In-depth analysis of REST API
REST API
Introduction
Features of REST API
- Stateless
It is necessary to remind of our data every time we refer to it, whether it is our login credentials or any other information. Since it does not memorize the data, it allows greater scalability.
- Documentation
The API's designers must keep such information up to date according to the documentation. Every modification to the REST API's architecture should be documented, so that any developer who uses it knows what to expect.
- Error messages
The possibility offered by the REST architecture of including error messages provide some indication of what caused the error.
- Supports JSON and XML
Advantages of REST API
- Scalability
Because of the separation of client and server, a product can easily be scaled by a development team.
- Flexibility and Portability
It is possible to migrate from one server to another or make database modifications at any moment, as long as data from one of the requests is properly sent. As a result, the front and back ends of the application can be hosted on separate servers, providing considerable administration benefits.
- Independence
The protocol allows for independent development across a project because to the separation of client and server. This gives you the option of developing in a variety of environments.
- Simple to build and adapt
- Low resource utilization
Limitations of REST API
- Stateless
Stateful techniques are required by most web applications. The client bears the task of maintaining the state, making the client application heavy and difficult to maintain.
- Lack of Security
REST is suitable for public URLs, but not for the transmission of sensitive data between client and server.
Characteristics of REST API
- Client-server architecture
One of REST's main constraints is that the client (which makes requests) and the server (which responds to requests) must remain separate and autonomous. As user interface problems are separated from data storage concerns, this improves manageability across several platforms and increases scalability by streamlining server components.
- Stateless
Every request sent from the client to the server must include all necessary information for the server to understand the request.
- Uniform Interface
Even if the client and server evolve in distinct ways, it's crucial that the API remains functional. The performance of the pieces inside the REST API architecture must be guided by numerous architectural controls in order to achieve a uniform interface.
- Layered system
The REST API architecture is made up of various layers that work together to form a hierarchy that makes the application more scalable and versatile. An application's security is enhanced by its layered system, as components in one layer cannot interact with those in the next. It also balances loads and provides shared caches to encourage scalability.
- Cacheability
For a defined amount of time, the client can retain some pieces of data locally. They use the saved version instead of the server transmitting it again when they make a request for that data. Instead of submitting multiple challenging or expensive queries in a short period of time, the client simply has to do it once.
- Code on Demand
This requirement is better left for internal APIs, where you have less to fear from hackers and anyone with evil intentions. A server will typically return a static resource representation in XML or JSON format. Servers, on the other hand, can transmit executable code to clients as needed.
How REST API works
Best practices to design REST API
- Use JSON as the format for Sending and Receiving Data
- Use Nouns Instead of Verbs in Endpoints
- Name Collections with Plural Nouns
- Use Status Codes in Error Handling
- Use Nesting on Endpoints to Show Relationships
- Use Filtering, Sorting, and Pagination to Retrieve the Data Requested
- Use SSL for Security
- Be Clear with Versioning
- Provide Accurate API Documentation
HTTP response status codes
Information responses (100 - 199)
100 - Continue
101 - Switching Protocols
102 - Processing (WebDAV)
103 - Early Hints
Successful responses (200 - 299)
200 OK
201 Created
202 Accepted
203 Non-Authoritative Information
204 No Content
205 Reset Content
206 Partial Content
207 Multi-Status (WebDAV)
208 Already Reported (WebDAV)
226 IM Used (HTTP Delta encoding)
Redirection messages (300 - 399)
300 Multiple Choices
301 Moved Permanently
302 Found
303 See Other
304 Not Modified
305 Use Proxy Deprecated
306 unused
307 Temporary Redirect
308 Permanent Redirect
Client error responses (400 - 499)
400 Bad Request
401 Unauthorized
402 Payment Required Experimental
403 Forbidden
404 Not Found
405 Method Not Allowed
406 Not Acceptable
407 Proxy Authentication Required
408 Request Timeout
409 Conflict
410 Gone
411 Length Required
412 Precondition Failed
413 Payload Too Large
414 URI Too Long
415 Unsupported Media Type
416 Range Not Satisfiable
417 Expectation Failed
418 I'm a teapot
421 Misdirected Request
422 Unprocessable Entity (WebDAV)
423 Locked (WebDAV)
424 Failed Dependency (WebDAV)
425 Too Early Experimental
426 Upgrade Required
428 Precondition Required
429 Too Many Requests
431 Request Header Fields Too Large
451 Unavailable For Legal Reasons
Server error responses (500 - 599)
500 Internal Server Error
501 Not Implemented
502 Bad Gateway
503 Service Unavailable
504 Gateway Timeout
505 HTTP Version Not Supported
506 Variant Also Negotiates
507 Insufficient Storage (WebDAV)
508 Loop Detected (WebDAV)
510 Not Extended
511 Network Authentication Required
Comments
Post a Comment