Category: REST API

How to Secure Your REST API using Proven Best Practices

Update: Stormpath now secures authentication to your API- without code! (Even if you’re working with SAML!)   We already showed you how to build a Beautiful REST+JSON API, but how do you build API security? At Stormpath, we spent 18 months researching REST API security best practices, implementing them in the Stormpath Authentication API, and figuring …

Stormpath Launches Enhanced API

Last week, amid the hoopla of our fundraising announcement, we ended Private Beta and released major enhancements to the API. Many of these came from user feedback.** In the coming months, we will be building out the SDKs and sample apps to make it easier to connect to the Stormpath API. Of course, there are …

Beautiful REST + JSON APIs with JAX-RS and Jersey

Designing and building a really clean and intuitive REST API is no small feat. You have to worry about resources, collections of resources, pagination, query parameters, references to other resources, which HTTP methods to use, HTTP caching, security, and more. And you have to make sure it lasts and doesn’t break clients as you add …

How to Secure an API – Tips for REST + JSON Developers

Update June 2014: Stormpath now secures authentication to your API- without code! At the Silicon Valley Java Users Group, our CTO Les Hazlewood gave a presentation on API Design. Since we get so many questions about API Security, we thought developers might want to see the excerpted section covering: Sessions Recommended authentication protocols 401 vs …

Designing REST + JSON APIs

Update June 2014: Stormpath now secures authentication to your API—without code! Contact our sales team for more information! Les recently gave a talk on “Designing a Beautiful REST + JSON API” at the San Francisco Java Users Group, which covers 18 months of his research into API design. This video on API design, includes a …

Spring MVC REST Exception Handling Best Practices (part 2)

In part 1 of this 2-part series, we discussed a best-practice error representation (format) that should be returned to a REST API caller when an error is encountered. In this article (part 2), we’ll show how to produce those representations from a REST API written using Spring MVC. Spring Exception Handling Spring MVC has two …

Spring MVC REST Exception Handling Best Practices (part 1)

If you’re already using Spring to build your application, and you need to serve a ReST API, Spring MVC can be a good choice to write your REST endpoints. However, representing errors or problems cleanly in a RESTful way may not be immediately obvious since Spring MVC is so often referenced for building user interfaces. …