RESTful API Design With NodeJS & Restify
http://code.tutsplus.com/tutorials/restful-api-design-with-nodejs-restify--cms-22637
The RESTful API consists of two main concepts: Resource, and Representation. Resource can be any object associated with data, or identified with a URI (more than one URI can refer to the same resource), and can be operated using HTTP methods. Representation is the way you display the resource. In this tutorial we will cover some theoretical information about RESTful API design, and implement an example blogging application API by using NodeJS.
Resource
Choosing the correct resources for a RESTful API is an important section of designing. First of all, you need to analyze your business domain and then decide how many and what kind of resources will be used that are relevant to your business need. If you are designing a blogging API, you will probably use Article, User, and Comment. Those are the resource names, and the data associated with that is the resource itself:
01
02
03
04
05
06
07
08
09
10
11
|
{ "title" : "How to Design RESTful API" , "content" : "RESTful API design is a very important case in the software development world." , "author" : "huseyinbabal" , "tags" : [ "technology" , "nodejs" , "node-restify" ] "category" : "NodeJS" } |
Resource Verbs
You can proceed with a resource operation after you have decided on the required resources. Operation here refers to HTTP methods. For example, in order to create an article, you can make the following request:
01
02
03
04
05
06
07
08
09
10
|
POST /articles HTTP/1.1 Host: localhost:3000 Content-Type: application/json { "title": "RESTful API Design with Restify", "slug": "restful-api-design-with-restify", "content": "Pellentesque habitant morbi tristique senectus et netus et malesuada fames ac turpis egestas.", "author": "huseyinbabal" } |
In the same way, you can view an existing article by issuing the following request:
1
2
3
|
GET /articles/123456789012 HTTP/1.1 Host: localhost:3000 Content-Type: application/json |
What about updating an existing article? I can hear that you are saying:
I can make another POST request to /articles/update/123456789012 with the payload.
Maybe preferable, but the URI is becoming more complex. As we said earlier, operations can refer to HTTP methods. This means, state the update operation in the HTTP method instead of putting that in the URI. For example:
01
02
03
04
05
06
07
08
09
10
11
12
13
14
15
|
PUT /articles/123456789012 HTTP/1.1 Host: localhost:3000 Content-Type: application/json { "title": "Updated How to Design RESTful API", "content": "Updated RESTful API design is a very important case in the software development world.", "author": "huseyinbabal", "tags": [ "technology", "nodejs", "restify", "one more tag" ] "category": "NodeJS" } |
By the way, in this example you see tags and category fields. Those don't need to be mandatory fields. You can leave them blank and set them in future.
Sometimes, you need to delete an article when it is outdated. In that case you can use a DELETE HTTP request to /articles/123456789012.
HTTP methods are standard concepts. If you use them as an operation, you will have simple URIs, and this kind of simple API will help you gain happy consumers.
What if you want to insert a comment to an article? You can select the article and add a new comment to the selected article. By using this statement, you can use the following request:
1
2
3
4
5
6
7
|
POST /articles/123456789012/comments HTTP/1.1 Host: localhost:3000 Content-Type: application/json { "text": "Wow! this is a good tutorial", "author": "john doe" } |
The above form of resource is called as a sub-resource. Comment is a sub-resource of Article.The Comment payload above will be inserted in the database as a child of Article. Sometimes, a different URI refers to the same resource. For example, to view a specific comment, you can use either:
1
2
3
|
GET /articles/123456789012/comments/123 HTTP/1.1 Host: localhost:3000 Content-Type: application/json |
or:
1
2
3
|
GET /comments/123456789012 HTTP/1.1 Host: localhost:3000 Content-Type: application/json |
Versioning
In general, API features change frequently in order to provide new features to consumers. In that case, two versions of the same API can exist at the same time. In order to separate those two features, you can use versioning. There are two forms of versioning
- Version in URI: You can provide the version number in the URI. For example,
/v1.1/articles/123456789012
. - Version in Header: Provide the version number in the header, and never change the URI. For example:
1
2
3
|
GET /articles/123456789012 HTTP/1.1 Host: localhost:3000 Accept-Version: 1.0 |
Actually, the version changes only the representation of the resource, not the concept of the resource. So, you do not need to change the URI structure. In v1.1, maybe a new field was added to Article. However, it still returns an article. In the second option, the URI is still simple and consumers do not need to change their URI in client-side implementations.
