rest apis with nodejs
play

REST APIs with NodeJS Winter Semester 2016/17 Tobias Seitz - PowerPoint PPT Presentation

Nov 22, 2022 •437 likes •849 views

Practical Course: Web Development REST APIs with NodeJS Winter Semester 2016/17 Tobias Seitz Ludwig-Maximilians-Universitt Mnchen Practical Course Web Development WS 16/17 - 04 - 1 Todays Agenda APIs What is it? REST

  1. Practical Course: Web Development REST APIs with NodeJS Winter Semester 2016/17 Tobias Seitz Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 1

  2. Today’s Agenda • APIs – What is it? – REST – Access Control • APIs with NodeJS – Express – StrongLoop / Loopback – Adding a datasource • Hands-On Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 2

  3. What is an API • “Application Programming Interface” • Interface: Allow other services to use program logic • Goal: Allow pieces of software to talk to each other • Characteristics of a Great API: – Make it easy for others to use your software. – “A Good API needs to appeal to laziness” Kevin Lackner – Intuitive (make it trivial) – Documented (if something is not trivial) – Opinionated (do it the way the API encourages you) Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 3

  4. REST API • Representational State Transfer • Provide clients access to resources • Your app manages the states of the resources, but lets other software access the state through the API • Reasons for using REST APIs [5]: – Scalability – Generality by using HTTP – Independence from other parts of the app – Reduced Latency with caching – Security with HTTP headers – Encapsulation - APIs do not need to expose everything • Most common format these days: JSON Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 4

  5. A Typical API URL Data Model Dedicated Path https://www.mywebapp.com/api/v1/things/thing_id URI API Version Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 5

  6. REST API Quick Glance • Go and look for a REST API • Examples – Spotify – Google Maps – Flickr – Facebook Graph API • Questions: – What do you think makes it a good / bad API? – What kind of access control does it have? – What kind of restrictions are there? Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 6

  7. API Paradigm: CRUD • Create ≈ INSERT INTO myData VALUES (....) • Read ≈ SELECT * FROM myData WHERE ... • Update ≈ UPDATE myData WHERE ... • Delete ≈ DELETE FROM myData WHERE ... Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 7

  8. REST APIS WITH NODEJS Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 8

  9. You should know • One of the most popular NodeJS frameworks. • Characteristics: – minimalistic – easy to use API – many utility methods and middleware functionalities – thin layer on top of NodeJS – Supports multiple template engines (Pug/Jade, Handlebars, EJS) • Find the documentation here: http://expressjs.com/ • Package: npm install --save express • Express generator: npm install -g express Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 9

  10. Simple Express App basics/app.js var express = require( 'express' ); var app = express (); app .get( '/' , function (req, res) { res.send( 'Hello World!' ); }); var server = app .listen(3000, function () { var host = server .address().address; var port = server .address(). port ; console .log( 'app listening at http://%s:%s' , host, port) }); Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 10

  11. Express Generator Goal: automatically generate the basic • structure of an express app that includes views, routes, common dependencies Requirements: Install the generator globally: • $ npm install -g express-generator $ express eg-app Documentation: • http://expressjs.com/starter/generator.html You still have to install the dependencies • manually: $ cd eg-app && npm install Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 11

  12. Full Stack Solutions mean.io Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 12

  13. CRUD with Express Example API that manages products. • Create a new product: • POST /products Retrieve all products: • GET /products Retrieve a particular product: • GET /product/:id Replace a product: • PUT /product/:id Update a product • PATCH /product/:id Delete a product • DELETE /product/:id Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 13

  14. Testing POST / PUT / DELETE • Recommended Tool: Postman https://www.getpostman.com/ • Don’t forget the headers, e.g. Content-type: application/json • Make sure your JSON only uses double quotes Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 14

  15. Dummy database: JavaScript Object. var products = { ' id_A ' : { name : ' Product A ' , price : 30 }, ' id_B ' : { name : ' Product B ' , price : 50 } }; Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 15

  16. GET /products router.get( '/' , function (req, res) { var productArray = Object.keys(products).map( function (key) { var entry = products[key]; entry. id = key; return entry; }); var response = { code : 200, products : productArray }; res.json(response); }); Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 16

  17. Response with all products { Opinionated : " code " : 200, Products is an Array, instead of an Object literal. " products " : [ { " name " : " Product A " , " price " : 30, " id " : " id_A " }, { " name " : " Product B " , " price " : 50, " id " : " id_B " ] } Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 17

