Copy
The week in API strategy, news, articles, and upcoming events.
James Higginbotham, Curator  A hand-curated weekly newsletter for API developers, sponsored by LaunchAny and CaseySoftware

Find this via Twitter? Subscribe now so you don't miss out
 
 

API Developer Weekly

Jan 16, 2020 - Issue #291
This week's selection of articles focuses heavily on API security, from the DevOps perspective and beyond. We also take a deep-dive into using Hypermedia and Java Spring, as well as a look at HTTP/3. Happy reading! -- James
 
Hot Topics
API Security in DevOps: Are We Too Comfortable?
Postman's annual survey of developers found that developers are generally comfortable with the level of API security that their organization has implemented. [mulesoft.smh.re]

Starbucks' API key found in public GitHub repository - reports
Developers at Starbucks left an API key in the public GitHub repository that could have given any attacker the access to the coffeehouse chain's internal systems who would have easily manipulated the list of authorised users. by By Developer [developer-tech.com]

Cisco Announces Critical API Authentication Vulnerabilities
Eric Carter Eric the founder of Dartsand and Corporate Counsel for a specialty technology distributor. He is a frequent contributor to technology media outlets and also serves as primary legal counsel for multiple startups in the Real Estate, Virtual Assistant, and Software Development Industries. Follow me on Google+ [programmableweb.com]

API Taxonomy Explained: The Many Types of APIs
While no two APIs are exactly the same, they do tend to share a lot of characteristics, from design features to data formats. Looking closely at these traits allows us to identify distinct types of APIs, which we can use to set clear expectations, discuss what does (and doesn't) work, and stick to relevant best practices. by Thomas Bush [nordicapis.com]

Spring HATEOAS: Hypermedia APIs with Spring
InfoQ Homepage Presentations Spring HATEOAS: Hypermedia APIs with Spring Oliver Drotbohm, Greg Turnquist discuss how to build flexible web services using hypermedia with Spring HATEOAS 1.0. Oliver Drotbohm is a Senior Principal Software Engineer, Pivotal. Greg Turnquist is a Principal Software Engineer, Pivotal. Pivotal Training offers a series of hands-on, technical courses prior to SpringOne Platform. [infoq.com]

Developing and Testing an Asynchronous API with FastAPI and Pytest
Posted by Michael Herman | Last updated on January 10th, 2020 | Docker API Posted by Michael Herman Last updated on January 10th, 2020 This tutorial looks at how to develop and test an asynchronous API with FastAPI, Postgres, Pytest, and Docker using Test-Driven Development (TDD). [testdriven.io]

Interview with Daniel Stenberg HTTP/3 for everyone. The next generation HTTP is coming
Daniel Stenberg will give a talk about HTTP/3 for everyone. The next generation HTTP is coming at FOSDEM 2020. Q: Could you briefly introduce yourself? Hello! I'm Daniel Stenberg, a Swedish open source developer perhaps primarily known as the founder and lead developer of curl. I work for wolfSSL. [fosdem.org]

The Business of APIs
 
APIs are the next big SaaS wave
While the software revolution started out slowly, over the past few years it's exploded and the fastest-growing segment to-date has been the shift towards software as a service or SaaS. SaaS has dramatically lowered the intrinsic total cost of ownership for adopting software, solved scaling challenges and taken away the burden of issues with local hardware. [techcrunch.com]

Visa to acquire fintech company Plaid in $5.3 billion deal - CNBC
Payments giant Visa is buying Silicon Valley start-up Plaid in a $5.3 billion deal, the companies announced Monday. by CNBC [apple.news]

Walmart Introduces API-Driven Advertising Platform
Walmart has announced the Walmart Advertising Partners program, which is accompanied by a new advertising API and four initial advertising partners. The announcement of an API-driven platform provides advertisers' more direct access to their campaigns. [programmableweb.com]

Conway's Law: What Does It Mean for Your API Strategy?
Back in October, I attended the 2019 Nordic APIs Platform Summit in Stockholm, Sweden. Among a whole host of interesting topics, one idea that kept creeping up was that of Conway's Law, like in Zdenek Nemec's talk on choosing an API style. The straightforward theory says that we build systems according to our internal communication structures. by Thomas Bush [nordicapis.com]
 
(Un)Related Topics
How an Alternative Data API Can Be Used To Improve Predictive Analysis
From the DC Area API Meetup, Accrue Ltd. CEO Benoit Brookens III discusses the concept of alternative data and how it can be used to improve predictive analysis. In his presentation, Brookens looks back at typhoons rated as 8 or higher and correlates their timing to movement in financial markets. [programmableweb.com]

All-in-one Kubernetes Host on DigitalOcean
So I'm going to kick off this self-imposed #100daysofcode tournament with a public spectacle! Now, if you know anything about me, you'd know that I love Kubernetes - OpenShift is my favorite flavor, but I also like vanilla and Kubernetes-as-a-Service. Thing with that is that you kinda get some lock-in, and some vendors are a little behind on versions. by Ken Moini [dev.to]

Useful Resources
Upcoming Web API Events
A list of upcoming Web API Events, maintained by Matthew Reinbold

API Security Events
A list of upcoming API security events from apisecurity.io

Tyk Whitepaper: Approaching your API Strategy
As well as writing for the James Higginbotham is an Executive API Consultant with experience in API strategy and software architecture. James guides enterprises through their digital transformation journey to deliver a great customer experience and provides training in API and microservice design. [content.tyk.io]


Book: A Practical Approach to API Design by Casey and Higginbotham
If you read the tech press, everyone knows they need an API but most aren't really sure what it is. They treat it as another checkbox like "Web 2.0" was a few years ago or a mobile app was most recently. In fact, there’s an entire “API-first” movement in development circles that most people don’t understand or even realize why. In this book, we'll start by discussing the what an API is, why you might need one, and follow up with the how to build one. [leanpub.com]

 
Want to share something?
As always, if you want to chat, share a link, or make a suggestion, feel free to drop us a quick note or tagging us on Twitter (@launchany and @caseysoftware) or by emailing us at: james@launchany.com
 
Follow on Twitter    Forward to Friend    Subscribe
Copyright © 2020 LaunchAny, All rights reserved.
unsubscribe from this list