Design APInf REST API for Catalog endpoints #2102
Comments
bajiat
changed the title
|
Do we have a folder in repository where we should store design (swagger)? |
|
Design will be done in Swaggerhub.com and from there I can sync result to given repository folder. |
|
Working environment https://app.swaggerhub.com/api/kyyberi/APInf-REST-API/MVP @matleppa, create an account to swaggerhub and I'll share the API space to you. |
|
How do we auth admin users? Basic auth? OAuth2? |
|
It uses a token-based authentication very similar to OAuth2, but perhaps not OAuth2. |
|
good |
|
The Meteor Restivus documentation has an example of a user logging in. In a nutshell, the user can POST their credentials to the authentication endpoint, and receives an |
|
Could you @jawidahmadi do the review of the design? |
|
@jawidahmadi here are a couple of API design guides that can inform our API design:
|
|
Specifically, check out the Zalando API Design Principles. |
|
Re: updating specific fields on a document, without updating the whole document: See the Google HTTP Standard Methods: Update documentation:
|
|
I would recommend looking at http://apistylebook.com/design/guidelines/ for guidelines instead of pointing out single one or two. Out of curiosity @brylie , what is the reason to raise Zalando as an example? |
|
response code for No Content 204 |
The Zalando API Design Guide seems well considered and organized. The documentation is also open source on Github, so we could contribute back or adapt them to our needs. The spirit of suggesting these design guideline examples was to help @jawidahmadi explore some of the questions he was raising, by finding sources with good experience. |
|
Getting error in my console when clicking show/hide (Swagger viewer): 35d5778….js?meteor_js_resource=true:21
Uncaught TypeError: Cannot read property 'pushState' of undefined(…)
toggleEndpointListForResource @ 35d5778….js?meteor_js_resource=true:21
callDocs @ 35d5778….js?meteor_js_resource=true:22
dispatch @ 35d5778….js?meteor_js_resource=true:30
m.handle @ 35d5778….js?meteor_js_resource=true:30Update: also same error when clicking on "POST" or "GET" etc. when trying to close it. |
|
It is not clear to me what "API updates" are (/apis/updates/). Is it just a series of possible parameters? Then it should be in just /apis/? |
|
Try out example for /apis/updates/ gives me
The response body is "no content". We should make sure there is actual content? |
|
@philippeluickx, the try out examples are prone to failure, because this API is in the Design phase. This means, the endpoints do not yet exist. We are currently seeking feedback on the design itself, rather than testing functionality. |
|
PUT /apis/{id} has a question in the description:
Not sure if this is the best approach in a design-phase API? |
|
Do we need better instructions for pagination? |
|
@kyyberi already touched upon it: how about authentication? What actions you need to have authentication, which ones can you do anonymously? |
@philippeluickx that may be related to issue #2211. If it seems to be so, please post the error message there. |
|
@philippeluickx Excellent points above. Could you add your API design related feedback and questions to feedback tab (in API profile)? That is where I assume we actually would like to see feedback. I will not ask them to come to Github and add an issue. ....and here something about dog food and so on ;) |
|
@kyyberi Done!
|
|
@philippeluickx will you please open a Github issue for your Feedback meta-feedback? That way we can improve the Feedback module as part of a design/development task. |
|
I heard there was discussion about PUT and POST methods. It is common practice that both can be used to create new object in the system. PUT is valid for creating a resource, but only if the client has the privilege of naming the resource. In our case that is not the case. We identify objects by ID and that is never defined by client. Thus in our API design new items are always created with POST. PUT is used to update existing object. |
|
Reason to have /apis/updates is that it gives you just updates (delta) about changes. Putting all in one method (/apis/) makes it bloated and hard to understand/communicate. |
|
Did some improvements to show more clearly, which methods require authentication. Closing this issue and pushing it to external developer review. |
|
/apis/updates: So it's kind of a revision history? |
|
Yeah |
|
My suggestion would be to rename it to revisions then. It's more concrete. |
|
I asked ext developer(s) opinion about the path and they say both is fine, but like original "updates" better. |
|
Before implementation we might want to check that harvestor data model is synced and supported by POST/PUT methods https://github.com/apinf/api-harvester |
Description
Questions:
Methods POST:
eg. add something new. Returns created data object on success.
Do we put PUT methods to other issue? Those are used normally to update existing object. Using POST for that is breaking the convention used in larger API community.
Methods PUT:
eg. update existing object (just information to be updated is required, not the whole metadata set)
User story
Definition of done
The text was updated successfully, but these errors were encountered: