Skip to main content

APIs & Server Logic

Main Source:

What is API

Application Programming Interface (API) is a contract between two component in a system, the contract has rules that define how these two component can interact with each other. We can think API as the bridge that connects between software component.

While making a program, we often interact with other software component (function, class, library). The purpose of API is to add a layer of abstraction and hide all the implementation details, making the client (the programmer) that interact with it only access the necessary functionality. API is something a programmer really use most of the time, calling function, classes, or modules is considered as calling an API.

APIs Types

Some types of APIs are:

  • Library API: Library is a collection of pre-written ready-to-use code, this includes function, classes, methods, constants, and other code components. Libraries are used to make programmers develop their application without needing to build everything from scratch. An example of library include graphics API like OpenGL that lets you render 2D or 3D computer graphics.

  • OS API: Operating system APIs is considered as low-level API, this includes accessing necessary function or classes that interact directly with OS component such as file system, memory management, task manager, process management, and etc. Example of OS level API can be a class that access internal storage in Android OS.

  • Web API: Web API is an API accessed over the internet using protocols like HTTP. Web APIs can be used if the code we are interacting to is stored on the internet. Common Web APIs include Google Maps API that let you know about geolocation information, Spotify API that allows developers to search for songs, albums, and artists, retrieve user playlists.

Here is an example of API in Kotlin:

logOutput("Calling an API")

Let's say a programmer wanted to log some string, he expects the log to be stored in some list and the log should be printed to the console with current time. The programmer expect everything to be handled by the logOutput just by passing string in the parameter, because an API should hide implementation details.

import java.time.LocalTime

val logs = mutableListOf<String>()

fun logOutput(out: String) {
    val currentTime = LocalTime.now()
    logs.add(out)
    println("Log: $out - at $currentTime")
}

Code above shows actual implementation of the logOutput function. Inside logOutput, it does all the work including saving the log and printing it out on the console. Even the logOutput function still uses an API, it gets current time through some java API which is the java.time.LocalTime (and that API calls again another system-level API that access the default time).

API is considered as a contract because the caller and the API needs to agree what they must provide and what they will return. In this scenario, the caller must provide a string as the log and the API must print it out on console for the caller.

Routing & Endpoint

When the client sends a request to the server, the request must be handled with the appropriate actions. Routing is the mechanism of handling specific request specified by request's URL and HTTP method to the appropriate codes that should handle them.

The request's URL can vary depending on the request, a URL must contain some component including scheme, domain name, and etc (find more about URL here). A web URL typically have a starting point or the root of all URL, it represents the primary address that clients use to communicate with the server. The primary address is called base URL.

When making request to the base URL, the server will typically respond by returning the default page of the website. If we want to do certain operations or access specific resources, we need to add additional path, this is called endpoint. Endpoint is typically concatenated to the base URL and is separated by /.

For example, the https://jsonplaceholder.typicode.com is an online web API we can use. The https://jsonplaceholder.typicode.com/ is the base URL or the root of all page the site has, accessing the base URL directly will give you the HTML file which is then rendered by the browser to display the website's content.

The website provides some endpoint including /posts, /comments, /albums, and some other. Accessing the base URL concatenated with the /posts endpoint https://jsonplaceholder.typicode.com/posts will give us a JSON file containing some user posts.

Overall, routing and endpoint determines how the server should respond to different requests by mapping them to specific endpoints or routes. The behavior of accessing specific endpoints will depend on the web API.

Endpoint example
Source: https://apipheny.io/api-endpoint/

Middleware

In backend, Middleware is a software that bridges between application and server. It is an intermediary that takes incoming requests from application and pass it into server. Middleware is not restricted to a single component, multiple middleware can be connected with other middleware or with other application logic before it is connected into the server.

The purpose of middleware is to pre-process incoming request before passing it into server to make the server can focus only on the actual logic. For example, middleware in the context of backend can be used check if user has logged in or not, checking for cookies (file that stores basic user information), add additional data or configuration, and handling request error.

Middleware that acts as a bridge between application and server
Source: https://medium.com/@seymarslan/what-ismiddleware-fdb2ad163388

API Gateway

Middleware general definition is a software that bridges between one system to another, an API gateway is a type of middleware focused to bridges between the client and the backend system. It is a centralized entry point to access the server, a unified interface for APIs consumer.

An API gateway may provide some functionality including:

  • Routing & Endpoint Management: API gateway handles the routing of requests to the appropriate backend services based on predefined rules. It manages the endpoints and exposes a unified interface for API consumers.

  • Protocol Translation: API Gateways can translate between different protocols. For example, it can handle requests in RESTful format from clients and convert it into another format such as GraphQL, WebSockets, or another API protocol.

  • Security & Authentication: API Gateways provide security mechanisms to protect APIs, they can handle authentication and authorization.

  • Request & Response Modifier: API Gateways can modify, validate, or transform requests and responses as they pass through, this can include validating or filtering requests.

  • Rate Limiting: API Gateways can limit the number of requests made by a client in a period of time.

  • Caching: API Gateways may store its previous response from previous API request, this is called caching. If the further request requested the same data, the API gateway doesn't need to forward it to the server, instead it responds with the data stored in the cache.

  • Monitoring & Analytics: API Gateways may log or monitor incoming request, API usage and performance. This allows administrators to gain insights into the traffic patterns, identify potential issues, and make optimal decision for optimization problem.

  • Load Balancing: Load balancing is the technique to distribute incoming request across multiple backend server to balance the load.

API Gateway illustration
Source: https://stackoverflow.com/questions/53477140/asp-net-core-api-gateway-middleware