Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Get a devDuck
Rubber duck debugging has never been so cute! Get your favorite coding language devDuck
Buy Now
-
“It’s okay, you can go, the pain will be over soon, thanks for everything, I love you”
I never thought saying these words to my cat would be so hard.
I’ll miss you.37 -
Client "Can you change your API? If a POST return 201 ours system crashes reading it"
Me "Your system WHAT?????"13 -
The CEO at the company I work at has been telling our partners that our PIA is ready. It took me a week to figure out what the hell a PIA was but he actually meant API6
-
Funny. Drunk, standing here waiting for my fries and thinking about rest api implementations. I'm weird.4
-
REST clients today can use upwards to 1000MB of memory. This leads to a poor experience for people who don't have access to high power machines, such as those in developing countries. So I built a REST client that uses ~60MB.
Introducing Nightingale, a fast and resource efficient REST client for Windows 10.
Let me know what you think! Looking forward to your feedback 🙏🏽
https://microsoft.com/store/...
30 -
That moment when you finished your first REST API 🎉
And you realise all it can do is useless ☹️
But then you realise, you can extend the functions easily with you new knowledge 🎊
Man, this emotional up an down is exhausting 😆4 -
Rest In Peace My Dad. now he is going to follow my uncle. the best two person and developers in my world. as a lone survivor, your memory will continue to be remembered propagate through my life.
for fellow devRanters, Always love your family more when they're still in your side. doesn't matter how harsh, how bad they are; you can always find the meaning, the values life will give you, and that will be the best presents your parent will give you. Always. stay creative, they will be proud.
the short story of my dad : https://devrant.com/rants/1630147/...40 -
I have my doubts of being a good developer when my fingers type this thing
Just checking if a string contains itself
10 -
"What technologies do you know?"
"I can write pretty URLs that return JSON"
"You mean REST?"
"No, I mean pretty URLs that return JSON"3 -
Ian Murdock, Debian creator, dead in shady circumstances this day, three years ago.
A days before we’ve seen some very strange tweets by him about the police violence, and then his Twitter was immediately gone. But internet remembers everything.
Good night sweet prince.
https://pastebin.com/dX3VSPkM
3 -
So Twitter apparently used http status code "420 - Enhance your calm" to notify the client that it was sending too many requests (basically chill the **** out). Note the status code number as well 😁
Image from wikipedia.
4 -
A late rise up *check*
A good cup of tea *check*
A nice breakfast *check*
A rainy day today *check*
A bunch of time for reading
a book and playing with
python and elixir *check
Nobody seeks me for
tech support *check*
Did I die and go to heaven?3 -
Client: "Hey we want you to integrate your product with our system."
Me: "Oh, OK. Where's your API?"
Client: "Here! We even have an outdated .Net SDK, we use XML."
Me: "Ok.. how do we authenticate? What's your OAuth 2.0 endpoint?"
Client: "O auth what?"
Me: " You know, the current standard for REST API authentication and authorisation"
Client: " What's REST?"
*Hungs up*8 -
That moment when u created a project and quite some folks forked it and continued their own versions, but then you realised that you've made a little mistake back then so now your dumb code propagated across humanity.
¯\_( ͡° ͜ʖ ͡°)_/¯2 -
FUCK!!! FUCK IT ALL. FUCK YOU AND YOUR CRAPPY BULLSHT UNDOCUMENTED AND OUTDATED API.
YOUR DATABASE SERVER BACK-END HAS TO BE THE ONE MANAGING THE DISPLAY DATA FOR ITS WEB AND MOBILE CLIENTS. NOT THE OTHER WAY AROUND, DAMN IT.
I'M NOT GONNA SIT HERE ALL DAY HARD-CODING ALL YOUR SERVER'S INADEQUACY.
MAKES ME WONDER DO YOU EVER USE DESIGN PATTERNS OR APPLY DESIGN PRINCIPLES? DRY AT LEAST? DON'T FUCKING REPEAT YOURSELF, DAMN IT.
I CAN'T WAIT TO LEAVE THIS PLACE FOR GOOD.6 -
That moment you leave the office for the last time in 2018.
FAWK YEAH!
What a year it’s been, from learning new platforms, to developing never ending changes, to breaking production at Christmas time, and finishing the year at the peak of purchasing period on a couple of websites with no reason to care what happens for several weeks all while absorbing extra projects from resigning co-workers.
