
## APIS for a Data Scientist 

**_APIs_** (short for **_Application Programming Interfaces_**) 

APIs are a way of standardizing interactions with software. From the provider's standpoint, it makes sure that everyone will interact with their software in a way that they are expecting. From the user's standpoint, it provides easy instructions and methods for working with 3rd party software, which opens up a ton of useful benefits by allowing us to get data from other sources, or add functionality by incorporating services from 3rd party software!


### What is an API made of ?

An API has three main components as listed below:

- **Access Permissions:** Is the user allowed to ask for data or services?
- **Request:** The service being asked for. A Request has two main parts:
    
    - **Methods:** Once the access is permitted, what questions can be asked.
    - **Parameters:** Additional details that can be sent with requests or responses
- **Response:** The data or service as a result of the request.
    

![image.png](attachment:image.png)

## The Client Server Model

The client server model of communication technologies is a set of distributed application architecture and network operations that manages the workloads between the providers of a service, called **servers**, and service requester, called **clients**.


### What is a Client?

A client is a computer hardware device or software that requests a service made available by a server. The server is often (but not always) located on a separate physical computer.

### What is a Server?

A server is a physical computer dedicated to run services to serve the needs of clients. Depending on the service that is running, it could be a file server, database server, home media server, print server, email server or a **web server**.

### Client/Server Model on the Web

The idea of a Client and Server communicating over a network is what makes viewing websites and interacting with Web applications (like Gmail, Facebook, LinkedIn) possible. This model is a way to describe the give-and-take relationship between the client and server in a Web application and governs how information passes between computers.


## HTTP Request Response Lifecycle 

The HTTP (Hypertext Transfer Protocol) request-response lifecycle is a fundamental concept in web development, outlining the communication process between a client (such as a web browser) and a server. Here's a breakdown of the key stages:

1. **Client Sends a Request**: The lifecycle begins when a client, typically a web browser, initiates a request to the server. This request contains various components, including:
   - **HTTP Method**: Specifies the type of action the client wants to perform (e.g., GET, POST, PUT, DELETE).
   - **URL (Uniform Resource Locator)**: Identifies the resource the client is requesting from the server.
   - **Headers**: Additional information sent with the request, such as the type of data the client can accept, authentication credentials, and more.
   - **Body (optional)**: Data sent to the server, typically used in POST or PUT requests to send form data, JSON, or other content.

2. **Server Processes the Request**: Upon receiving the request, the server processes it based on the provided information. This involves:
   - **Routing**: Determining which part of the server should handle the request based on the URL and possibly other factors like request method or headers.
   - **Authentication and Authorization**: Checking if the client is authorized to access the requested resource, which may involve validating credentials or permissions.
   - **Business Logic**: Executing the necessary code or operations to fulfill the request, which could involve querying a database, interacting with other systems, or performing calculations.
   - **Generating a Response**: Once the server has processed the request and gathered the necessary data, it constructs an HTTP response to send back to the client.

3. **Server Sends a Response**: The server sends an HTTP response back to the client in response to its request. This response includes:
   - **Status Code**: A three-digit code indicating the outcome of the request (e.g., 200 for success, 404 for "Not Found", 500 for "Internal Server Error").
   - **Headers**: Additional metadata accompanying the response, such as the type of data being sent, caching directives, and more.
   - **Body**: The main content of the response, which could be HTML for a web page, JSON for an API response, or other formats depending on the request and server configuration.

4. **Client Receives and Processes the Response**: Finally, the client receives the response from the server and processes it accordingly. This typically involves:
   - **Parsing**: Extracting relevant information from the response, such as status code, headers, and response body.
   - **Rendering**: Displaying the received content to the user (in the case of a web browser), which may involve rendering HTML, rendering JSON data, or handling other types of content appropriately.

Throughout this lifecycle, communication between the client and server follows a request-response pattern, allowing for the exchange of data and interactions that power the modern web.

## HTTP Request Methods

1. **GET**: Used to request data from a specified resource. GET requests should only retrieve data and not modify it. Parameters can be sent in the URL's query string.

2. **POST**: Used to submit data to be processed to a specified resource. POST requests can send data in the request body, allowing for more complex data structures.

3. **PUT**: Used to update an existing resource or create a new one if it doesn't exist. PUT requests typically send the entire updated resource in the request body.

4. **DELETE**: Used to delete a specified resource.

5. **PATCH**: Similar to PUT, but it only updates the specified fields of an existing resource rather than replacing the entire resource.

