# API Basics

- What is API
- Why API
- API categories and types
- Understanding HTTP
    - Verbs or method
    - Status code
- RESTful API
- Endpoints
- Design myreadapp RESTful API

## What is API
- API stands for `Application Programming Interface`

> An API is an interface that softwares use to communicate from application to applications

> It's a point where two systems, subjects, organizations and so forth meet and interact

### API vs UI
- UI is the interface between end users and an application
- API is an interface between applications

### Consumers vs Providers
**NB**: API is commonly used to name the whole system, produce, including API and the implementation.

- The term `Consumers` refers to consumers of APIs
- The term `Providers` refers to providers of APIs

## Example

#### Sharing phots on Social Media
- Phone -> app -> Picture -> app -> edit -> app -> friend 
- app -> Camera API -> take a picture
- Phone -> Library API -> edit the picture
- Phone -> WhatsApp -> Remote API -> send picture

**Nutshell**
- Hardware API -> Camera app and Hardware
- Library API -> Camera app and Photo editor app
- Remote API -> WhatSapp app and WhatSapp server


#### API scenario
- In a nutshell, APIs helps us to reach out to many consumers.

### Data format of an API
- Most APIs use the `JSON` to format data that will be consumed by the consumers.

## Why APIs
> APIs enable software reusability

- `Reduces dependencies on one another`. 
    - SOLI**D** principle
        - Dependency Inversion: High-level module shouldn't depend on low-level module, but should all depend on an abstraction or interface
 
- `Hide implementation details of your backend server`: **Encapsulation**
- `Provide a public or private interface for interacting with the backend server`: **Abstraction**


## API Categories
Basically, we have 2 categories of APIs

- Internal/Private 
- External/Open/Public

**NB**: The differences between public and private APIs doesn't depend on the `how` the API is exposed, but to `whom` it is exposed.

### Public APIs
- Public APIs are provided by third parties or other services.
- Public APIs are usualy accessible to anyone who needs them.
- Public APIs can be either free or paid.
- In the Public API context, the API provider and API consumers are different people or companies

#### Private APIs
- Private APIs are APIs that you normally build for yourself or members of your organization.
- In the Private API context, the API provider and API consumers are the same people or from the same company.

## API types

### OS APIs
- Ubuntu Gnome UI uses the OS file system to help us organize, manage, create and delete files in our OS.
- Any application that interacts with the OS, uses the OS API

### Library APIs
- Python standard `os` library.
- pathlib, sys, time, datetime

### Remote APIs
- The resource that is requested doesn't reside in the computer or device that is making the request.

##### Web APIs
- API sits on an existing architecture of the WWW(World Wide Web) and it uses the HTTP protocol and TCP/IP.
###### RESTful API
- These are rules or principles to follow when building a Web API
    - Stateless
    - CRUD operations
###### RPC
###### SOAP

## HTTP Basics
- HTTP stands for `HyperText Transfer Protocol`
- HTTP transaction is composed of the `request/response` cycle where the client(browser) sends a request to the server(django backend), and our server sends back a response to the client

### HTTP Request
- The HTTP request has a lot of components
    - `HEADERS`: `request.header`: Contain meta data that helps the client and server to operate properly
        - `Accept`: Informs the server what format the browser or client is expecting the payload to be.
        - `User-Agent`: Gives information about the client making the request
        - `Host`: Gives the address of the host.
    - `METHOD`: `request.method`: It indicates what http method the client is using to communicate with the server.
    - `BODY`: `request.body`: contains the data sent via the request body in a binary string format.
    - `URL`: `request.get_full_path()`: Gives the url path used for this request.
    
#### HTTP Methods
- The RESTful API proposes the `CRUD` operation
- HTTP provides methods to satisfy the CRUD operation proposed by RESTful API
    - CREATE: `POST`
    - READ: `GET`
    - UPDATE: `PUT/PATCH`
    - DELETE: `DELETE`
    
#### Status Code
Status codes are a way to know the state of the http response.

We have These general types of status code

- **2xx**: `SUCCESS`: The request was accepted, understood and processed successfully.
    - `200`: OK
    - `201`: Created
    - `204`: DELETED
- **3xx**: `REDIRECTION`: The requested URL has moved, so the request was redirected.
    - `301`: Moved Permanently
- **4xx**: `Client Error`: From the client, typically with a bad URL request
- **5xx**: `Server Error`: From the server, typically when the server failes to process the request 
    - `500`: `Internal Server Error`
    - `503`: `Service Unavailable`
    
[More on HTTP status codes](https://en.wikipedia.org/wiki/List_of_HTTP_status_codes)


### RESTful APIs
**NB**: Self-study

## MyreadApp API Design

- **API first Design Principle**

> We will first model the APIs, then the backend and or the front-end.


### Design process for an application
- Determine  your business values
    - Requirements
        - Functional and non-functional
    - User Stories
- Domain modelling
    - Model the database
        - Database mission statement and objectives
        - Normalize
        - Class diagram (UML diagrams)
    - Use Case Diagram (UML diagrams)
- Design your API
    - API Specification
- Start implementation
- Integration
- Deployment
- Maintainance and support
    

### Creating an API Schema Model

> A Schema model is a contract describing what the API is, how it works and the endpoints that it's going to have.