*Turns on autopilot and walks the fuck out*
From one exhausted dev to the rest of you, enjoy the holiday break!3 -
Why in God's name would anyone use SOAP over Rest......
Because it makes you cleaner hahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahaha9 -
Why on Earth would an API require me to provide input like this?
{"this": "{\"is\": \"not\"}", "how": "{\"json\": \"works\"}"}
😡7 -
Most irritating thing I have to deal with when working on a project with a third-party:
{
status: 200,
message: "error"
}7 -
Currently working on the privacy site CMS REST API.
For the curious ones, building a custom thingy on top of the Slim framework.
As for the ones wondering about security, I'm thinking out a content filtering (as in, security/database compatibility) right now.
Once data enters the API, it will first go through the filtering system which will check filter based on data type, string length and so on and so on.
If that all checks out, it will be send into the data handling library which basically performs all database interactions.
If everything goes like I want it to go (very highly unlikely), I'll have some of the api actions done by tonight.
But I've got the whole weekend reserved for the privacy site!20 -
What's the point of using a framework if you don't use any of its features!? What the heck, I have to fix this damn web frontend that is so broken in many ways.
Instead of using an authentication middleware, every single view has the same block of code to check if a user is authenticated. Instead of templates, they used static HTML/JavaScript files and they passed data to pages through cookies.
The "REST" API is so messed up, nothing is resource-oriented, HTTP methods are chosen randomly as well as status codes. They are returning "412 Precondition Failed" instead of a plain simple "401 Unauthorized" when you're not authenticated! What the hell, did they even bother to check what 412 is about when they copied and pasted it from a crappy website!? I would never come up with 412, not even in my scariest nightmare.
What kind of drugs were they using when they wrote such code? Oh dear, I need a vacation...3 -
Just found this piece of code from one of my coworkers:
restMethod() {
try {
// some complicated logic
} catch (WebApplicationException e) {
throw e;
}
}
Why?!
And btw: Hi fellow devRant ppl! 👋7 -
Hey, thanks for teaching me JavaScript and HTML. I almost feel like a web developer now.
What about the REST?5 -
Yesterday I received the API documentation from an external company. Over half of the endpoints are either wrong or send invalid data and even the given test requests are fucking failing.
It's a nightmare. We have to finish a website until friday and that company did nothing for 2 months and now we have 2 days left.
The sheer incompetence is too damn high.
My boss said it would have been much better if we had implemented the API on our own. Damn right.
3 -
I am roughly 12 hours away from a deadline that seemed pretty impossible.
I finally got everything to work, it seems I'm actually going to make it.
After so many hours of frustration, despair and walking in circles, it is finally fun again :)7 -
I feel sad for some of my officemates. They are required to go to office today due to client support stuff, and it's a Sunday. They should be resting, be with their family/love ones/pet/bed, playing games, or whatever they want to do on a rest day. :(8
-
You know what's more irritating than working with a partner who doesn't understand how to properly build an API?
Working with one who fully understands the best practices but doesn't give a shit to implement them until something breaks.1 -
thought I'd check why I'm getting connection timeout on my app
I think the problem is me and not the code
3 -
Is it me or all REST api use json today ?
And xml is kinda dead ?
I always feel awful when I see an xml rest api.12 -
Coworker:" ...so this openflow switch has a really great CLI tool that lets you configure all sorts of settings programatically such as..."
Boss: "I don't like CLI tools, they're too hard to use and can be unreliable. Before you do your task, can you spend a couple of weeks writing a REST API and a web interface to the network switch so you don't have to rely on CLI commands? I think that will be much better and safer."
Coworker: "Well, will you ever have to use it? I think I'll be okay with just the CLI, I actually prefer it..."
Boss: "No, the CLI is unsafe, please just write a REST API and get back to me in a couple of weeks."
Me: *dies inside*
The program they're using is closed-source. Any REST API will have to just make calls in a subprocess shell to the CLI binary.
There were just so many things wrong with the scenario I facepalmed my way out of the conference room.14 -
This feature I'm building requires crossing over to a second application for some actions (fair, this reduces repetition), but the method used for it is kind of ridiculous.
To keep with the existing patterns, I followed suit, and added two PATCH and a DELETE routes, wrappers, and calls. (Typical CRUD + de/reactivate).
But. This freaking halfassed HTTP model doesn't support anything but POST and PUT! wtf. (Also, the various IDs, naming schemes, and required json data/formats differ across view, controller, and endpoints. but whatever?)