  18. POST /products router.post( '/' , function (req, res) { Intuitive : var entry, id, response; Follow API standards if (req. body . name && req. body . price ) { id = uuid .v1(); ≈ POST creates objects entry = {}; entry[id] = { id : id, name : req. body . name , price : req. body . price }; products[id] = entry[id]; response = { code : 201, message : 'created product' , products : [entry] }; } else { response = { code : 1000, message : 'missing parameter. required: name, price.' } } res.json(response); }); Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 18

  19. Response: Product was created Intuitive : { Respond with the entire " code " : 201, created document, so " message " : " created product " , clients can update their views. " products " : [ { "182348e0-abfd-11e6-92a7-4fdc0c2e84f9" : { " id " : "182348e0-abfd-11e6-92a7-4fdc0c2e84f9" , " name " : " Product C" , " price " : 100 } } ] } Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 19

  20. What’s up with this? • Look at the file /routes/products.js • Can you think of potential problems for your API? • How would you solve them? Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 20

  21. API Frameworks • Goal: Simpler, faster creation of APIs and CRUD paradigm for resources • Often with an abstraction layer • Popular examples: – loopback.io - https://loopback.io/ – hapi.js - http://hapijs.com/ – Restify - http://restify.com/ • Comparison: https://strongloop.com/strongblog/compare- express-restify-hapi-loopback/ Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 21

  22. LoopBack • Now part of StrongLoop Arc (IBM) • Installation: npm install -g strongloop • Getting started wizard: slc loopback – api-server: already contains authentication methods – empty-server: most basic setup – hello-world: small working sample – notes-app: full working example for a note-taking api Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 22

  23. Step 1: Set up the project spengler:04-apis Tobi$ slc loopback _-----_ | | ╭──────────────────────────╮ |--(o)--| │ Let's create a LoopBack │ `---------´ │ application! │ ( _´U`_ ) ╰──────────────────────────╯ /___A___\ / | ~ | __'.___.'__ ´ ` |° ´ Y ` ? What's the name of your application? loopback-api ? Enter name of the directory to contain the project: loopback-api create loopback-api/ info change the working directory to loopback-api ? Which version of LoopBack would you like to use? 2.x (stable) ? What kind of application do you have in mind? hello-world Generating .yo-rc.json … Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 23

  24. Step 2: Create a model spengler:loopback-api Tobi$ slc loopback:model ? Enter the model name: product ? Select the data-source to attach product to: db (memory) ? Select model's base class PersistedModel ? Expose product via the REST API? Yes ? Custom plural form (used to build REST URL): products ? Common model or server only? common Let's add some product properties now. Ludwig-Maximilians-Universität München Practical Course Web Development WS 16/17 - 04 - 24

Recommend

Preparing a REST API Rules of REST APIs, API patterns, Typical CRUD operations Rules for a REST

Preparing a REST API Rules of REST APIs, API patterns, Typical CRUD operations Rules for a REST

Preparing a REST API Rules of REST APIs, API patterns, Typical CRUD operations Rules for a REST API Recall : REST Representational State Transfer o REST is statelessit has no idea of any current user state or history o API

535 views • 17 slides
REST Web-based APIs REST Representational State Transfer Style of web software

REST Web-based APIs REST Representational State Transfer Style of web software

REST Web-based APIs REST Representational State Transfer Style of web software architecture that simplifies application Not a standard, but a design pattern REST Take all resources for web application (data, files, functions)

722 views • 22 slides
REST Services in Action: Using RESTful APIs with HPE NonStop Applications Todd Barth - NuWave

REST Services in Action: Using RESTful APIs with HPE NonStop Applications Todd Barth - NuWave

REST Services in Action: Using RESTful APIs with HPE NonStop Applications Todd Barth - NuWave Andrew Price - NuWave Agenda REST API Overview Market Adoption APIs in Financial Services NuWave REST-based Middleware Overview

465 views • 30 slides
DDD & REST Domain-Driven APIs for the web Oliver Gierke / olivergierke 2 Background

DDD & REST Domain-Driven APIs for the web Oliver Gierke / olivergierke 2 Background

DDD & REST Domain-Driven APIs for the web Oliver Gierke / olivergierke 2 Background 3 Spring Data REST Spring Data Spring HATEOAS Repositories & Hypermedia Aggregates for Spring MVC 4 REST CRUD via HTTP 5

1.17k views • 55 slides
Hacking NodeJS applications for fun and profit Testing NodeJS Security by @jmortegac Agenda