It is important to design a strategy for situations where the consumer does not provide a version number. You can raise an error when version is not provided, or you can return a response by using the first version. If you use the latest stable version as a default, consumers can get many errors for their client-side implementations.
Representation
Representation is the way that an API displays the resource. When you call an API endpoint, you will get returned a resource. This resource can be in any format like XML, JSON, etc. JSON is preferable if you are designing a new API. However, if you are updating an existing API that used to return an XML response, you can provide another version for a JSON response.
That's enough theoretical information about RESTful API design. Let's have a look at real life usage by designing and implementing a Blogging API using Restify.
Blogging REST API
Design
In order to design a RESTful API, we need to analyze the business domain. Then we can define our resources. In a Blogging API, we need:
- Create, Update, Delete, View Article
- Create a comment for a specific Article, Update, Delete, View, Comment
- Create, Update, Delete, View User
In this API, I will not cover how to authenticate a user in order to create an article or comment. For the authentication part, you can refer to the Token-Based Authentication with AngularJS & NodeJS tutorial.
Our resource names are ready. Resource operations are simply CRUD. You can refer to the following table for a general showcase of API.
Resource Name | HTTP Verbs | HTTP Methods |
---|---|---|
Article | create Article update Article delete Article view Article |
POST /articles with Payload PUT /articles/123 with Payload DELETE /articles/123 GET /article/123 |
Comment | create Comment update Coment delete Comment view Comment |
POST /articles/123/comments with Payload PUT /comments/123 with Payload DELETE /comments/123 GET /comments/123 |
User | create User update User delete User view User |
POST /users with Payload PUT /users/123 with Payload DELETE /users/123 GET /users/123 |
Project Setup
In this project we will use NodeJS with Restify. The resources will be saved in the MongoDB database. First of all, we can define resources as models in Restify.
Article
01
02
03
04
05
06
07
08
09
10
11
12
13
|
var mongoose = require( "mongoose" ); var Schema = mongoose.Schema; var ArticleSchema = new Schema({ title: String, slug: String, content: String, author: { type: String, ref: "User" } }); mongoose.model( 'Article' , ArticleSchema); |
Comment
01
02
03
04
05
06
07
08
09
10
11
12
13
14
15
|
var mongoose = require( "mongoose" ); var Schema = mongoose.Schema; var CommentSchema = new Schema({ text: String, article: { type: String, ref: "Article" }, author: { type: String, ref: "User" } }); mongoose.model( 'Comment' , CommentSchema); |
User
There won't be any operation for the User resource. We will assume that we already know the current user who will be able to operate on articles or comments.
You may ask where this mongoose module comes from. It is the most popular ORM framework for MongoDB written as a NodeJS module. This module is included in the project within another config file.