Two and a half hours later, and the feature is done and works wonderfully. Four times the functionality of the previous incarnation, and the code is only about 25% longer! haha.
Ahh, I'm complimenting myself again. (but somebody has to, right? 😅)
but really, when i want to get something done i'm actually surprised at how quickly it all comes together. Even when I need to patch API Guy's madness.
(and this time I actually found someone else's code in the mess! It was actually worse!)
I suppose taking a day off yesterday did me some good.1 -
[Begin Rant] When you show your senior manager your REST Web Service and he says "Oh no nooo... I don't wanna see no code"... Me: Code?? That ain't code you fat silly fucker it's the command line output data which I spent a week parsing, batch processing, and storing into the database! [End Rant] :[4
-
Fucking IT and their self signed corporate proxy SSL bullshit getting in the way of anything that needs to verify SSL requests,
Fuck you for making my day a slow and miserable day and having to resort to forcing rest apis and SDKs to work over HTTP instead, all in the name of “Security”.2 -
Would you rather only be able to use Internet Explorer for the rest of your life or only use Light themes also for the rest of your life?16
-
Sleep rant time!
As per usual, I got home late and tired, but wanted to keep on with learning to use Electron for a personal project. I setup everything, created the project and began to tinker with it.
One issue, the script I made was not loading, I spent like 30 minutes wondering why, reading docs (it was 12:40AM). When I was about to give in, I opened the index.html file and guess what? I IMPORTED THE SCRIPT AS A FUCKING STYLESHEET.
I laughed like 2 minutes, then shut the lid of my laptop and went to sleep and thought "Oh, so silly"3 -
!rant
I've been doing wrong these last year, so I decided to step up my game, implementing on my work cycle:
+ Testing
+ CI
It feels fucking great. If you're not doing it, it's time.
1 -
Java dev here. I rewrote an app and replaced a system call to ssh with a modern jaxrs post for uploading a file and (new) some additional data.
I even used a stream.
1 hour in production, first client doesn't get his file. Log says OutOfMemoryError: heap.
Me: wtf? I already use streams.
Looking at the Jersey library. Docs say nothing. An issue from 2013 says: oh if you silly don't use the Apache httpclient addon, we disable chunking and buffer the whole body, because our tests fail with the jdk included http client otherwise.
Me: meh.
No warning in the logs. Thank you soooooo much! Who could have known?4 -
Nobody told you you had to make a REST API, but if you want to call it REST, please learn the basics of what it means...2
-
So we have an API that my team is supposed send messages to in a fire and forget kind of style.
We are dependent on it. If it fails there is some annoying manual labor involved to clean that mess up. (If it even can be cleaned up, as sometimes it is also time-sensitive.)
Yet once in a while, that endpoint just crashes by letting the request vanish. No response, no error, nothing, it is just gone.
Digging through the log files of that API nothing pops up. Yet then I realize the size of the log files. About ~30GB on good old plain text log files.
It turns out that that API has taken the LOG EVERYTHING approach so much too heart that it logs to the point of its own death.
Is circular logging such a bleeding edge technology? It's not like there are external solutions for it like loggly or kibana. But oh, one might have to pay for them. Just dump it to the disk :/
This is again a combination of developers thinking "I don't need to care about space! It's cheap!" and managers thinking "100 GB should be enough for that server cluster. Let's restrict its HDD to 100GB, save some money!"
And then, here I stand trying to keep my sanity :/1 -
Why the fuck does your API have to send 401 when the server is down.
Just spent an hour thinking something was wrong with my auth wrapper.3 -
Me: please return http code 202 in your http service.
My collegue: ok.
After one hour...
Me: you are returning 200, I told you 202. Let me see the code:
OMFG she was writing the string "202" in the response body!!!
I do not know how to escape from all of this shit.2 -
That moment when you've tried everything and nothing works and the only logical thing left to do is post a question on stackoverflow;
&wait;
&obviously rant on devRant while you wait;
5 -
Anybody else feeling it after Chester Bennington's death recently? I'm nearly 30 years old, so I listened to him a lot through my teenage years. Linkin Park was practically my favorite band back then. I'm pretty bummed out man. 😔
Damn.9 -
So, I was getting started with express middlewares and installed Postman. I saw this. I literally cracked up laughing so hard at this.