6. **HEAD**: Similar to GET, but it only retrieves the response headers, without the response body. It's often used to check the status of a resource without downloading its entire content.

7. **OPTIONS**: Used to describe the communication options for the target resource, such as supported request methods or available headers.

8. **TRACE**: Echoes back the received request to the client, useful for debugging or testing purposes.

9. **CONNECT**: Used to establish a tunnel to the server identified by the target resource.

These methods define the actions that can be performed on a given resource, providing a standardized way for clients to interact with servers over the HTTP protocol.

## Oauth

OAuth (Open Authorization) is an open-standard authorization protocol that allows third-party services to securely access a user's resources without needing to expose the user's credentials. It's commonly used for enabling single sign-on (SSO) and delegated access scenarios, where a user can grant one application (the "client") permission to access resources on another application (the "resource server") on their behalf, without sharing their password.

Here's a brief explanation of how OAuth works:

1. **User Authorization**: The process begins when a user wants to grant access to their resources (such as data or functionality) on a service (the "resource server") to another application (the "client"). The user typically initiates this process by clicking a button or link provided by the client.

2. **Authorization Request**: The client sends an authorization request to the authorization server, which includes details such as the client's identity, the requested scope of access (e.g., read-only or read-write), and a redirect URI where the user will be redirected after granting or denying access.

3. **User Authentication and Consent**: The authorization server authenticates the user and prompts them to authorize the requested access. If the user consents, they are redirected back to the client's redirect URI along with an authorization code or access token.

4. **Token Exchange**: The client exchanges the authorization code for an access token by sending a token request to the authorization server. The authorization server verifies the authorization code and, if valid, issues an access token to the client.

5. **Accessing Protected Resources**: The client can now use the access token to make authorized requests to the resource server on behalf of the user. The resource server validates the access token and, if valid, provides access to the requested resources.

OAuth provides a secure and standardized way for applications to access resources on behalf of users without needing their credentials, enhancing security and user experience by reducing the need for users to share sensitive information.

## Api Examples 

imports

In [14]:
import requests as rq

GET example

In [15]:
res = rq.get("https://httpbin.org/get",headers={"accept": "application/json"},data={"name":"samuel"})

json_res = res.json()

In [16]:
json_res


{'args': {},
 'headers': {'Accept': 'application/json',
  'Accept-Encoding': 'gzip, deflate, br',
  'Content-Length': '11',
  'Content-Type': 'application/x-www-form-urlencoded',
  'Host': 'httpbin.org',
  'User-Agent': 'python-requests/2.28.2',
  'X-Amzn-Trace-Id': 'Root=1-664e0614-56765bd73eafa6f50bbf21ad'},
 'origin': '102.0.5.218',
 'url': 'https://httpbin.org/get'}

POST example

In [17]:
res = rq.post("https://httpbin.org/post",headers={"accept": "application/json"},data={"name":"samuel"})

res.json()

{'args': {},
 'data': '',
 'files': {},
 'form': {'name': 'samuel'},
 'headers': {'Accept': 'application/json',
  'Accept-Encoding': 'gzip, deflate, br',
  'Content-Length': '11',
  'Content-Type': 'application/x-www-form-urlencoded',
  'Host': 'httpbin.org',
  'User-Agent': 'python-requests/2.28.2',
  'X-Amzn-Trace-Id': 'Root=1-664e0615-6a6c255066a9714a7b070fef'},
 'json': None,
 'origin': '102.0.5.218',
 'url': 'https://httpbin.org/post'}

PATCH example

In [18]:
res = rq.patch("https://httpbin.org/patch",headers={"accept": "application/json"},data={"name":"samuel"})

res.json()

{'args': {},
 'data': '',
 'files': {},
 'form': {'name': 'samuel'},
 'headers': {'Accept': 'application/json',
  'Accept-Encoding': 'gzip, deflate, br',
  'Content-Length': '11',
  'Content-Type': 'application/x-www-form-urlencoded',
  'Host': 'httpbin.org',
  'User-Agent': 'python-requests/2.28.2',
  'X-Amzn-Trace-Id': 'Root=1-664e0616-219ad3950d8c66813912ee35'},
 'json': None,
 'origin': '102.0.5.218',
 'url': 'https://httpbin.org/patch'}

DELETE example

In [19]:
res = rq.delete("https://httpbin.org/delete",headers={"accept": "application/json"},data={"name":"samuel"})

res.json()

