This is the take-note of the TechTalk organized by Ronin Engineer.

• Safety: do not alter the server state/data.
• Idempotency: A same request will has the same result.

• Use Nouns Instead of Verbs. /clients not /getClients
• Plural Nouns. Example: /clients/?client-id
• Use Nesting to show Relationships.
• Slug-case for URL: https://vienct-blog.com not https://vienct_blog.com
• Snake_case for request, response body.
• Versioning: /cpe/v1/user

• Page & size parameter: /user?page=0%size=10
  • Use case: management protal.
  • Must document: page start counting with 0 or 1.
• Offset & limit parameters: /user?offset=0&limit=10
  • Use case: a infinite scrollable list, newsfeed, logging envents, a scan for data, ...

2 problems with this situation:

• Performance issue for large dataset in relational DB:
  • Take time to count all rows.
• Resource Skipping:
  • First get page 1, delete X records in page 1 the get page 2 -> X first records in page 2 moved to page 1.

Solution:

• Cursor: SELECT * FROM users WHERE id > last_id ORDER BY id LIMIT 10.
• Deferred join:

SELECT * FROM
(SELECT id FROM users ORDER BY id LIMIT 100, 10) a USING id
JOIN users b ON a.id = a.id;

• GET /products?sort=price:asc,name:desc
• GET /products?sort=+price,-name
• White list of sortable fields.

• One-To-Many
  • Get all comments of an article 123: GET /articles/123/comments
• Many-To-Many
  • Get students in a class: GET /classes/<class_id>/students
  • Add students into a class: POST /classes/<class_id>/students/<student_id>
  • Add students into a class: POST /classes/<class_id>/students with body is:

{
    "student_ids":["s1","s2","s3"]
}

• Query BD.
• Write file.
• Response file to client.

• Request timeout, latency (Connection's poblem).
• Client is blocked (Client's problem).
• Out of memory (Server's problem).
• Large result of the query (DB's problem).

Example:

1. API request to export data: GET /products/jobs/export?name=pen

"job_id": "001", //id, uuid...
"status": "PROCESSING", //status of the job
"issued_at": 1696690531 //unix timestamp

2. API check status: GET /jobs/001

"job_id": "001", //id, uuid...
"status": "DONE", //status of the job
"issued_at": 1696690531 //unix timestamp
"updated_at": 1696690535 //unix timestamp

3. API get job result: GET /job/001/result

Types in Async API: Polling or Callback/Webhook

• Polling:
  • Easy to Implement
  • Waste resource
  • Use case: small load, import/export file, small model.
• Callback/Webhook:
  • Optimize the resource.
  • Complex to implement in both client side and server side.
  • Use case: large load, payment, big model.

• Client generates and adds an Idempotency Key to the request's header.
• Server checks Idempotency Key with unique constraint in DB.

• Sample document (prodive by System Design VN And Ronin Engineer): REST_API_Document.pdf

• Describe request, response body clearly.

• Show all errors and their meanings.

• Nice to have cURL sample.