7 -
I have discovered a fresh hell
Some guy I’ve never met or heard of in the office lobbed a comment at one of my *approved and merged* pull requests. He doesn’t say anything specific, only that my REST urls are not in line with naming convention. That’s all he says, and I’ve already walked the URL consumers through the code and given them the URLS.
I’m really annoyed that this guy won’t just say what he has in mind, but fine whatever this is a professional environment and developers are not known for being a diplomatic people. Let it go and get your work done!
I do some googling and find an obvious change that needs to happen- I implement it, open a new pull request and inform my URL consumers of the change.
This rando still isn’t satisfied and still won’t say what needs to change. I am on round 3 of this wonderful cycle and this guy is acting all fuckin HAUGHTY about it. “Here is a list of conventions I found googling, you should read them even if it takes 4 hours because it will benefit your career”
Sure dog you’re probably right on that one but we are in a professional environment and at this point you are holding up production so you can wave your dick around! Just SAY WHAT YOU MEAN SO WE CAN MAKE THE CHANGES AND GET OUR WORK DONE4 -
I'm implementing some Italian web servicies.
The server response is "INDISPONIBILITÀ TEMPORANEA" (temporarily not available).
I'm Italian, but I'm not used with localized error messages. When I read this message I tought to a server in a toilet.
4 -
"Our company encourages cryptocurrency big data agile machine learning, empowerment diversity, celebrate wellness and synergy, unpack creative cloud real-time front-end bleeding edge cross-platform modular success-driven development of digital signage, powered by an unparalleled REST API backend, driven by a neural network tail recursion AI on our cloud based big data linux servers which output real time data to our Wordpress template interactive dynamic website TypeScript applet, with deep learning tensor flow capabilities.
Don't get what the fuck I just said? Udemy offers countless courses on python based buzzwords. Be the first out of 13 people to sell your soul and private information, and you'll get the first three minutes of the course free!"3 -
I dread the day that Slack has a “... has read this message 2 seconds ago” feature. Please Slack, continue letting me pretend I haven’t seen that message that I don’t want to reply to.2
-
Made my first Node.js Todo list today! Got myself a new front end design tool, Bootstrap Studio (50% off). Learned about REST, using Node as an API and MongoDB and Angular! Had a lot of fun learning and I would recommend it to anyone that's a Node.js beginner. I want to do a video tutorial series on Node.js, is that a good idea?
9 -
Currently working on my first real REST api and I've arrived at the authentication part.
I'm not sure how to do this one, the client will have to login using username/password but then, what's the most conventional way of authentication logged in users through a REST api? (no oauth (yet))
This should be usable for anything like ajax requests to calls from the backend to curl requests.
Looking forward to ideas!32 -
That joy feeling when you are finally rewriting the backend and frontend with GraphQL instead using the fuckin old undocumented REST API who was written by fuckin amateur ex-coworker.
10 -
You know you're talking to a sales guy:
"What's the URL for your API?"
"Um, I don't think we have one." -
My man said "What should I return if the True/False field is left blank?"
WHY WOULD A BOOLEAN BE ANYTHING OTHER THAN TRUE OR FALSE???!!!
I'm gonna have an aneurysm. I shouldn't be educating people on best practices for something that's already been written about time and time again. RESTful philosophy has been documented so much, and all it takes is a quick google search, but noooo! I have to take time out of my day as if I'm a regular old stakeholder to explain that I want the exact thing that I sent in an email two weeks ago. Amazing.20 -
I'm writing a blog series about GoLang and REST interfaces, if your interested in golang but don't know where to start give it a read https://blog.mescrocker.co.uk/golan...5
-
A client's company will be sold, including the code we've had written for them. But it was the usual we-got-no-time project, so we cut the documentation.
Well, guess who has seven days left to add comments on a ~15k custom-PHP-lines project (RESTful Backend)
After that, some other Dev _might_ be able to understand at least something.
Also, I'm doing huge refactoring, improvements of code-smell and restructuring the whole project.
Maybe, our company stays as a development company for the new client but maybe not. So I'm paying now for being "lazy" two years ago.4 -
!Rant
TLDR: What's your favorite REST API Documentation tool?
I'm about to start developing a really large REST API. I have never really had need to document my previous API's since they were small, self explanatory and had only me using them. Aside from this one being too large for me to keep track of there is also a remote team that will need to integrate with it.
Basically I need write exceptional documentation while using as little time as possible. I love postman and am planning to use it for documentation since I currently use it to test during development anyway but I have seen some really neat looking tools like swagger and apiary so I figured I would check for some other suggestions.
