Copy
The week in API strategy, news, articles, and upcoming events.
James Higginbotham, Curator  A hand-curated weekly newsletter for API developers, sponsored by LaunchAny and CaseySoftware

Find this via Twitter? Subscribe now so you don't miss out
 
 

API Developer Weekly

May 13, 2021 - Issue #357
This week we have two articles on using the right HTTP response code. This has been a popular topic of late and I'm glad to see it. We also have a nice article on pagination patterns, tips for creating an API style guide, and an article on "What is an API-as-a-Product?". Finally, there are two articles that detail the not so good, very bad day for Peloton that included not just a recall but also a compromised API. 

Happy Reading!
-- James

 
Hot Topics
Is This the Right HTTP Response Code?
Intro TL;DR: This post is a collection of a few things I needed to clear up (to myself or others) about HTTP Status Codes while building a RESTful API. It might not make sense for an architectural style that does not rely that much on the HTTP specification. by Petar Kovačević [5arkovacevic.medium.com]

Hands off that resource, HTTP status code 401 vs 403 vs 404
When designing APIs, choosing HTTP status codes is not always that obvious and prone to errors, I hope this post series will help you to avoid common mistakes and choose an adapted one according to the context. by Arnaud Lauret [apihandyman.io]

Abstracting pagination across third-party APIs
Fragmented pagination styles is a challenge lots of developers have to cope with when integrating multiple APIs, as APIs use many different pagination strategies. In this post, we'll cover how we came up with a unified pagination API that supports all types of pagination. Resulting in a more consistent and better developer experience. [blog.apideck.com]

11 Tips for Creating an API Style Guide
An API style guide is one of the most effective tools for maintaining consistency across a suite of APIs. Many large enterprises already have some kind of development style guide, but even smaller platforms are beginning to implement this proactively, along with other API governance best practices - and so should you! [nordicapis.com]

Five Ways JSON Schema Can Help You Create Better APIs
In this post, we'll look at JSON's popularity and examine how the combination with JSON Schema makes it a great data format for most APIs. [stoplight.io]

A bug in Peloton's API may have exposed a whole lot of user data
An old version of Peloton's API, the software that allows the company's bikes and recalled treadmills to communicate with its servers, may have exposed private customer profiles, according to a report from TechCrunch . by Ian Carlos Campbell [theverge.com]

Tour de Peloton: Exposed user data
An unauthenticated user could view sensitive information for all users, and snoop on live class statistics and its attendees, despite having a private mode. [pentestpartners.com]

A cloud-native platform for push APIs
Today we are excited to announce Fanout Platform! Fanout Platform is infrastructure software for building HTTP streaming and WebSocket APIs. It is comprised of our open source project, Pushpin, along with special add-ons for scaling. Helm charts are available for installation on Kubernetes. [blog.fanout.io]

Book Release: How to Start Using the WordPress REST API
Cal Evans has been programming for 36 years and is one of the most active and dedicated members within the PHP community. For the past 17 years, Cal has worked with PHP and MySQL on Linux, macOS, and Windows.  [siteground.com]

GraphQL: What, Why and How with Dotnet Core
In the article, we will see how to implement GraphQL with asp.net core and entity framework. GraphQL is an API design architecture just like the REST. It's a query language for API that means it lets the client using the API to query the data as per their need and requirement. by Vikas Sharma [medium.com]

 
The Business of APIs
What Is an API-as-a-Product?
API-as-a-Product is a growing concept in the software development sphere. As such, it bears some further definition and clarification. So, just what is API-as-a-Product? What are some ways we can monetize this approach? And, where is this trend heading? An API-as-a-Product is a type of Software-as-a-Service that monetizes niche functionality, typically served over HTTP. [nordicapis.com]

Like using Tyk? Here's 5 reasons to sell it to your boss!
As developers and technical people we can be extremely opinionated when it comes to using languages, frameworks, infrastructure, and anything else that can make our job easier (or harder!). Convincing others on our team and within our organisation to use our tool of choice can be difficult! by Matt Tanner [tyk.io]

Why API Platforms Should Be Open
API development as a core business function is a critical element of the modern business landscape. As such, understanding how this development occurs, and most importantly, understanding the ingress function and process for new concepts into the system, can lead to massive business benefits. [nordicapis.com]

Algolia launches API-first Product Recommendations tool for retailers
Algolia, an API Platform for Dynamic Experiences has launched Algolia Recommend. An Artificial Intelligence (AI)-optimised API that accelerates the creation and implementation of product or content recommendations across digital touchpoints. Algolia Recommend surfaces in milliseconds the most relevant recommendations, offers, or suggestions for an online shopper. [enterprisetimes.co.uk]

(Un)Related
Fintech Startup Offers $500 for Payroll Passwords
How much is your payroll data worth? Probably a lot more than you think. One financial startup that's targeting the gig worker market is offering up to $500 to anyone willing to hand over the payroll account username and password given to them by their employer, plus a regular payment for each month afterwards in which those credentials still work. [krebsonsecurity.com]

The Mortifying Ordeal of Pairing All Day
I had to confront a lot of my fears about myself, sometimes every day. I had to learn to show someone else all the things I didn't know, my limitations as a human and a software engineer. From 2014 to 2020 I was part of an experiment: I paired all day, most days, for years. [simplermachines.com]

When not to use edge computing
Big companies such as General Electric, Siemens, and Robert Bosch are using edge computing technology to optimize production. Manufacturing is a large consumer of edge approaches and technology. Typically, these edge systems are powered by artificial intelligence (AI) systems that parse production data at the source of the data. by David Linthicum [infoworld.com]

Useful Resources
 
A list of upcoming Net API Events, maintained by Matthew Reinbold

API Security Events
A list of upcoming API security events from apisecurity.io

Tyk Whitepaper: Approaching your API Strategy
As well as writing for the James Higginbotham is an Executive API Consultant with experience in API strategy and software architecture. James guides enterprises through their digital transformation journey to deliver a great customer experience and provides training in API and microservice design. [content.tyk.io]


Book: A Practical Approach to API Design by Casey and Higginbotham
If you read the tech press, everyone knows they need an API but most aren't really sure what it is. They treat it as another checkbox like "Web 2.0" was a few years ago or a mobile app was most recently. In fact, there’s an entire “API-first” movement in development circles that most people don’t understand or even realize why. In this book, we'll start by discussing the what an API is, why you might need one, and follow up with the how to build one. [leanpub.com]

 
Want to share something?
As always, if you want to chat, share a link, or make a suggestion, feel free to drop us a quick note or tagging us on Twitter (@launchany and @caseysoftware) or by emailing us at: james@launchany.com
 
UPCOMING EVENTS
Follow on Twitter    Forward to Friend    Subscribe
Copyright © 2021 LaunchAny, All rights reserved.
unsubscribe from this list