You're reading from Building an API Product Design, implement, release, and maintain API products that meet user needs

Product type Paperback

Published in Jan 2024

Last Updated in Jan 2024

Publisher Packt

ISBN-13 9781837630448

Length 278 pages

Edition 1st Edition

Concepts

Design

Author (1):

Bruno Pedro

View More author details

Table of Contents (26) Chapters

Preface

1. Part 1:The API Product

2. Chapter 1: What Are APIs? FREE CHAPTER

3. Chapter 2: API User Experience

4. Chapter 3: API-as-a-Product

5. Chapter 4: API Life Cycle

6. Part 2:Designing an API Product

7. Chapter 5: Elements of API Product Design

8. Chapter 6: Identifying an API Strategy

9. Chapter 7: Defining and Validating an API Design

10. Chapter 8: Specifying an API

11. Part 3:Implementing an API Product

12. Chapter 9: Development Techniques

13. Chapter 10: API Security

14. Chapter 11: API Testing

15. Chapter 12: API Quality Assurance

16. Part 4:Releasing an API Product

17. Chapter 13: Deploying the API

18. Chapter 14: Observing API Behavior

19. Chapter 15: Distribution Channels

20. Part 5:Maintaining an API Product

21. Chapter 16: User Support

22. Chapter 17: API Versioning

23. Chapter 18: Planning for API Retirement

24. Index

Why subscribe?

25. Other Books You May Enjoy

Authentication

The first step to understanding who is using your API is being able to identify consumers. The role of authentication is to establish a valid identity for all the users of your API. Each API consumer becomes an identified entity that you can track individually. With authentication, every request to your API can be mapped to a single consumer. Let’s see how you can set up your API to enable authentication. First, let’s look at how you can authenticate users:

HTTP basic authentication: On each request, the consumer sends a username and password to the server. The data is encoded using the Base64 method, and unless you’re using a secure HTTP server, this method is not considered secure because the information can be intercepted.
API key: Consumers send a key along with the other information on each request. The API key can be sent on an HTTP header, the query string, or a specific field. API keys can have any format and are typically an...