What is your current / preferred REST API documentation method?13 -
The world: we found a cure for AIDS.
Hacker news: I don't see a RESTful api endpoint for that, so it's useless. -
Dear API vendor,
Please get off your arse and learn about REST, OpenAPI, JSON Schema, XSD and basic documentation so that I don't have to guess how to use your shitty, inconsistent, RPC over HTTP service.
With Love,
Platypus2 -
Why doesn't Twitter have a public API without authentication for simple stuff, such as reading tweets. One can do that without logging in on the website, why shouldn't code be able to do it.5
-
Since a few days I have my first dev job in a small it company. At my first day I directly stared to implement a rest api for managing dns servers.
Today I completed the prototype and all works well. What a feeling :)5 -
Just spent over 5 hours trying to figure out Microsoft’s OneDrive REST api. Basically my first time trying to do POSTs n’ stuff. I got very very close, but the server kept throwing 400 error codes. Eventually I had to give up and ask Stack Overflow. Going to bed now at 2:20am. No worse feeling then not being able to solve a problem you’re dedicated on solving. :/4
-
“Don’t forget to go home”
A solution architect when he looked into my team room at 6:30 and saw me still sitting there working. -
So lately I am learning about APIs and REST/ful architecture (I'm a plain beginner). I must say it's very interesting.
I find this website very very helpful as a practical implementation of the theory I've been consuming. I'd truly appreciate any recommendation on the subject.
https://apigee.com/console/twitter5 -
Anyone here has an idea of a project to do in Java and Spring (REST stuff) ?
I'm out of ideas :/ and I really want something to build in Java and keep me busy for a while.7 -
Unit test works, unit test works... commit it, push it, take screenshot of it, and go to sleep... peacefully...
4 -
So, first: I'm a bit of a perfectionist when it comes to code and love to think I know everything.
We had a group project at university and me being laid back but unknown to the other people, the "rest" of them was together with me in a group. We got to know each other and actually we were a pretty cool group. I guess "the rest" in a computer science course means you get the cool guys.^^
1/6 of us did ever code in C# and 2/6 even knows what an engine is and how unity works. I was in both sixths, got group leader somehow (if you'd know me from school. Omg. I was that one guy not knowing what went on, saying my two sentences at the presentation and took the B-.:D), so what to do to have a nice 2 weeks with them?
We did a crash course, I taught them some basics and everything.
The point is, i was hella nervous and i really get anxious if something is expected from me.
Long story short, I talked a whole week for 5-7 hours straight without real pauses and eating wayyy less a man should. Dude I was literally dead on my way home on friday evening. I felt like I would fall over any fucken second, i was all shakey, dizzy as hell, weird vision, everything. It felt like I was about to die on the spot.
I got home though, ate like 1/2 kilograms of pasta and felt myself coming back to life.:D
What to learn from this:
Keep the fuck calm, do pauses, drink and eat enough and don't rush all in for a fucken week without real rest..^^
It fucks you up and doesn't do anything good for your productivity.
We got an A btw, so in the end, all went good.(: -
I found a great app on iOS that allowed me to clone my Git repo, make commits, change branches, it had everything! I made a small commit and went to push to the remote server, but then it told me that I had to purchase premium to be able to push to remote. I was kind of upset, but I went to check the price of premium, in case it was a few cents. Nope, $25 just to be able to push commits. Seriously? If I was at my computer I’d be able to do this for free.7
-
We are switching to an infinite scroll mode for our app. I told the backend dev in my project (we're just 2 people) I need an API to get more than one post at once.
He told me to use a loop to call the old URL 15 times.
...Not sure if stupid or just too lazy4 -
Right now, whether you're making money or not, try and make sure you take some time for yourself. Whatever you like to do: take a walk, exercise, meditate, or even sit by the shore if you live close to the coast. 🏖️
-
I just learned the concept of this thing called REST API and now here's GraphQL showing up on me face. Mother fucking web development hell. BRB. KMS4
-
Some designer told me: "I'm sending it in Adobe XD format. Do you use Adobe XD?"
I answered with a 😆
Maybe I need a pause?1 -
!rant
I made a project while learning spring!
Name - Restify
What is it? - Makes any program/script a rest service.
Link - https://github.com/gauravat16/...
Its really small now, I will keep learning and expanding it. 🙂2 -
Took company's laptop to vacations, because it's lighter then may gaming laptop rig.
