Copy
The week in API strategy, news, articles, and upcoming events.
James Higginbotham, Curator  A hand-curated weekly newsletter for API developers, sponsored by LaunchAny and CaseySoftware

Find this via Twitter? Subscribe now so you don't miss out
 
 

API Developer Weekly

Aug 11, 2022 - Issue #418
This week's newsletter is a bit different, as we have quite a few articles related to GraphQL and gRPC. So, we are going "Beyond REST" to look at what those communities are doing. First, we look at how to protect GraphQL APIs, take a look at persisted queries in GraphQL, and then examine how gRPC works and a project that is bringing gRPC to the browser.

In our "Hot Topics" section, we have an upcoming API security webinar, a look at OpenAPI overlays and why they may not be the right answer, a tool to update JSON schema specifications to the latest version, and improving your API development workflows with OpenAPI and Pact.io.

Finally, check out the article on Diagramming to Communicate, an essential skill for the technical and non-technical alike. 

Happy Reading!
-- James

 
Beyond REST
Discovering and Protecting GraphQL APIs
What's the difference between GraphQL and REST API endpoints? GraphQL is a structured query language; it allows the user to express the types of data they want to grab, and choose what format it gets returned in. by by Austin Jones on August 8, 2022 [securityboulevard.com]

Walkthrough of Using GraphQL Shield
GraphQL Shield is a library that provides a simple way to add authorization to your GraphQL server. It uses the Apollo server and the graphql-shield middleware to provide a declarative way to define per-field or per-type access control rules for your GraphQL schema. by Vyom Srivastava [nordicapis.com]

No, GraphQL Persisted Queries are not "Reinventing a REST API"
Let's start with a very quick primer on GraphQL persisted queries. A typical interaction between a GraphQL client and server looks a bit like this. While this works perfectly well, there are certain downsides with query-based APIs: The request payload can grow large and is sent every single request, even though it rarely changes. by Marc-André Giroux [xuorig.medium.com]

GraphQL Performance Testing With Apache JMeter
GraphQL is a query language for APIs and a runtime for fulfilling those queries with your existing data. GraphQL provides a complete and understandable description of the data in your API, gives clients the power to ask for exactly what they need and nothing more, makes it easier to evolve APIs over time, and enables powerful developer tools. by Mohamed Tarek [motareksamir.medium.com]

gRPC vs REST APIs - Key Differences
Application Programming Interfaces enable applications to access data or features of a service, operating system, or other applications. gRPC and REST are two common API specifications used to define the design of these interfaces. This article compares gRPC vs REST as the two popular API frameworks, their benefits, limitations, and potential use-cases. by Sudip Sengupta [blog.getambassador.io]

Connect-Web: It's time for Protobuf and gRPC to be your first choice in the browser
Create, maintain and consume Protocol Buffers APIs with our modern Protocol Buffers ecosystem [buf.build]
 
Hot Topics
API Security & Strategies Webinar
Everywhere we turn there's a new trend taking front and center in the API landscape. APIs are officially on fire and the API economy is thriving, creating many new opportunities for businesses large and small. But with these lucrative opportunities comes the very real risk of a number of cybersecurity threats. [info.softwareag.com]

OpenAPI overlays
The OpenAPI Specification evolves through community proposals reviewed by the technical steering committee. This blog post is about the overlays proposal. The idea from early issues dates back to 2016, and the current proposal is from 2.5 years ago. Overlays haven't been accepted into the specification yet (and I don't think they should be accepted). [redocly.com]

AlterSchema
Convert between JSON Schema specification versions [alterschema.sourcemeta.com]

Protecting your API development workflows with Swagger/OpenAPI & Pact.io
Reading Time:- Get a cup of tea and pull up a beanbag, I'm going to say 15 minutes BackgroundAPI's (Application Programming Interfaces) have been around since 2000. I remember utilising my first one back at Uni, based in Java to modify a Lego Mindstorms NXT robotics kit to run an Artificial-Neural Network.I dropped into the... by View all posts by YOU54F [blog.you54f.com]
 
(Un)Related
Diagramming to Communicate
I recently discussed my diagramming style with an author of a book in my signature series. The question arose as to whether I was using UML or some other standard or style. I hadn't given that much formal reflection, but when the question was posed, I did gather some thoughts around my style. by Vaughn Vernon [kalele.io]

Walkthrough of Using GraphQL Shield
GraphQL Shield is a library that provides a simple way to add authorization to your GraphQL server. It uses the Apollo server and the graphql-shield middleware to provide a declarative way to define per-field or per-type access control rules for your GraphQL schema. by Vyom Srivastava [nordicapis.com]

Reporting strategy in a microservice architechture
With the microservices architecture style, services and the corresponding data are contained within a single bounded context, meaning that the data is typically migrated to separate databases (or schemas). While this works well for services, it plays havoc with respect to reporting within a microservices architecture. by Maison Armani [medium.com]

Creating Workflows that pause and wait for events
In Workflows, it's easy to chain various services together into an automated workflow. For some use cases, you might need to pause workflow execution and wait for some input. This input could be a human approval or an external service calling back with data needed to complete the workflow. by Mete Atamel [medium.com]
 
Want to share something?
As always, if you want to chat, share a link, or make a suggestion, feel free to drop us a quick note or tagging us on Twitter (@launchany and @caseysoftware) or by emailing us at: james@launchany.com
 
UPCOMING EVENTS
Follow on Twitter    Forward to Friend    Subscribe
Copyright © 2022 LaunchAny, All rights reserved.
unsubscribe from this list