book

APIs: A Strategy Guide

by Daniel Jacobson, Greg Brail, Dan Woods

December 2011

Beginner to intermediate

146 pages

4h 14m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Preface
Conventions Used in This BookUsing Code ExamplesAcknowledgmentsSafari® Books OnlineHow to Contact Us
1. The API Opportunity
Why We Wrote This BookWho Is This Book For?What Is an API?How Is an API Different from a Website?…But APIs and Websites Have a Lot in CommonWho Uses an API?Types of APIsWhy Now?
2. APIs as a Business Strategy
The Growth of APIsWhy You Might Need an APIYou Need a Second Mobile AppYour Customers or Partners Ask for an APIYour Site Is Getting Screen-ScrapedYou Need More Flexibility in Providing ContentYou Have Data to Make AvailableYour Competition Has an APIYou Want to Let Potential Partners Test the WatersYou Want to Scale Integration with Customers and PartnersAn API Improves the Technical Architecture
3. Understanding the API Value Chain
Defining the Value Chain: Ask Key QuestionsCreating a Private API Value ChainWays to Use a Private APIEfficiently Creating Public AppsSupporting Partner RelationshipsCreating Internal AppsBenefits of Private APIsRisks Related to Private APIsCreating a Public API Value ChainWays to Use a Public APIEnhancing Value and Extending Your BrandReaching Niche MarketsExpanding Reach Across Platforms and DevicesFostering InnovationBenefits of Public APIsRisks Related to Public APIsShifting: Private to Public, Public to PrivateNetflix: Public API to Private APIAPI Business Models for Working with PartnersExpanding Reach: More Apps, More PlatformsGaining Indirect RevenueIncreasing Innovation through PartnersIncreasing Application Value through IntegrationFreemium UseProgrammable Web’s View of API Business Models
4. Crafting Your API Product Strategy
Establish a Clear Business ObjectiveHave a Vision for Your APIAPI Strategy BasicsAPIs Need a Business SponsorTypes of API StrategiesPrivate API StrategiesPublic API StrategiesPutting Together a TeamThe Developer EvangelistObjections to APIs
5. Key Design Principles for APIs
Designing APIs for Specific AudiencesDesigning for DevelopersDesigning for Application UsersBest Practices for API DesignDifferentiate Your APIMake Your API Easy to Try and UseMake Your API Easy to UnderstandDon’t Do Anything WeirdLess Is MoreTarget a Specific Developer SegmentTechnical Considerations for API DesignRESTPure RESTPragmatic RESTPragmatic RESTful PrinciplesExample: Designing with Pragmatic RESTSometimes REST Needs a RestXML vs. JSONVersioning and API DesignHaving a Mediation LayerTaking the Plunge: Going VersionlessDesigning Infrastructure for APIsData Center or Cloud?Caching StrategiesControlling API Traffic
6. API Security and User Management
User ManagementDo You Need to Start from Scratch?Questions to Ask About User ManagementIdentificationAuthentication: Proving Who You AreUsernames and PasswordsSession-Based AuthenticationOther Authentication MethodsOAuthFortify Authentication with SSLEncryptionThreat Detection and PreventionSQL InjectionXML and JSON AttacksData MaskingGeneral RecommendationsAPI Data Protection RecommendationsAPI Security Recommendations
7. Legal Considerations for Your API Strategy
Rights ManagementIn Practice: Rights Management at NPRContractsRights Tagging SystemRights Management SystemContracts and Terms of UsePrivacy PoliciesData Retention PoliciesAttribution of Content and BrandingResponding to Misuse
8. Operating and Managing an API
Operating an APIOperational Information on Demand: The API Status PageHandling Ops IssuesService-Level AgreementsIssue ManagementOperational Monitoring and SupportDocumenting Your APIOperations RunbookTraffic Management ApproachesBusiness-Level Traffic ManagementQuotasThrottlingOperational Traffic ManagementSpike ArrestingTraffic Management and ScalabilityAPI GatewaysApproaches to API Gateways in the Cloud
9. Measuring the Success of Your API
Handling API MetricsWhy Capture Usage Metrics?Requests and ResponsesImpressionsLoyaltyOperational MetricsEffectiveness MetricsPerformance MetricsKey Questions to Ask about API PerformanceHow Metrics Evolved at NPR

10. Engaging Developers to Drive Adoption
What Motivates Developers?Key Parts of a Developer Program OfferingProduct (or First You Need a Great API!)Access to Your API and to YouBusiness Terms and SLA ExpectationsContentAwareness of Your APIFocus on the Full Developer ExperienceCommunityThe Anatomy of a Developer PortalThe Dos and Don’ts of Developer EngagementDosLook Alive!Target Alpha GeeksCreate Scale and LeverageFoster Developer CommunitySeek Out Key InfluencersPlug into Other Developer CommunitiesDon’tsNo differentiation for the API (it’s just like so-and-so’s API)Making it hard to sign upMarketing the APIOverfocus on the developer portalSelecting the wrong community managerHaving an overly broad focus
11. Epilogue: Just the Beginning
About the Authors
Copyright

Overview

Programmers used to be the only people excited about APIs, but now a growing number of companies see them as a hot new product channel. This concise guide describes the tremendous business potential of APIs, and demonstrates how you can use them to provide valuable services to clients, partners, or the public via the Internet. You’ll learn all the steps necessary for building a cohesive API business strategy from experts in the trenches.

Facebook and Twitter APIs continue to be extremely successful, and many other companies find that API demand greatly exceeds website traffic. This book offers executives, business development teams, and other key players a complete roadmap for creating a viable API product.

Learn about the rise of APIs and why your business might need one
Understand the roles of asset owners, providers, and developers in the API value chain
Build strategies for designing, implementing, and marketing your product
Devise an effective process for security and user management
Address legal issues, such as rights management and terms of use
Manage traffic and user experience with a reliable operating model
Determine the metrics you need to measure your API’s success

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Patterns of Enterprise Application Architecture

Publisher Resources

ISBN: 9781449321628Errata Page

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills