Databases
StackOverflow2013
Postsdbo
POAPI Design and Authentication Considerations
Body
 

Note that there are some explanatory texts on larger screens.

plurals
  1. POAPI Design and Authentication Considerations
    text
    copied!<p>I have a data versioning system implemented as a point-in-time architecture in some RDBMS. I am writing a servlet based API to expose some functionality regarding this data. The API will return datapoints to the user, allow the user to tag data for removal, and allow a super user to accept or reject these data modification requests, also done via API calls.</p> <p>Here's the question. I have dealt with some large and noteworthy API with a very diverse feature set in which all API calls are HTTPS GETs. This is how I plan on doing this. I know I know, in a perfect world if you are developing a resource oriented product you should design an ROA implemented as a REST interface. However, the client really wishes to have a more hybrid RPC style interface for readability and low learning curve. If I do everything in terms of GET to get the API calls in the format the client wants, is this a bad thing? Is something going to come back and bite me in the rear end later? Are there bad implications for future API additions or maintenance? If there are some flagrant pitfalls the this approach, the client can swayed in another direction without too much fuss.</p> <p>One of the reasons I don't just want to do REST and use GET/POST/etc http verbs is that lower privilege users can only make change <em>requests</em>. These linger around until a higher privilege user okays/rejects them.</p> <p>Example call: somehost/?Method=GetOutlierData&amp;SiteId=112-1&amp;TimeInterval=2011-01-01_00:00:00--2011-01-01_23:59:59&amp;ValidDate=2011-02-01_12:00:00&amp;ReturnType=RecordId&amp;Requester=13&amp;Password=secret&amp;ApiKey=19483</p> <p>Response: Return=0&amp;RecordsIds=</p> <p>Another place I'm not sure if what I am proposing is a good idea is authentication. Every call includes the calling user's credentials (to enforce roles -- only some API features are available to certain users). The API will only process calls from hosts on a whitelist, so the design of the API implies that the client will construct a single endpoint to route all their organizations requests through, and that this endpoint will supply the secret API key along with all API calls. This will prevent users from sending their own unapproved calls directly to the API. Their will be some rate limiting and banning features implemented internally to prevent intentional and accidental DoS. Since we are operating over SSL is this an adequate way to do things?</p> <p>Example call: somehost/?Method=blah&amp;...&amp;Requester=13&amp;Password=secret&amp;ApiKey=1298593</p>
 

Querying!

 
Guidance
An individual column

Larger individual text columns get their own page to allow for proper reading.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload