|This week's articles are quite diverse, from AsyncAPI vs. OpenAPI, to JWT permission updates, to using enums in APIs. We also have some GraphQL-related items, an article on avoiding vendor lock-in, and behind-the-scenes on how Waffle House prepares for disasters. Enjoy! -- James
AsyncAPI vs OpenAPI: What's The Difference?
The world of APIs is often one of competing standards, interests, and solutions. While we tend to talk about the API space as a cohesive community, the reality is that APIs on the internet encompasses something more universal. In the API documentation space, this ultimately comes down to a question of consumption. by Kristopher Sandoval [nordicapis.com]
How do you handle role/permissions updates with JWT?
Usually, JWT implementations in a REST Api backend save the user roles and/or permissions inside the JWT token claims. In this cases, clients make use of this claims to restrict user's interaction with some of the app features. There are some user, or server, actions that update the user's authorization roles/permissions. by Sebastian Duque Gutierrez [dev.to]
Enums & APIs
Enums are a double-edged sword. They are extremely useful to create a set of possible values, but they can be a versioning problem if you ever add a value to that enum. In a perfect world, an enum represents a closed set of values, so versioning is never a problem because you never add a value to an enum. by Timothy McGrath [dev.to]
APIs are about Policy
What is supposedly a stateless, idempotent, cacheable, proxiable and uniform operation turns out to be a sparse GET of a database row, differentiated by both the subject and the specific objects being queried, which opaquely determines the specific variant we get back. by Steven Wittens [acko.net]
Guide to GraphQL: Understanding, Building and Using GraphQL APIs
One of my favorite sayings when it comes to API technologies is that the more things change, the more they stay the same. Networkable API technology has arguably been around since the early 1980s when the first remote procedure call (RPC) was implemented across a network. [programmableweb.com]
Announcing Arboric GraphQL API Gateway
In case you haven't heard, GraphQL is the new Web service API standard that's rapidly gaining adoption and popularity. Developers like it because it makes it easier to prototype, develop, consume and maintain APIs whether for React SPA/PWA apps or Flutter mobile apps. by Alistair A. Israel [medium.com]
Multiple Ways of API Integration in your JAMStack
by Raymond Camden on | This is something I've been kicking around in my head now for a few weeks and I'm finally taking the time to write it down. I've actually covered this before, but not in an explicit manner and I wanted to organize some thoughts I've been having on the matter lately. [raymondcamden.com]
The Business of APIs
The Evolving Enterprise API Platform
This Executive Update examines some current trends in the API space, including API platforms, as well as the influence of microservices, streaming, and serverless on those API platforms. We also cover how enterprises are expanding their API program to include the broader concerns of enterprise architecture. [cutter.com]
Product vs. Feature Teams | Silicon Valley Product Group
This article is certain to upset many people. I'm sorry for that, but the degree of ongoing noise and confusion surrounding the role of product at tech companies is only getting worse. Moreover, I see the issues and problematic behaviors getting institutionalized in conference talks, training programs and so-called certification programs for product people. by Marty Cagan [svpg.com]
What Is an API & Why Does It Matter for Social Media?
Your Internet experience runs on APIs. The acronym has helped you compare the best prices for flights, allowed you to embed a map into your store's website and seamlessly processed your credit card payments. But what is an API and why does it matter to you? by Jenn Chen [sproutsocial.com]
Really Simple CQRS
Whenever I teach my IDDD Workshop and reach the first section that discusses CQRS (Command-Query Responsibility Segregation) I ask if anyone is already familiar with it. I have been doing this for more than six years of teaching this curriculum, and as you can probably imagine there are now far more students who raise their hand to indicate familiarity with CQRS than there were six years ago. [kalele.io]
Don't get locked up into avoiding lock-in
Gregor Hohpe Gregor is an architect who likes to tinker with IT systems and organizations. Formerly a technical director with Google Cloud, he's recently been appointed as Singapore Smart Nation fellow. He enjoys making complex topics approachable without dumbing them down and never hesitates to spice things up with a pointed metaphor or anecdote. [martinfowler.com]
Cloud Run Using Pubsub Triggers
A few months back Google announced something really cool, a little known project called Cloud Run - and from the initial announcement, Cloud Run caused some serious noise. Cloud Run comes out at a very interesting time. by Jonathan Campos [medium.com]
'Waffle House Index' is a real thing during disasters. How does the restaurant chain do it?
CLOSE Waffle House Index is an unofficial, but consistently effective, metric Jump Teams are deployed to get restaurants open quickly PENSACOLA, Fla. - As preparations got underway late last week throughout the state of Florida in advance of Hurricane Dorian, a small but dedicated team of employees at the Waffle House headquarters just outside Atlanta quietly began gearing up for preparations of their own. by Annie Blanks [usatoday.com]
Upcoming Web API Events
A list of upcoming Web API Events, maintained by Matthew Reinbold
Tyk Whitepaper: Approaching your API Strategy
As well as writing for the James Higginbotham is an Executive API Consultant with experience in API strategy and software architecture. James guides enterprises through their digital transformation journey to deliver a great customer experience and provides training in API and microservice design. [content.tyk.io]
Book: A Practical Approach to API Design by Casey and Higginbotham
If you read the tech press, everyone knows they need an API but most aren't really sure what it is. They treat it as another checkbox like "Web 2.0" was a few years ago or a mobile app was most recently. In fact, there’s an entire “API-first” movement in development circles that most people don’t understand or even realize why. In this book, we'll start by discussing the what an API is, why you might need one, and follow up with the how to build one. [leanpub.com]
Want to share something?