Now we can define our HTTP verbs for the above resources. You can see the following:
01
02
03
04
05
06
07
08
09
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
|
var restify = require( 'restify' ) , fs = require( 'fs' ) var controllers = {} , controllers_path = process.cwd() + '/app/controllers' fs.readdirSync(controllers_path).forEach( function (file) { if (file.indexOf( '.js' ) != -1) { controllers[file.split( '.' )[0]] = require(controllers_path + '/' + file) } }) var server = restify.createServer(); server .use(restify.fullResponse()) .use(restify.bodyParser()) // Article Start server.post( "/articles" , controllers.article.createArticle) server.put( "/articles/:id" , controllers.article.updateArticle) server.del( "/articles/:id" , controllers.article.deleteArticle) server.get({path: "/articles/:id" , version: "1.0.0" }, controllers.article.viewArticle) server.get({path: "/articles/:id" , version: "2.0.0" }, controllers.article.viewArticle_v2) // Article End // Comment Start server.post( "/comments" , controllers.comment.createComment) server.put( "/comments/:id" , controllers.comment.viewComment) server.del( "/comments/:id" , controllers.comment.deleteComment) server.get( "/comments/:id" , controllers.comment.viewComment) // Comment End var port = process.env.PORT || 3000; server.listen(port, function (err) { if (err) console.error(err) else console.log( 'App is ready at : ' + port) }) if (process.env.environment == 'production' ) process.on( 'uncaughtException' , function (err) { console.error(JSON.parse(JSON.stringify(err, [ 'stack' , 'message' , 'inner' ], 2))) }) |
In this code snippet, first of all the controller files that contain controller methods are iterated and all the controllers are initialized in order to execute a specific request to the URI. After that, URIs for specific operations are defined for basic CRUD operations. There is also versioning for one of the operations on Article.
For example, if you state version as 2
in Accept-Version header, viewArticle_v2
will be executed.viewArticle
and viewArticle_v2
both do the same job, showing the resource, but they show Article resource in a different format, as you can see in the title
field below. Finally, the server is started on a specific port, and some error reporting checks are applied. We can proceed with controller methods for HTTP operations on resources.
article.js
001
002
003
004
005
006
007
008
009
010
011
012
013
014
015
016
017
018
019
020
021
022
023
024
025
026
027
028
029
030
031
032
033
034
035
036
037
038
039
040
041
042
043
044
045
046
047
048
049
050
051
052
053
054
055
056
057
058
059
060
061
062
063
064
065
066
067
068
069
070
071
072
073
074
075
076
077
078
079
080
081
082
083
084
085
086
087
088
089
090
091
092
093
094
095
096
097
098
099
100
101
102
103
104
105
106
107
108
109
110
111
112
|
var mongoose = require( 'mongoose' ), Article = mongoose.model( "Article" ), ObjectId = mongoose.Types.ObjectId exports.createArticle = function (req, res, next) { var articleModel = new Article(req.body); articleModel.save( function (err, article) { if (err) { res.status(500); res.json({ type: false , data: "Error occured: " + err }) } else { res.json({ type: true , data: article }) } }) } exports.viewArticle = function (req, res, next) { Article.findById( new ObjectId(req.params.id), function (err, article) { if (err) { res.status(500); res.json({ type: false , data: "Error occured: " + err }) } else { if (article) { res.json({ type: true , data: article }) } else { res.json({ type: false , data: "Article: " + req.params.id + " not found" }) } } }) } exports.viewArticle_v2 = function (req, res, next) { Article.findById( new ObjectId(req.params.id), function (err, article) { if (err) { res.status(500); res.json({ type: false , data: "Error occured: " + err }) } else { if (article) { article.title = article.title + " v2" res.json({ type: true , data: article }) } else { res.json({ type: false , data: "Article: " + req.params.id + " not found" }) } } }) } exports.updateArticle = function (req, res, next) { var updatedArticleModel = new Article(req.body); Article.findByIdAndUpdate( new ObjectId(req.params.id), updatedArticleModel, function (err, article) { if (err) { res.status(500); res.json({ type: false , data: "Error occured: " + err }) } else { if (article) { res.json({ type: true , data: article }) } else { res.json({ type: false , data: "Article: " + req.params.id + " not found" }) } } }) } exports.deleteArticle = function (req, res, next) { Article.findByIdAndRemove( new Object(req.params.id), function (err, article) { if (err) { res.status(500); res.json({ type: false , data: "Error occured: " + err }) } else { res.json({ type: true , data: "Article: " + req.params.id + " deleted successfully" }) } }) } |
You can find an explanation of basic CRUD operations on the Mongoose side below:
- createArticle: This is a simple save operation on
articleModel
sent from the request body. A new model can be created by passing the request body as a constructor to a model likevar articleModel = new Article(req.body)
. - viewArticle: In order to view article detail, an article ID is needed in the URL parameter.
findOne
with an ID parameter is enough to return article detail. - updateArticle: Article update is a simple find query and some data manipulation on the returned article. Finally, the updated model needs to be saved to the database by issuing a
save
command. - deleteArticle:
findByIdAndRemove
is the best way to delete an article by providing the article ID.
