An overview defining GraphQL and outlining five common vulnerabilities found in GraphQL developing: inconsistent authorization checks, vulnerable REST proxies, flimsy validation of custom skalars, inappropriate rate-limiting, and failure to shield public information.
- Articles (100)
- APIs (60)
- Mashups (2)
- SDKs (17)
- Libraries (1)
- Source Code (17)
- Followers (25)
- Developers (2)
REST Api Articles
The following is a list of ProgrammableWeb articles that matched your search term. On an nearly 24/7 basis, ProgrammableWeb publishes new articles ranging from news to opinion to tutorials for both developers and API providers. All of our articles are categorized in such a way that you can find your way to related articles, APIs, SDKs, Libraries, Frameworks, Tutorials and Sample Source Code. If you have an interest in contributing any of the aforementioned content to ProgrammableWeb, be sure to read our guidelines for such contributions.
Amazon originally announced the developer preview of HTTP APIs for Amazon API Gateway in December of 2019, the company has recently transitioned this offering into general availability. The new HTTP APIs is intended to provide a simpler way to create low cost, low latency APIs.
Recently at the second annual Kong Summit 2019 conference, Kong announced updates to several services and introduced a new product, Kong Studio. The new product is designed to help developers build and maintain APIs for REST and GraphQL.
API-like technologies that move data between dissimilar systems have been around for much longer than the phrase "Web API" has been fashionable. As it turns out, a walk down memory lane is all it takes to understand what GraphQL is, how it evolved from its predecessors, and why it matters.
Upon seeing the headline to this article, API experts will likely scratch their heads wondering why the journal of the API economy (ProgrammableWeb) would indirectly suggest that REST and Swagger are comparable to the point that an article about their differences is warranted.
Facebook’s baby GraphQL is the hot new thing in APIs promising to topple REST from its perch. But how does a newbie go about using it and what for? And why might you not want to use it? David Iffland over at InfoQ sat down with Steve Faulkner to talk about how they adopted GraphQL and why.
In order to develop a REST API in PHP quickly and easily it might be a good idea to use a lightweight PHP framework. Developing your own from scratch with plain PHP, apart from being a pain and taking too much time, is likely to require a lot of testing and deviate from REST standards.
R is a great language for data analytics, but it's uncommon to use it for serious development which means that popular APIs don't have SDKs for working with it. This is a how-to guide for connecting to an API to receive stock prices as a data frame when the API doesn't have a specific package for R.
REST and JSON are the bread and butter of developers creating web APIs. Once apps reach a certain size, though, the lack of type safety and other issues start to grate. Michal Witkowski and Marcus Longmuir over at Improbable explain how they learned to stop loving REST and move to gRPC.
This is the second installment in a three-part MEAN Stack Tutorial series by software engineer Adrian Mejia. It explains some of the underlying concepts, such as REST APIs and the MEAN stack, and shows followers how to install everything you need to create a simple REST API on Node.js and MongoDB.
New advances are constantly made to the fundamental architecture of networkable APIs drawing into question the longevity of the prevailing approach. Like how RPC-style APIs gave way to REST-styled APIs. Now there's GraphQL from Facebook and its recent adoption by Github raises interesting questions.
Every few months, someone publishes a condemnation of APIs that could easily have readers believing that APIs are more trouble than they're worth. This week alone saw two such posts that compelled ProgrammableWeb editor-in-chief David Berlind to set the record straight about the benefits of APIs.
This tutorial from the FINRA Technology website explains how even novice developers can create a basic REST service for evaluating whether a number is a prime or not. The service is built using automated computing service AWS Lambda, as well as AWS API Gateway and IAM for authentication.
The microservices architecture continues to grow in popularity as it enables the scalability and flexibility necessary to serve the modern marketplace. Saba Anees discusses some key considerations for migrating your existing monolithic architecture to a more streamlined microservices one.
Security researchers have discovered a vulnerability in the Swagger ecosystem that could result in the exploitation of Web API endpoints when those endpoints or any SDKs designed to access them are generated from a Swagger-based API description. Malicious remote code execution is the main concern.
Microsoft’s ASP.NET Web API simplifies the process of building platform-agnostic RESTful HTTP services. The service’s portability makes it a useful tool, and in this tutorial on DeveloperHandbook.com, Jon Preece shows followers how to build a RESTful API using Web API and JWT.
As the online discussion around the benefits and shortcomings of the WordPress REST API continues, WordPress developer Matt Geri discusses the API in terms of who it is really serving. He believes the platform’s approach must satisfy the initial benefactor’s requirements to ensure adoption.
Windows PowerShell is the powerful Microsoft command-line shell and associated scripting language for task automation and configuration management. In this tutorial, Trevor Sullivan presents a screencast video that guides followers through using PowerShell to automate common tasks in GitHub.
Versioning your RESTful API is a way to manage multiple releases of a product, but it is not always an absolute requirement and may not be the best option to take. This article by John Vester discusses the arguments for and against, with some examples to illustrate versioning’s effects.
The separation of concerns is a fundamental constraint of RESTful API design, requiring the decoupling of client and server logic. This tutorial by Dale Cox for 01.org guides followers through generating this encapsulation using Node.js with Express to build scalable and maintainable APIs.
This tutorial by Leo Gonsalves on Techarena51 describes the steps necessary to build a simple database-driven RESTful JSON API with full CRUD capabilities. The tutorial is written for Python 3 using the Flask web framework, providing all of the relevant code and as well as an instruction video.
The importance of providing an API for your application, irrespective of its intended use case, cannot be overstated. In this tutorial, Itay Herskovits explains the basics of RESTful architecture and how the Backand platform can be used to automatically build a REST API for an Agular application.
The team that maintain the open source Spring Framework have now included first-class support for CORS in a move that aligns the framework with REST APIs and HTML5 specifications.
Level 3 REST APIs expose hypermedia controls that incorporate links into resource representations. Content negotiation can be used to reduce link bloat and dev time within REST.
Despite not giving full control over configuration, Google Prediction API does offer a RESTful interface for building machine learning models such as this activity tracker.