VPN works seemlessly, all my intranet work is accessible even away from the country >.<
I guess I'm a bit of a work junkie / bitch ? -
JFrog Artifactory uses HTTP POST for updating and HTTP PUT for creating.
... I'm correct to be offended by this yes?2 -
I need to encrypt some large files at rest and then decrypt them immediately prior to processing.
App and files are on a Linux system (CentOS). App is in C. Machine is controlled by a third party.
What encryption libraries would you recommend? And, is there any clever way of managing the decryption key beyond compiling it in the code and doing some basic obfuscation?
Are they fancy obfuscation libraries out there, for example?
And, the reason I'm not going to SO (well, one reason) is that I don't want to have 50 answers that tell me that's it's impossible to 100% protect data on a machine you don't control. This I understand---just looking for "best effort" solution.8 -
What idiot uses 0 for a success response!!! Integrating with a 3rd party I found a bug in our code that uses the default value for an int when the external server can't be reached.
As it happens 0 is the default integer in most languages so no surprise when our system accepted the 3rd party as a success when it blew up 😒5 -
My eyes hurt everytime our backend guy gives me a new REST API to implement in our app and always the formatting of the json is something like this. Like why can't you just fucking format it properly so I won't have to look at my code and feel disappointed for writing such ugly code. All because your lazy ass didn't care to understand the fundamentals of how json objects and arrays work !!! It's been a month since I've joined this company and I'm tired of explaining why we should use the status code for failure checking and not this stupid pass/fail status flag. I don't even remember how many times I've brought it up but everytime I get reasons like "Dude, you know what our server is never going to go down or fail so it doesn't even matter". And at that point I feel like I shouldn't even argue with him anymore.
4 -
I'm so pissed off at twitter REST API. On their site is a example: https://api.twitter.com/1.1/... but it doesn't work, Volley always returned 404, and guess what I tried. I changed the order of screen name and count to this: https://api.twitter.com/1.1/... and it works. I don't even. I sat there pulling my hair out for 2 hours just for this, fuck.
3 -
I have been sitting in front of my laptop for 4 hrs without getting up with full concentration and now all I can see is black boxes wherever I look.
-
RESTful API Question
Let's say when a user do an action, I need to insert a record into a table and then update a record in different table.
Should I write two API routes (PUT, POST) or one route (POST) ?18 -
Reading a 36 page article on REST for a course on OSS, and I'm pretty sure the combination of background sound generators (waves, fire, singing bowl, cat purrs) is what's going to get me through this exam...
PS: Recommend http://purrli.com for all demotivated, cat-deprived devs out there.2 -
After a huge hit of a long term burnout explosion that affected my life and self confidence in many ways, I've decided to focus on video and photography and leave my restless programmer side to rest a little bit. It's been around 25 days without touching on a single line of code. Never stopped this much in my life. It's weird.2
-
I hate discussions about how to name resources in a REST api. It’s not like there will ever exist a client that magically knows your conventions. At some point, you need to hardcode an URL in a client/browser. That’s fine, just keep it simple.
This has been a great source of bike-shedding in my job recently.
And don’t even get me started on HATEAOS...2 -
Public REST (-inspired) API. Should I skip numeric IDs because it's easy for consumers to snoop around?
Example:
POST api/foo
201 Created api/foo/69
Uh, I'll get 68 just because I can. Hopefully it returns Unauthorized, unless we some kind of bug.
Is it just security by obscurity if I use, like, guids or something instead of sequental IDs?17 -
Spent the day refactoring a REST app into graphQL, that feeling when all tests are green and everything is committed and merged 😧🤓3
-
Have you worked with GraphQL? Saw it for the first time and it looks like a pretty good tool for working with APIs, to me. I am excited to read your opinions about GraphQL.23
-
Left what I like doing the most, i.e. Coding, R&D stuff and started studying German trying to travel and continue my studies there. Really frustrating to do a task you don't love continously without breaks lol. Anyway yesterday opened up my gaming rig. started steam. opened Path of exile to play after a really long time. 17 GIG UPDATE. quietly closes pc. starts crying in a corner.4
-
In Django code, looking at a class for caching REST calls. The cache is using Redis via Django's cache layer. In order to store different sets of parameters, each endpoint gets a "master" cache, that lists the other Redis keys, so they can be deleted when evicting the cache. Something isn't right, though. The cache has steadily increased in size and slowed down since 2014 even though many events clear the whole thing!