The Mongoose commands mentioned above are simply static like method through Article object that is also a reference of the Mongoose schema.
comment.js
01
02
03
04
05
06
07
08
09
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
|
var mongoose = require( 'mongoose' ), Comment = mongoose.model( "Comment" ), Article = mongoose.model( "Article" ), ObjectId = mongoose.Types.ObjectId exports.viewComment = function (req, res) { Article.findOne({ "comments._id" : new ObjectId(req.params.id)}, { "comments.$" : 1}, function (err, comment) { if (err) { res.status(500); res.json({ type: false , data: "Error occured: " + err }) } else { if (comment) { res.json({ type: true , data: new Comment(comment.comments[0]) }) } else { res.json({ type: false , data: "Comment: " + req.params.id + " not found" }) } } }) } exports.updateComment = function (req, res, next) { var updatedCommentModel = new Comment(req.body); console.log(updatedCommentModel) Article.update( { "comments._id" : new ObjectId(req.params.id)}, { "$set" : { "comments.$.text" : updatedCommentModel.text, "comments.$.author" : updatedCommentModel.author}}, function (err) { if (err) { res.status(500); res.json({ type: false , data: "Error occured: " + err }) } else { res.json({ type: true , data: "Comment: " + req.params.id + " updated" }) } }) } exports.deleteComment = function (req, res, next) { Article.findOneAndUpdate({ "comments._id" : new ObjectId(req.params.id)}, { "$pull" : { "comments" : { "_id" : new ObjectId(req.params.id)}}}, function (err, article) { if (err) { res.status(500); res.json({ type: false , data: "Error occured: " + err }) } else { if (article) { res.json({ type: true , data: article }) } else { res.json({ type: false , data: "Comment: " + req.params.id + " not found" }) } } }) } |
When you make a request to one of the resource URIs, the related function stated in the controller will be executed. Every function inside the controller files can use the req and res objects. The comment resource here is a sub-resource of Article. All the query operations are made through the Article model in order to find a sub-document and make the necessary update. However, whenever you try to view a Comment resource, you will see one even if there is no collection in MongoDB.
Other Design Suggestions
- Select easy-to-understand resources in order to provide easy usage to consumers.
- Let business logic be implemented by consumers. For example, the Article resource has a field calledslug. Consumers do not need to send this detail to the REST API. This slug strategy should manage on the REST API side to reduce coupling between API and consumers. Consumers only need to send title detail, and you can generate the slug according to your business needs on the REST API side.
- Implement an authorization layer for your API endpoints. Unauthorized consumers can access restricted data that belongs to another user. In this tutorial, we did not cover the User resource, but you can refer to Token Based Authentication with AngularJS & NodeJS for more information about API authentications.
- User URI instead of query string.
/articles/123
(Good),/articles?id=123
(Bad). - Do not keep the state; always use instant input/output.
- Use noun for your resources. You can use HTTP methods in order to operate on resources.
Finally, if you design a RESTful API by following these fundamental rules, you will always have a flexible, maintainable, easily understandable system.
RESTful API Design With NodeJS & Restify的更多相关文章
- Principles of good RESTful API Design 好的 RESTful API 设计
UPDATE: This post has been expanded upon and converted into an eBook. Good API design is hard! An AP ...
- RESTful API Design: 13 Best Practices to Make Your Users Happy
RESTful API Design: 13 Best Practices to Make Your Users Happy First step to the RESTful way: make s ...
- RESTful API Design
https://restful-api-design.readthedocs.org/en/latest/scope.html http://blog.mashape.com/30-ways-to-m ...