Hacking NodeJS applications for fun and profit Testing NodeJS Security by @jmortegac Agenda

Hacking NodeJS applications for fun and profit Testing NodeJS Security by @jmortegac Agenda Introduction nodejS security Npm security packages Node Goat project Tools Node JS JavaScript in the backend Built on

762 views • 43 slides
Writing REST APIs with OpenAPI and Swagger Ada Stphane Carrez FOSDEM 2018 OpenAPI and Swagger

Writing REST APIs with OpenAPI and Swagger Ada Stphane Carrez FOSDEM 2018 OpenAPI and Swagger

Writing REST APIs with OpenAPI and Swagger Ada Stphane Carrez FOSDEM 2018 OpenAPI and Swagger Ada Introduction to OpenAPI and Swagger Writing a REST Ada client Writing a REST Ada server Handling security with OAuth2 Demo

970 views • 37 slides
Lab 0: Dev Env Setup Rizky Wellyanto (wellyan2) NodeJS + NPM Download here:

Lab 0: Dev Env Setup Rizky Wellyanto (wellyan2) NodeJS + NPM Download here:

Lab 0: Dev Env Setup Rizky Wellyanto (wellyan2) NodeJS + NPM Download here: https://nodejs.org/en/download/ NPM tutorial: https://docs.npmjs.com/about-npm/ NodeJS Documentation: https://nodejs.org/docs/latest-v9.x/api/ Terminal Example setup

120 views • 8 slides
REST: From GET to HATEOAS or how to create RESTful APIs 2 Who

REST: From GET to HATEOAS or how to create RESTful APIs 2 Who

JPoint REST: From GET to HATEOAS or how to create RESTful APIs 2 Who am I? ~ just some java guy ~ Jos Dirksen Interests Books Architect @ JPoint Java &

942 views • 53 slides
Beautiful REST + JSON APIs Les Hazlewood, @lhazlewood Founder & CTO, Stormpath About

Beautiful REST + JSON APIs Les Hazlewood, @lhazlewood Founder & CTO, Stormpath About

Beautiful REST + JSON APIs Les Hazlewood, @lhazlewood Founder & CTO, Stormpath About Stormpath User Management API for Developers Registration and Login User Profiles Role Based Access Control (RBAC) Permissions

1.26k views • 86 slides
Outline What is ReST ? Constraints in ReST REST Architecture Components Features of

Outline What is ReST ? Constraints in ReST REST Architecture Components Features of

Outline What is ReST ? Constraints in ReST REST Architecture Components Features of ReST applications Example of requests in REST & SOAP Complex REST request REST Server response Real REST examples REST Design

603 views • 34 slides
RESTful APIs REST Representational State Transfer architectural style, set of design constraints

RESTful APIs REST Representational State Transfer architectural style, set of design constraints

CS 498RK SPRING 2019 RESTful APIs REST Representational State Transfer architectural style, set of design constraints coined in Roy T. Fieldings dissertation (2000) the Web is the largest implementation three important technologies: HTTP,

714 views • 55 slides
RESTful APIs REST Representational State Transfer architectural style, set of design constraints

RESTful APIs REST Representational State Transfer architectural style, set of design constraints

CS 498RK FALL 2016 RESTful APIs REST Representational State Transfer architectural style, set of design constraints coined in Roy T. Fieldings dissertation (2000) the Web is the largest implementation three important technologies: HTTP,

585 views • 54 slides
RESTful APIs REST Representational State Transfer Architectural style, set of design constraints

RESTful APIs REST Representational State Transfer Architectural style, set of design constraints

CS 498RK SPRING 2020 RESTful APIs REST Representational State Transfer Architectural style, set of design constraints Coined in Roy T. Fieldings dissertation (2000) The Web is the largest implementation Three important technologies: HTTP,

809 views • 55 slides
T8: NodeJS CPSC 513 Dr. P. Federl University of Calgary Arshia Hosseini T01/T02 What is

T8: NodeJS CPSC 513 Dr. P. Federl University of Calgary Arshia Hosseini T01/T02 What is

T8: NodeJS CPSC 513 Dr. P. Federl University of Calgary Arshia Hosseini T01/T02 What is NodeJS Open source JavaScript framework Event-driven Cross-platform Server-side 2 Installing and Running Node

690 views • 15 slides
Segurana em APIs REST Heitor Vital reas de Atuao o Cloud Computing

