Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Move fast, don't break your API

Avatar for Amber Feng Amber Feng
September 30, 2014
Programming
54k
18

Move fast, don't break your API

Avatar for Amber Feng

Amber Feng

September 30, 2014

More Decks by Amber Feng

See All by Amber Feng
Pixels & Tactics
Avatar for Amber Feng amfeng
1
10k
Building Stripe's API
Avatar for Amber Feng amfeng
35
53k

Other Decks in Programming

See All in Programming
【26新卒研修資料】TDD実装演習
Avatar for ディップ株式会社 dip_tech
PRO
0
180
リセットCSSを1行消したらアクセシビリティが向上した話
Avatar for pvcresin pvcresin
4
500
ハーネスエンジニアリングにどう向き合うか 〜ルールファイルを超えて開発プロセスを設計する〜 / How to approach harness engineering
Avatar for r-kagaya rkaga
28
19k
いつか誰かが、と思っていた フロントエンド刷新5年間の実践知
Avatar for Kiichi Sugihara kiichisugihara
1
260
Lightning-Fast Method Calls with Ruby 4.1 ZJIT / RubyKaigi 2026
Avatar for Takashi Kokubun k0kubun
3
2.7k
Are We Really Coding 10× Faster with AI?
Avatar for Koichi Yoshida kohzas
0
140
AWSはOSSをどのように 考えているのか?
Avatar for アキキー | Akihisa Ikeda akihisaikeda
0
100
tRPCの概要と少しだけパフォーマンス
Avatar for Keigo Ebihara misoton665
2
270
過去のレビュー知見をSkillsで資産化した話
Avatar for PKSHA Technology(パークシャテクノロジー) pkshadeck
PRO
1
1.7k
Road to RubyKaigi: Play Hard(ware)
Avatar for makicamel makicamel
1
560
〜バイブコーディングを超えて〜 チームで実験し続けたAI駆動開発
Avatar for Toranosuke Minamikawa tigertora7571
0
200
なぜあなたのコードには「コシ」がないのか?〜AI時代に問う、最後まで美味しい設計と戦略〜 #phpconkagawa / phpconkagawa2026
Avatar for shogogg shogogg
0
150

Featured

See All Featured
Rebuilding a faster, lazier Slack
Avatar for samanthasiow samanthasiow
85
9.5k
Reality Check: Gamification 10 Years Later
Avatar for Sebastian Deterding codingconduct
0
2.1k
Leveraging Curiosity to Care for An Aging Population
Avatar for Cassini Nazir cassininazir
1
230
A Modern Web Designer's Workflow
Avatar for Chris Coyier chriscoyier
698
190k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
Avatar for mongodb mongodb
49
9.9k
The State of eCommerce SEO: How to Win in Today's Products SERPs - #SEOweek
Avatar for Aleyda Solis aleyda
2
10k
RailsConf 2023
Avatar for Aaron Patterson tenderlove
30
1.4k
Marketing to machines
Avatar for Jono Alderson jonoalderson
1
5.2k
Six Lessons from altMBA
Avatar for Skipper Chong Warson skipperchong
29
4.2k
Mozcon NYC 2025: Stop Losing SEO Traffic
Avatar for Sam Torres samtorres
0
230
A better future with KSS
Avatar for Kyle Neath kneath
240
18k
Crafting Experiences
Avatar for Bethany Jepchumba bethany
1
140

Transcript

  1. MOVE FAST, DON'T BREAK YOUR API AMBER FENG @amfeng

  2. None

  3. LET'S BUILD AN API!

  4. post '/v1/charges' do card_number = params[:card_number] amount = params[:amount] charge

    = create_charge(card_number, amount) json { id: charge.id, amount: charge.amount card_number: charge.redacted_card_number, success: charge.success } end

  5. post '/v1/charges' do ... unless card_number.length == 16 return {error:

    "Invalid card number."} end unless amount > 0 and amount <= CHARGE_MAX return {error: "Invalid amount."} end ... end

  6. post '/v1/charges' do api_key = get_api_key user = User.find_by_key(api_key) unless

    user return {error: "Invalid API key."} end ... end

  7. curl https://stripe.com/v1/charges -u API_KEY -d card_number=4242424242424242 -d amount=100 => {

    id: "ch_xxx", amount: 100, card_number: "*4242", success: true }
  8. None

  9. WHAT NEXT?

  10. WHAT NEXT? MORE ENDPOINTS

  11. WHAT NEXT? MORE ENDPOINTS MORE FUNCTIONALITY

  12. WHAT NEXT? MORE ENDPOINTS MORE FUNCTIONALITY MORE CHANGES

  13. WHAT NEXT? MORE ENDPOINTS MORE FUNCTIONALITY MORE CHANGES MORE PROBLEMS

  14. LARGE, TANGLED CODEBASE

  15. COPY-PASTA

  16. ERROR-PRONE DEPENDENCIES

  17. "CRAP, I FORGOT TO UPDATE THE DOCS!" — Everyone ever

  18. HOW DO WE MAKE IT BETTER?

  19. DESIGN FOR YOURSELF, TOO

  20. SEPARATE DIFFERENT LAYERS OF LOGIC

  21. Authentication Validation Endpoint-specific logic Constructing the response Error handling

  22. Error handler Authenticator API logic

  23. use ErrorHandler use Authenticator get '/v1/charges/:id' do user = env.user

    id = params[:id] unless user.get_charge(id) raise UserError.new("No charge #{id}!") end end

  24. APIMethods & APIResources

  25. class ChargeCreateMethod < AbstractAPIMethod required :amount, :integer required :card_number, :string

    resource ChargeAPIResource def execute create_charge(amount, card_number) end end

  26. class ChargeAPIResource < AbstractAPIResource required :id, :string required :amount, :integer

    required :card_number, :string required :success, :boolean def describe_card_number charge.redacted_card_number end end

  27. post '/v1/charges' do APIMethod::ChargeCreateMethod.invoke end get '/v1/charges' do APIMethod::ChargeRetrieveMethod.invoke end

  28. MAKE IT HARD TO MESS UP

  29. class ChargeCreateMethod < AbstractAPIMethod required :amount, :integer required :card_number, :string

    document :amount, "Amount, in cents." document :card_number, "The card number." ... end

  30. HIDE BACKWARDS COMPATIBILITY

  31. <todo: tweet>

  32. def execute if !user.version_1? && params[:amount] raise UserError.new("Invalid param.") end

    ... if !user.version_1? response.delete(:amount) end end

  33. GATES

  34. - :version: 2014-09-24 :new_gates: - :gate: allows_amount :description: >- Sending

    amount is now deprecated.

  35. def execute if !user.gating(:allows_amount) && params[:amount] raise UserError.new("Invalid param.") end

    ... if !user.gating(:allows_amount) response.delete(:amount) end end

  36. COMPATIBILITY LAYERS

  37. Request compatibility API logic Construct API response Response compatibility

  38. IN THE REAL WORLD

  39. 106 ENDPOINTS 65 VERSIONS 6 API CLIENTS

  40. DESIGN FOR YOURSELF: SEPARATE LAYERS OF LOGIC MAKE IT HARD

    TO MESS UP HIDE BACKWARDS COMPAT

  41. WHAT ELSE?

  42. NOT SURE. (WE'RE STILL FIGURING IT OUT AS WE GO.)

  43. THANKS! (: @amfeng