22

TLDR: crappy api + idiot ex client combo rant // devam si duška

I saw a lot of people bitching about APIs that don't return proper response codes and other stuff..

Well let me tell you a story. I used to work on a project where we had to do something like booking, but better..crossbreed with the Off&Away bidding site (which btw we had to rip off the .js stuff and reverse engineer the whole timer thingy), using free versions of everything..even though money wasn't an issue (what our client said). Same client decided to go with transhotel because it was sooooo gooood... OK? Why did noone heard of them then?

Anyhow, the api was xml based.. we had to send some xml that was validated against a schema, we received another that was supposed to be validated againts another schema.. and so on and so on..
...
...
supposed..
The API docs were nonexistent.. What was there, was broken English or Spanish.. Even had some comments like Add This & that to chapter xy.. Of course that chapter didn't even exist yet. :( And the last documentation they had, was really really old..more than a year, with visible gaps, we got the validation schemas not even listed in the docs, let alone described properly.
Yaaay! And that was not everything.. besides wrong and missing data, the API itself caused the 500 server error whenever you were no longer authenticated.
Of course it didn't tell you that your session was dead.. Just pooof! Unhandled crap everywhere!

And the best part?! We handled that login after inspecting what the hell happened, but sent the notification to the company anyways.. We had a conf call, and sent numerous emails explaining to them what a 'try catch' is and how they should handle the not authenticated error <= BTW they should have had a handled xml response for that, we got the schema for it! But they didn't. Anyhow, after two agonizing days talking back and forth they at least set up the server to be available again after the horrified 500 error. Before, it even stopped responding until reset (don't ask me how they managed to do that).
Oh yeah, did I mention this was a worldwide renown company?! Where everybody spoke/wrote English?! Yup, they have more than 700 people there, of course they speak English! <= another one of my ex clients fabulous statements... making me wanna strangle him with his tie.. I told him I am not talking to them because no-one there understood/spoke English and it would be a waste of my time.. Guess who spent almost 3 hours to talk to someone who sounded like a stereotypical Indian support tech guy with a flue speaking Italian?! // no offence please for the referenced parties!!

So yeah, sadly I don't have SS of the fucked up documentation..and I cannot post more details (not sure if the NDA still holds even though they canceled the project).. Not that I care really.. not after I saw how the client would treat his customers..

Anywayz I found on the interwebz some proof that this shitty api existed..
picture + link: https://programmableweb.com/api/...

SubRant: the client was an idiot! Probably still is, but no longer my client..
Wanted to store the credit card info + cvc and owner info etc.. in our database.. for easier second payment, like on paypal (which he wanted me to totally customize the payment page of paypal, and if that wasn't possible to collect user data on our personalized payment page and then just send it over to paypal api, if possible in plaintext, he just didn't care as long as he got his personalized payment page) or sth.... I told the company owner that they are fucking retards if they think they can pull this off & that they will lose all their (potential) clients if they figure that out.. or god forbid someone hacked us and stole the data.. I think this shit is also against the law..
I think it goes without saying what happened next.. called him ignorant stupid fucktard to his face and told him I ain't doing that since our company didn't even had a certificate to store the last 4 numbers.. They heard my voice over the whole firm.. we had fish-tank like offices, so they could all see me yelling at the director..
Guess who got laid off due to not being needed anymore the next day?! It was the best day of my life..so far!! Never have I been happier to lose my job!!

P.S. all that crap + test + the whole backand for analysis, the whole crm + campaign emails etc.. the client wanted done in 6 months.. O.o

P.P.S. almost shat my pants when devRant notified my I cannot post and wanted to copy the message and then everything disappeard.. thank god I have written this in the n++ xD

Comments
  • 8
    @linuxxx I want to know what you make of idiots who want to store your cc number + cvc in plaintext in their db..
  • 5
    @sladuled I hope they die in agonising pain!
  • 5
    @linuxxx lol burn them at stake.. but I think like most idiota they will live happily ever after.. unfair!
  • 2
    @sladuled awww I hope your current job is better than that one 🍀
  • 2
    So frustrating. Rip my hair out frustrating. Bang their head against a stone wall frustrating.
  • 5
    @CurseMeSlowly It is, much much better! And since we are a small country what little of local clients we have, we actually chare one or two with my previous conpany. Was scarred that yelling at the ex director might get out, but when I asked the current boss he said not to worry. He knew them all.. said they are all bunch of idiots anyways xD
  • 1
    @sladuled of course .. smart people know who is not smart :D
  • 4
    @drant the API part or the idiots part?? xD
  • 1
    @sladuled both but the idiot part more. Shit like that makes me want to put my fist through my screen.
    Then buy an old heavy crt so that I can bust someone's head with it.
  • 3
    @drant 😂😂 i think we still have one of those at home.. can send it to you 😉😂😇
  • 1
    @sladuled oh yes! Looks like you won't need it anyway now.
    Me... Oh I need it bad.
Add Comment