{'args': {},
 'data': '',
 'files': {},
 'form': {'name': 'samuel'},
 'headers': {'Accept': 'application/json',
  'Accept-Encoding': 'gzip, deflate, br',
  'Content-Length': '11',
  'Content-Type': 'application/x-www-form-urlencoded',
  'Host': 'httpbin.org',
  'User-Agent': 'python-requests/2.28.2',
  'X-Amzn-Trace-Id': 'Root=1-664e0617-1df1cd3967dc68f129aedb0b'},
 'json': None,
 'origin': '102.0.5.218',
 'url': 'https://httpbin.org/delete'}

## APIS To Test On

https://free-apis.github.io/#/browse

In [20]:
res = rq.get("https://api.sampleapis.com/beers/ale")

res_json = res.json()

In [21]:
for beer in res_json:
    print(beer["name"])
    print(beer["price"])

Founders All Day IPA
$16.99
Blue Moon Belgian White Belgian-Style Wheat Ale
$13.99
Guinness Extra Stout
$16.99
Guinness Extra Stout
$8.99
Sierra Nevada Pale Ale
$15.49
Sierra Nevada Pale Ale
$15.49
Lagunitas IPA
$15.99
Dogfish Head 120-Minute IPA
$11.99
Sierra Nevada Torpedo Extra IPA
$15.49
Sierra Nevada Hazy Little Thing IPA
$15.99
New Holland Dragon's Milk
$14.99
New Belgium Oakspire Bourbon Barrel Ale
$12.99
Guinness Draught
$7.49
Dogfish Head 60-Minute IPA
$10.99
Blue Moon Belgian White Belgian-Style Wheat Ale
$7.99
Guinness Draught
$16.99
Weihenstephaner Hefe Weissbier
$10.99
Cigar City Jai-Alai IPA
$2.29
Bell's Two Hearted Ale
$21.99
Kentucky Bourbon Barrel Ale
$12.99
Dogfish Head 90-Minute IPA
$12.99
Sierra Nevada Hazy Little Thing IPA
$9.49
Bell's Double Two Hearted
$4.99
Victory Golden Monkey Ale
$11.99
Founders Underground Mountain Brown
$18.49
Bell's Two Hearted Ale
$10.99
Blue Moon Belgian White Belgian-Style Wheat Ale
$89.99
Elysian Space Dust IPA
$11.49
Duvel Belgian Ale

In [22]:
res = rq.get("http://shibe.online/api/shibes?count=10")

res_json = res.json()

In [23]:
import matplotlib.pyplot as plt

In [24]:
dir(plt)

['Annotation',
 'Arrow',
 'Artist',
 'AutoLocator',
 'Axes',
 'Button',
 'Circle',
 'Enum',
 'ExitStack',
 'Figure',
 'FigureBase',
 'FigureCanvasBase',
 'FigureManagerBase',
 'FixedFormatter',
 'FixedLocator',
 'FormatStrFormatter',
 'Formatter',
 'FuncFormatter',
 'GridSpec',
 'IndexLocator',
 'Line2D',
 'LinearLocator',
 'Locator',
 'LogFormatter',
 'LogFormatterExponent',
 'LogFormatterMathtext',
 'LogLocator',
 'MaxNLocator',
 'MouseButton',
 'MultipleLocator',
 'Normalize',
 'NullFormatter',
 'NullLocator',
 'Number',
 'PolarAxes',
 'Polygon',
 'Rectangle',
 'ScalarFormatter',
 'Slider',
 'Subplot',
 'SubplotSpec',
 'Text',
 'TickHelper',
 'Widget',
 '_REPL_DISPLAYHOOK',
 '_ReplDisplayHook',
 '__builtins__',
 '__cached__',
 '__doc__',
 '__file__',
 '__loader__',
 '__name__',
 '__package__',
 '__spec__',
 '_api',
 '_auto_draw_if_interactive',
 '_backend_mod',
 '_copy_docstring_and_deprecators',
 '_docstring',
 '_draw_all_if_interactive',
 '_get_backend_mod',
 '_get_pyplot_commands

In [33]:
from IPython.display import display, Image
for shiba in res_jsif response.status_code == 200:
    print(respoon:
    print(shiba)
    display(Image(shiba))

https://cdn.shibe.online/shibes/26cd34fd9441c771e38d0513f75bc6ae42921443.jpg


HTTPError: HTTP Error 403: Forbidden