What are the activities that our myreadapp API will support
- `Registration`: `POST`
- `Sign in and out`: `POST`
- `View my profile`: `GET`
- `Create new books`: `POST`
- `Delete owned books`: `DELETE`
- `Rating books`: `POST`
- `Updating owned books`: `PUT/PATCH`

### URLs

> Uniform Resource Locator

`https://www.mytricksntips.com`

`https://www.mytricksntips.com/cat/django/`

- Protocol: `https`
- hostname: `www.mytricksntips.com`
- domain name: `mytricksntips.com`
- path: `/cat/django/`

### Endpoint

> An endpoint is a specific URL representing a specific API resource or action

- `/cat/django/`

For me, endpoint has more than just the pathname
- Pathname
- HTTP method
- Status code
- request Header
- request body

#### Best Practices
- Nouns with ending `/` instead of verbs for our endpoint pathname
- Plural Nouns(I like to mix them and see what works best for me)
    - `GET /book/` instead `GET /get-all-books/`
    - `POST /book/` instead `POST /create-book`
- Use a good logical nested structure to maintain a good information architecture
    - `POST /reader/login/` instead `POST /login-reader/` or `POST /login/reader/`
    - `POST /book/<isbn>/rate` instead `POST /<isbn>/book/rate` or `POST /<isbn>/rate-book/`
- Use versioning for you API(I like to add `api` to indicate that it's an api
    - `GET /api/v1/book/`
    



### Myreadapp Endpoints
#### API Specification

- `/api/v1/reader/registration/`
    - `POST`: Register the reader
        - **Header**
            - Content-Type: `application/json`
            - Accept: `application/json`
        - **Request body**
            - **Fields**
                - username (str)
                    - required `true`, unique `true`
                - first_name (str)
                    - required `false`, default `''`
                - last_name (str)
                    - required `true`
                - password (str)
                    - required `true`
                - email (str)
                    - required `true`, unique `true`
                - title (str)
                    - required `false`, default `Mr`
                - nic (NIC)
                    - required `false`, default `null`
                    
            - **Example**
            
                ```json
                {
                    "username": "kevin",
                    "first_name": "kenz",
                    "last_name": "eyong",
                    "password": "tonykenz2023",
                    "email": "tony@gmail.com",
                    "title": "Dr",
                    "nic": {
                        "nic_number": "483747473939374",
                        "delivery_date": "2023-03-04"
                    }


                }
                ```
        - Request response
            - Status code: `201 Created`
            ```json
                {
                    "username": "kevin",
                    "first_name": "kenz",
                    "email": "tony@gmail.com"
    
                }
            ```
            - Status code: `400`: Invalide Input
            ```json
                {
                    "error": "bad_input",
                    "detail": "Invalid input for registration"
                }
            ```

            

- `api/v1/reader/profile/`
    - `GET`: View the reader profile
    - **Header**
        - Authentication `Token`
        - Accept `application/json`
    - **Response**
        - Status code: `200 ok`
        ```json
            {
                "username" : "kenz",
                "first_name": "kevin",
                "email": "tony@gmail.com"
                "reading_books" [
                    {
                        "isbn": "38337477489383"
                    },
                    {
                        "isbn": "483737637949484"
                    },
                ],
                "books": [

                    {
                        "isbn": "38337477489383"
                    },
                    {
                        "isbn": "483737637949484"
                    }
                 ]
            }

        ```
        - status code: `401` Unauthorized
            ```json
                {
                    "error": "invalid_token",
                    "detail": "Token was not given or has expired"
                }

            ```
        
        

- `/api/v1/reader/login/`
    - `POST`: Login reader
        - Request body
        ```json
            {
                "username": "kenz",
                "password": "kenz@password2023"
            }
        ```
        - Response
            - Status code: `202` Accepted
                - Response body
                    ```json
                        {
                            "token": "8383737skksghslslslghhe9393938slslghhslls-3349wiskghhos339slghs",
                            "refresh_token": "hshlh38837lsjghslshghso39398sikgghslhglhi292irkjhgl;shldjtl9hgs"
                        }
                    ```
            - Status code: `400`: Invalid input     

- `/api/v1/book/`
    - `GET`: View books
        - Request parameters
            - `?tags=python,django`
            - `?category=programming,art`
        - Response Body
            ```json
            [
                 {
                    "isbn": "4848737374894783",
                    "title": "Python for beginners",
                    "description": "This is good for beginners"
                },
                ...
            ]
            ```
        
        
    
    - `POST`: Create book
        - `[Authentication token]` # extract the reader username
        - Request body
            ```json
                {
                    "isbn": "484873849874833",
                    "title": "Django for beginners",
                    "description": "",
                    "page_count": null,
                    "category": "programming"
                }
            ```
        - Response 
            - Status code: `201`: Created
            ```json
                {
                    "isbn": "484873849874833"
                }
            ```
        

`https://www.mytricksntips.com/cat/search/?query=django`
Search books by category

- `/api/v1/book/?published_year=2023`
    - `GET`: List all books
    - Request Parameters
        - `?tags={tag},{tag},.... #`
        - `?cat={cat},{cat},.....`
        - `?published_year={year},{year}....`
    - Request Body

# Postman

> It is a tool for interacting or testing web APIs

## How do we get postman
- Through the browser version
- Desktop app version