API Digest #60: Why Your Mobile App Should Never Call an External API
Happy Holidays and welcome back to our API Digest series! Here is the list of the articles we are going to overview in this post:
- Why your mobile app should never call an external API
- API management solution vendors need to work on relationship skills
- 9 сommon errors made during API Testing
- A few things to think about before blindly dumping REST for GraphQL
- Microservices and message queues
- Understanding the Green Button API Initiative and why it matters
- OAuth vs. SAML vs. OpenID Connect
When you’re building an app that uses external APIs like these, it can be very tempting to call them directly from your mobile app, but that can get you into trouble. Discover why your mobile app should never call an external API.
Fred Churchville believes that API management software providers can't take the relationship between API users and providers for granted, they need to work on relationship skills. A Forrester analyst explains what API management solution vendors need to do to improve relations.
API testing is an important facet of the API development process and it is crucial to do it right. Kristopher Sandoval points out 9 most common errors made during API testing. He explains why these errors are a big deal, and provides some simple solutions to improve testing methodologies, results, and overall API health.
There has been a lot of hype around the GraphQL, especially since Github adopted it. Many REST API providers started thinking about moving from REST to GraphQL. However, Arnaud Lauret (API Handyman) believes that blindly dumping REST for GraphQL just because it’s “cool and new” is a very bad idea. He explained what is GraphQL and what REST API providers should think about before moving from REST to GraphQL.
While discussing Microservices best practices, the question about message queues comes up often. In his article “Microservices and Message Queues”, Irakli Nadareishvili gives an answer to a very important question: ”Is it OK for multiple microservices to access a shared message queue?”.
The article “Understanding the Green Button API Initiative and why it matters” explains what the Green Button API Initiative is and how it came about. In short, this project is aimed at empowering Americans with secure access to their own personal data, and to increase citizens’ access to private-sector data-based applications and services.
The Gluu Server is a free open source platform that has both SAML and OAuth2 components. Gluu Founder / CEO Mike Schwartz explains the pro's and con's of both infrastructures in his article “OAuth vs. SAML vs. OpenID Connect”
P.S. In case you’d be interested in trying API2Cart, you can create an account and see how the API works on live stores.