... And then it hit me. Nothing empties the list of cache keys. Nothing. So it has been growing endlessly since 2014. And everytime it grows, cache eviction gets a little more expensive, network traffic increases a little more, and cache evictions get a little slower.
Fixing this bug took things that were taking routinely an entire minute to complete and made them take a couple seconds. -
I'm implementing a RESTful API to display search results based on a huge number of parameters. There are so many of them at this point that using a HTTP GET method feels quite cumbersome.
I was wondering whether it is okay to use a HTTP POST method to POST these parameters all at once at every request in exchange of a result set instead of bothering with so many GET parameters.
Some of these GET requests are even blocked by certain firewalls for being too long.10 -
Developed a very simple REST api with pure php. Eventually "api/users/" worked but "api/users" was 301 moved!!.. it was a big problem
1 -
!rant
I will have almost 3 weeks of vacations coming up. For which I will TRY and understand the idea behind building a REST API using the Microsoft C++ cpprestsdk libraries.
The end goal? Be able to replicate a little project I got going in Node.js in order to compare how well it goes on C++, a language that I greatly fear on accord with how complex the syntax always looked to me :V The thing is, the first time I tried to learn programming was when I was about 17 and c++ was back then not the way to go for me. I sometimes wish I would have stuck to it, I k now enough to get by building and linking shit correctly, and of course the basic concepts are there, some advanced ideas are iffy but I should be able to get them going relatively well once I start working on the code.
I am using this tutorial as a basic guideline :D
https://medium.com/audelabs/...
Will be interesting to see. Always wanted to have something done with C or C++ that was bigger than any of my academic projects. Funny enough, I have a large collection of C++ books, but never really used them since they would bore me :V
Cheers putos! -
rant == false && help == true
I usually don't like posting non rant stuff here but I need help.
How do you usually design your service communication class?
I am working on a mobile app which contains talking to a REST service, I usually put all network calls in one class. Down side if it becomes a big class it becomes a pain to maintain. Any thoughts?
For a backend service I usually go with Repository design and it is working out well for me. But for mobile Apps I'd like to see if there is a better approach4 -
I been using digital ocean to host my server for a project, but they seem to get shutdown because of DoS behaviour. I have no idea why. The server is doing some soap and rest communication and controlling a database.
To be fair the password was poor, but it was meant to be a fast way for four people to work on it at the same time.
But after the first shutdown, we rebuild the server and work on functions. Finish the work and went home. But in the server 9 hours of uptime with 2 of them unsupervised it was detected as DoS behaving server.
💻🔪2 -
Trying to integrate with sales force API via oath2 has made me lose all confidence in myself as a programmer.4
-
16 files (!) to create a rest endpoint that does nothing (returns an empty wrapper message).
WTF spryker? are you fucking kidding me?
5 -
WHY THE FUCK DO YOU FUCKING RETARDS USE TWO DIFFERENT AUTHENTICATION METHODS FOR THE PAYMENT AND THE CHECKOUT API AND DON'T EVEN DOCUMENT THIS SHIT PROPERLY!! 🖕2
-
Can't decide if I should join this nice internship or let myself enjoy this summer and rest a bit, as I burned out a bit this semester with studying and freelancing.
Why is it so difficult to decide..
The internship is at cool place with nice tech and I feel like its a nice opportunity to grab, but I feel like I need the rest too.
And I have to decide tomorrow. I guess I'm terrible at decision-making sometimes Ffs..3 -
This morning me and my colleague had huge debate about using GraphQL or REST. While I was in total favour of GraphQL, that guy was more on REST side because he read some random articles on dev.to and medium and was highly motivated to use REST instead of GraphQL.
The problem is, some people write anything on blogging websites without even doing a proper research.
Since, I have worked on GraphQL, I knew it's pros and cons very clearly and what are the things that can be done to solve them.
The guys said that we can't do native caching in GraphQL at which the lava from my head just got burst out.
I showed him the official GraphQL docs where it was clearly mentioned that we can do caching in GraphQL.
Poor guy couldn't say anything after that.
P.s: We are still going to use old school REST APIs but I am happy that I could prove my point. I'll use GraphQL in my side projects anyway, loss for him if he's not exploring something new.7 -
Who in their right mind would do this / think of this....
Salesforce has the option use their API. Either via SOAP or Rest. At my work we currently use SOAP and I wanted to rewrite that to Rest. Fine, you would say.
