Articles
π 7 Practices to Secure Third-Party API Usage
This piece highlights the potential security risks of using third-party APIs and suggests seven strategies to mitigate these risks. These include employing zero-trust architecture, implementing comprehensive authorization and authentication methods, and devising firm governance rules.
π 7 Tips on How to Navigate API Documentation
The piece provides guidance on navigating API documentation and addresses the challenges related to inadequate documentation. It proposes seven tips for a better navigation experience, such as having a specific use-case in mind, regularly checking the changelog for updates, and ensuring enhancement of the documentation for future users.
API discovery involves understanding who is searching for APIs, the reasons behind it, and the platforms being used for the search. The article uses APIs.json as an auxiliary for API discovery, taking into account factors such as the ever-changing API landscape, access control, governance, and change management.
π API Governance is About Limiting Speed
The piece puts forth an argument about restricting the pace of API creation and consumption to ensure effective API governance. It points out possible issues related to an excess focus on speed, such as API sprawl, and advocates for a systematic approach that takes into account the entire API lifecycle.
π Apache APISIX Plugin Priority, a Leaky Abstraction?
This article explores the details of Apache APISIX's plugin priority and phases, explaining how they affect plugin execution order. It talks about the function of priority and the conceptual grouping of plugins by phases, and how these two factors work together to influence plugin execution order.
π Exploring The Role of Cloud-Native in APIs
The article examines the rising trend of cloud-native solutions in API management, discussing the benefits and challenges of using such tools. It concludes that cloud-native approaches are becoming dominant in API management, with Kubernetes playing a significant role.
π GraphQL is Finally Boring
Contrary to the opinion that GraphQL's popularity is waning, this article argues that GraphQL has simply matured. It discusses GraphQL's key roles in API composition, and mentions its widespread adoption across various industries.
π REST vs RPC: Verbs are just not that evil
The article tackles the ongoing debate of REST vs RPC, discussing their historical background and arguing that the REST design patterns should not always be taken literally. The author also argues against using POST as the only method to create resources.
π TBMQ β meet scalable, fault-tolerant, and efficient open-source MQTT broker
This article introduces TBMQ, an open-source MQTT broker optimized for scalability, fault tolerance, and efficiency. Through two common MQTT use cases, the article demonstrates how TBMQ utilizes Kafka for data durability and message delivery.
Apache Kafka
π Understanding Kafka Tiered Storage
This piece discusses Kafka Tiered Storage, a solution for data management and storage issues that arise as data volumes grow in Kafka clusters. The solution employs a tiered approach, which uses different storage layers based on data characteristics to optimize costs and performance.
The release of Strimzi 1.0.0 has been held back due to the removal of ZooKeeper from Apache Kafka. The team has decided to wait until the removal process completes before they release a major version. Despite not reaching 1.0, Strimzi 0.38.0 is stable and ready for production.
Gravitee
π Gartner 2023 Critical Capabilities Report for API management, explained (pt. 4)
This report examines API productization, the process of making APIs externally accessible and user-friendly while managing requirements. Gravitee aids in this process through a developer portal that supports multiple APIs and offers features such as subscription management, monetization, and API monitoring.
Postman
π Introducing file storage for tests and requests
Postman has introduced a new feature, file storage, for uploading files for API requests and tests. This allows for more effortless testing and collaboration between teams.
π GraphQL vs. REST
The article compares GraphQL and REST, two different approaches to building APIs. GraphQL uses a single endpoint for all operations whereas REST uses multiple endpoints. Despite the popularity of REST, GraphQL offers more flexibility and efficiency.
π What is API latency?
API latency, or the time taken for an API to respond to a request, is essential for a strong user experience. The blog clarifies its definition, the factors that contribute to it, and methods to measure it.
Tyk
π Tyk 5.2: See everything with powerful new OpenTelemetry Tracing
Tyk 5.2 introduces a new feature, OpenTelemetry Tracing, which offers comprehensive API observability. In addition, it provides new features for middleware configurations, granular control with per-endpoint timeouts, and improved usage tracking and security.
Acquisitions
π€ IBM to buy StreamSets and webMethods from Software AG
IBM, backed by β¬2.3 billion, is set to acquire StreamSets and webMethods from Software AG. The acquisition is expected to strengthen IBM's hybrid cloud and AI operations by offering smooth data ingestion for WatsonX and simplified API management.
Releases
π AsyncAPI 3.0.0
The AsyncAPI 3.0.0 release introduces major improvements and new features for API specifications. These changes aim to improve the clarity, consistency, and usability of the AsyncAPI specification.
π Debezium 2.5.0
The release of Debezium 2.5.0.Final includes ten major changes and several smaller improvements. It now supports MySQL 8.2.0, and offers advanced features such as watermarking strategies for incremental snapshotting, Redis Schema History retries, and improved handling of large documents in MongoDB.
Books
π API Management: An Architect's Guide to Developing and Managing APIs for Your Organization 2nd ed. Edition by Brajesh De
The second edition of "API Management" offers insight into recent developments in API design, as well as the implementation of gPRC, GraphQL, microservices, and service mesh. It's recommended for developers, CxOs, and software architects interested in using APIs for digital transformation strategies.
Top comments (0)