Segurana em APIs REST Heitor Vital reas de Atuao o Cloud Computing

Segurana em APIs REST Heitor Vital reas de Atuao o Cloud Computing twitter.com/heitorvital o Segurana Informao o Jogos slideshare.net/HeitorVital o Dispositivos Mveis o labs.siteblindado.com

412 views • 22 slides
BUILDING BEAUTIFUL REST APIs with Flask, Swagger UI and Flask-RESTPlus Micha Karzy ski

BUILDING BEAUTIFUL REST APIs with Flask, Swagger UI and Flask-RESTPlus Micha Karzy ski

BUILDING BEAUTIFUL REST APIs with Flask, Swagger UI and Flask-RESTPlus Micha Karzy ski EuroPython 2016 ABOUT ME My name is Micha Karzy ski (thats Polish for Mike) I blog at http://michal.karzynski.pl Short URL:

495 views • 34 slides
WWW HTTP, Ajax, APIs, REST HTTP Hypertext Transfer Protocol Request Web Client HTTP Server

WWW HTTP, Ajax, APIs, REST HTTP Hypertext Transfer Protocol Request Web Client HTTP Server

WWW HTTP, Ajax, APIs, REST HTTP Hypertext Transfer Protocol Request Web Client HTTP Server WSGI Response Python Web Application Connectionless Media Independent Stateless WSGI : Web Server Gateway Interface 2 HTTP Methods

395 views • 28 slides
MOVING AWAY FROM NODEJS TO A PURE PYTHON SOLUTION FOR ASSETS Alessandro Molina @__amol__

MOVING AWAY FROM NODEJS TO A PURE PYTHON SOLUTION FOR ASSETS Alessandro Molina @__amol__

MOVING AWAY FROM NODEJS TO A PURE PYTHON SOLUTION FOR ASSETS Alessandro Molina @__amol__ amol@turbogears.org Why? NodeJS has a rich toolkit, but using it has some serious drawbacks. People really dont know there are very good or

410 views • 24 slides
Design & Test First Workflow For REST APIs How can REST API specification projects help us?

Design & Test First Workflow For REST APIs How can REST API specification projects help us?

Design & Test First Workflow For REST APIs How can REST API specification projects help us? @mrksdck hand copy workflow design code test document @mrksdck hand copy workflow design code test document :(

633 views • 34 slides
GraphQL in Python and Django Patrick Arminio @patrick91 Who am I Patrick Arminio Backend

GraphQL in Python and Django Patrick Arminio @patrick91 Who am I Patrick Arminio Backend

GraphQL in Python and Django Patrick Arminio @patrick91 Who am I Patrick Arminio Backend Engineer @ Verve Chairperson at Python Italia @patrick91 online GraphQL? WEB 1.0 WEB 2.0 REST APIs While REST APIs are good, they

1.55k views • 131 slides
REST API What it means to be RESTful What is REST REST stands for REpresentational State

REST API What it means to be RESTful What is REST REST stands for REpresentational State

REST API What it means to be RESTful What is REST REST stands for REpresentational State Transfer It is neither a standard nor a protocol REST is not HTTP , although because of HTTPs prevalence and popularity the two tend to go

708 views • 11 slides
Introduction to REST Web REST Web Services Characteristics Services Principle of REST Web

Introduction to REST Web REST Web Services Characteristics Services Principle of REST Web

Introduction to REST Web Services 2/14/2009 Agenda What is REST? Introduction to REST Web REST Web Services Characteristics Services Principle of REST Web Services Design Semantic of HTTP/1.1 Operations Asst. Prof. Dr. Kanda

522 views • 12 slides
Announcements Next week: Organizational Cloud discussion pros/cons - Teams to revisit individual

Announcements Next week: Organizational Cloud discussion pros/cons - Teams to revisit individual

Announcements Next week: Organizational Cloud discussion pros/cons - Teams to revisit individual findings and report Upcoming R2 APIs & Web Services SWEN-343 Today Need for APIs Webservices Types SOAP & REST SOA Microservices

378 views • 33 slides
Rest for the Restless (or Finding Rest in a Family Tree) Matthew 1:1-17 3 Promises of Rest for

Rest for the Restless (or Finding Rest in a Family Tree) Matthew 1:1-17 3 Promises of Rest for

Overview [not in slides] Rest for the Restless (or Finding Rest in a Family Tree) Matthew 1:1-17 3 Promises of Rest for the Restless 1. God promises rest in his righteousness 2. God promises rest in his presence 3. God promises rest in his

92 views • 5 slides

More recommend