoT・LTE-M(LTE Cat.M1)対応センサーリスト
byCRI Japan, Inc.
 
PPTX
Hybrid Active Directory Cyber Resiliency
byFrancesco Faenzi
 
PDF
UiPath DevConnect 2025: Introduction to Agentic Automation
byDianaGray10
 
PDF
Session 2 - Agentic Orchestration with UiPath Maestro
byDianaGray10
 
PDF
Combining AI with Red Teaming and Bug Bounty
byRamin Farajpour Cami
 
PDF
Getting the Best of TrueDEM – October News & Updates
bypanagenda
 
PDF
What's New? ThousandEyes Features and Highlights: October 2025
byThousandEyes
 
PDF
GPUS and How to Program Them by Manya Bansal
byScyllaDB
 
PPTX
Agentic AI Solutions and Services | Aeologic
byankitaeologic
 
Cassandra vs. ScyllaDB: Evolutionary Differences
byScyllaDB
 
Session 5 - Specialized AI Associate Series: Build a Document Understanding ...
byDianaGray10
 
Expert Python App Development Company for Modern Enterprises
bySynapseIndia
 
Planetek Italia Corporate Profile brochure
byPlanetek Italia Srl
 
NDP Act GAID Simplified: From Confusion to Compliance
byMuiz Adeleke
 
Beyond Generative AI: Creating Demand for Compute in the 2030s
byReidar Wasenius
 
"The Art of Web Scraping: Tree Algorithms and JS Magic", Dmytro Tarasenko
byFwdays
 
A 4-Terminal Approach to Validating Charge Conservation in MOSFET Compact Models
byEalwan Lee
 
Unlock This Brilliant App Freezur That Builds Brainrot Videos That Captivate ...
bySOFTTECHHUB
 
Application Monitoring and Observability: Elastic Stack Solution for Producti...
byPattabhi Amperayani
 
Unlocking Full-Stack Observability for AIOps: A Precisely Ironstream for Big ...
byPrecisely
 
Dragino商品カタログ 2025.7 LoRaWAN・NB-IoT・LTE-M(LTE Cat.M1)対応センサーリスト
byCRI Japan, Inc.
 
Hybrid Active Directory Cyber Resiliency
byFrancesco Faenzi
 
UiPath DevConnect 2025: Introduction to Agentic Automation
byDianaGray10
 
Session 2 - Agentic Orchestration with UiPath Maestro
byDianaGray10
 
Combining AI with Red Teaming and Bug Bounty
byRamin Farajpour Cami
 
Getting the Best of TrueDEM – October News & Updates
bypanagenda
 
What's New? ThousandEyes Features and Highlights: October 2025
byThousandEyes
 
GPUS and How to Program Them by Manya Bansal
byScyllaDB
 
Agentic AI Solutions and Services | Aeologic
byankitaeologic
 

API Best Practices

  • 1.
    API Best Practices @urilavi http://bit.ly/scisr
  • 2.
    Public API/ WebAPI HTTP / HTTPS XML/JSON
  • 3.
    Rule #0 http://www.flickr.com/photos/holeymoon/2131118247/
  • 4.
    Rule #1 -Funnel Try Build Adopt
  • 5.
    Simplicity? TDD public API Atleast 3 clients Different languages http://www.flickr.com/photos/giosp/3933753363/
  • 6.
    Cross Cutting Concerns Authentication/Authorization Versioning Sync/Async Re-entrance Pagination Caching Throttling
  • 7.
    RESTfulness * Use plural names (reads better with GET) * Avoid methods (it isn’t traversal and grows fast) Nouns (Method-less) 2 base URLS per resource /events /events/10
  • 8.
    RESTfulness HTTP Verbs oncollections/elements Create POST /events Fetch GET /events/12345 Update PUT /events/12345
  • 9.
    Method-based * Use verbs * Make the documentation clear that these are “non resource” operations Convert Translate
  • 10.
    Rule #2 -Relationships
  • 11.
    Rule #2 -Relationships Keep it simple - 3 levels
  • 12.
    Rule #2 -Relationships Keep it simple - 3 levels GET /lecturers/events/10
  • 13.
    Rule #3 -Complexity? http://www.flickr.com/photos/takomabibelot/4373062612/
  • 14.
    Rule #4 -Versioning * Maintain at least one version back GET api/v1/events/10
  • 15.
    Rule #4 -Versioning * Maintain at least one version back GET api/v1/events/10
  • 16.
    Rule #5 -Errors HTTP status codes {200, 400, 500} Verbose messages link to documentation
  • 17.
    Rule #6 -Sync / Async Result available - sync Result available in x time - async PicScout’s API
  • 18.
    Rule #7- Re-entrance http://www.flickr.com/photos/leovan/2152274834/ POST /funds/accounts/1000/ {‘value’: 100, ‘token’: ‘xbds213’}
  • 19.
    Rule #8 -Formatting JaaD = JSON as a Default
  • 20.
    Rule #9 -Automation? http://www.flickr.com/photos/r80o/39304743/ APIs are for humans

Editor's Notes