- RESTful API 设计指南【转】
网络应用程序,分为前端和后端两个部分.当前的发展趋势,就是前端设备层出不穷(手机.平板.桌面电脑.其他专用设备......). 因此,必须有一种统一的机制,方便不同的前端设备与后端进行通信.这导致AP ...
- 好RESTful API的设计原则
说在前面,这篇文章是无意中发现的,因为感觉写的很好,所以翻译了一下.由于英文水平有限,难免有出错的地方,请看官理解一下.翻译和校正文章花了我大约2周的业余时间,如有人愿意转载请注明出处,谢谢^_^ P ...
- Django RESTful API 设计指南
网络应用程序,分为前端和后端两个部分.当前的发展趋势,就是前端设备层出不穷(手机.平板.桌面电脑.其他专用设备......). 因此,必须有一种统一的机制,方便不同的前端设备与后端进行通信.这导致AP ...
- RESTful API的设计原则
好RESTful API的设计原则 说在前面,这篇文章是无意中发现的,因为感觉写的很好,所以翻译了一下.由于英文水平有限,难免有出错的地方,请看官理解一下.翻译和校正文章花了我大约2周的业余时间, ...
- 好的RESTful API的设计原则
转载自一位大佬 英文原版 Principles of good RESTful API Design Good API design is hard! An API represents a cont ...
- 【转载】RESTful API 设计指南
作者: 阮一峰 日期: 2014年5月22日 网络应用程序,分为前端和后端两个部分.当前的发展趋势,就是前端设备层出不穷(手机.平板.桌面电脑.其他专用设备......). 因此,必须有一种统一的机制 ...
随机推荐
- 端口映射工具 redir/socat/xinetd - 运维技术 - 开源中国社区
端口映射工具 redir/socat/xinetd - 运维技术 - 开源中国社区 端口映射工具 redir/socat/xinetd 10人收藏此文章, 我要收藏 发表于3天前(2013-08 ...
- oschina 建站系统
建站系统 分类网站程序(9) 众筹平台(2) 团购网站系统(14) 开源轻博客系统(8) 开源博客系统(279) 视频网站系统(9) 开源微博工具(93) 论坛系统BBS(129) 建站系统CMS(5 ...
- selenium webdriver缺陷
关闭 selenium webdriver缺陷 除了http://573301735.com/?p=5126讲 的,昨天又发现一个让我1个小时生不如死的问题,就是使用两个不同的配置文件来初始化dri ...
- 使用EXCEL设置“下拉菜单”选项功能
原创作品.出自 "深蓝的blog" 博客.欢迎转载.转载时请务必注明出处,否则有权追究版权法律责任. 深蓝的blog:http://blog.csdn.net/huangyanlo ...
- BlueJ的code pad
Java的REPL BlueJ的code pad实用吗?Java对(Read-Eval-Print Loop)不提供原生支持.这样的"交互式解释器"或"交互式编程环境&q ...
- jquery关于表格隐藏和显示问题
1. 关于指定表格指定列隐藏显示 $(":checkbox[name*=month]").each(function(){ if(!$(this).attr("check ...
- hdu1159 LCS模板题
题目分析 pid=1159">原题地址 最简单的最长公共子序列(LCS)问题的模板题了.不解释. ------------------------------------------- ...
- HTML中的div标签
在网页制作过程过中,能够把一些独立的逻辑部分划分出来.放在一个<div>标签中,这个<div>标签的作用就相当于一个容器. 为了使逻辑更加清晰,我们能够为这一个独立的逻辑部分设 ...
- ubuntu下ssh使用 与 SCP 使用
1 ssh远程登录服务器 ssh username@remote_ip #将username换成自己的用户名,将remote_ip换成远程服务器的ip地址 2 将文件/文件夹从远程服务器拷至本地(sc ...
- linux--shell script
下面是最近学习shell script的一些知识点总结 ***博客园-邦邦酱好*** 1.介绍shell是一个文字接口,让我们与系统沟通.shell script就是针对shell所写的脚本.它就 ...