InfoQ: REST-y Reader

The API Academy’s Mike Amundsen is regularly asked which books he would recommend for those who want to learn more about designing, implementing and maintaining Web APIs. In this article, Mike offers a shortlist of books he discovered as he was learning about APIs – many of which are still among the books he consults most regularly.

InfoQ: A Web API Design Methodology

Designing Web APIs is more than just URLs, HTTP status codes, headers and payloads. The process of design – what is essentially a “look and feel” for your API – is very important and is well-worth the effort. This article briefly outlines a methodology that results in an API design that takes advantage of both…

Tutorial: Handle Errors on the Web

Learn about the right and wrong ways for Web applications to handle errors All applications need to report and handle errors. Doing this on the Web requires dealing with both protocol-level and application-level information. This video shows both the “right” and the “wrong” way to handle errors on the Web.

API Design 203: The USE Paradigm

Prioritize usability, scalability and evolvability in API design To work effectively, a Web API must display a range of specific software qualities. In this lesson, we outline what we call the “USE Paradigm” – a principle of API design, which states that interface designers should prioritize three particularly important software qualities: usability, scalability and evolvability….

TechTalk: Common OAuth Security Mistakes and Threat Mitigations

With vulnerabilities recently surfacing in the OAuth implementations of popular service providers like Yammer, Instagram and Facebook, it’s hard to blame anyone for getting the impression that there are fundamental security flaws in the OAuth protocol. Francois Lascelles, Chief Architect at Layer7, answered OAuth questions live, discussed the common security mistakes made in OAuth implementations…