Their Rest API uses oAuth, nothing fancy you would think. But those motherfuckers, per default have the option enabled that the refresh tokens you get via the necessary API calls are being marked expired the moment the API gives them to you... Then why the hell give them in the first place.
It took me 2 hours of my life to figure out, why in godsname all my refresh tokens were marked as expired. Fuck you Salesforce, I want those 2 hours back! God fucking damn it... I really fed up with this type of bullshit!! -
I really don't like this trend of building command line applications for controlling some <buzzword> cloud app or <buzzword> framework.
Why should I need or want to learn the exact wording of your gcloud command, or the path to your Ng cli, or some ass-backwards AWS search syntax when I can get the same functionality from your web app, where I can use my FUCKING EYES to work out where the "Create Instance" button is and how to click it!!!??
Stop pushing your shitty python monolith of a client where possibilities for the above task range from:
- google-cloud instances --add "subfjfechye thiq"
To
- gcloud /create /type=INSTANCE "rogdhyuffhue"
"BuT iT mAkEs iT MoRe aUtomaTaBLe"
I DON'T CARE. What is the point when I can use a proper programming language instead of bash, with actual code-completion and syntax rather than the horrendous excuse for a suggestion system that is the Tab key where it probably doesn't even work in the first place and I have to copy and paste some mysterious dbus command buried in an old documentation page on the Wayback Machine using a utility I don't have installed and a broken URL?
Go away.8 -
Should I reproach my teacher for not being able to teach REST properly? Everyone in my course think REST endpoints must be UpperCase. Also, he keeps saying to use Git but in the end he's currently using PDFs to send sample code.3
-
Currently we have to make a new REST API at work. I want to have a clear and functional API (with HAL JSON, that is given). But my colleagues don’t like this, because they don’t like the design (the look and feel) of the HAL JSON responses. They just want an easy API with a nice design, so they want to ignore half of the HAL JSON specification. But a REST API don’t has to be easy and don’t need a fancy design, REST APIs are not for humans but for computers! How can I explain this to them?3
-
Helping another team at work call services on an aws api gateway.
Which team you ask? The integration team. The integration team... Who can't call a rest endpoint.. On an api gateway -
Started out as an intern at my current employer, after a few months they made me create an invoicing system...
I should have said no.
I've had a lot of bugs with it in the past, but the data-loss one has been because I send a SOAP call to our (third party) accounting system and only if I get an ERROR do I log it....
Apparently, when you put line 1 before line 0, you get a warning, but no data is processed...
Had to write a script that updated 4 months of invoice data in one go, without errors, took me a fucking week...
Lesson learnt boys and girls, never let an intern make the fucking invoicing system!3 -
I've been developing Android apps since about 2 years. I learned completely on my own by watching videos and referring websites. Till now I haven't worked on any Big or complex app but now I want sharpen my skills in Android app development,so if anybody needs any sort of Android work to be done I'll be happy to help and there by sharpen my skills..10
-
!not a rant
Peeps using Postman - Check out Insomnia.rest it looks awesome
https://insomnia.rest/
PS: Think it's built with Electron.10 -
Soon I’ll be unemployed (on purpose) and will spend some time on my own project ideas.
Pretty much each of them will require an API..
Already started with the first one using python + flask, but I’m planning to do each of them in a different language..
What do you propose? What’s the most fun and the most interesting technology in your opinion?
I’m senior in Java and advanced in JS, / Node so it won’t be any of those and I’m also not a fan of PHP :)5 -
Debugging is not about process, it's about end.
(I just finished two week long debugging session - approx 5 hours a day. It was nasty bug appearing only with optimalizations in embedded C, you can imagine joy when it came to life tonight. So now I am resting at pub with glass of cider knowing I am loosing needed sleep but I simply do not care right now. Sweet careless.)2 -
So this past few days of a mix bag of emotions. Friday's weekly deliverables on our first dry run at launch, I squeeze across the line in an embarrassing finish. Decision to proceed with the live run to be delayed, not going to happen if I've got something to say about it.
Next day, vendor on the house my wife has purchased (our first!!) and says we can move the settlement date ahead 4 weeks! Winning!
Monday, meeting with all stakeholders on the fuck up that was my deliverables I'm responsible for, granted a conditional pass. "Don't worry, I got this."
Tuesday, received the results of a technical challenge I've given one of the developer candidates - he smashed it. Keen to give him the job! -
Does anyone know why websockets aren't used far and wide for APIs? I mean not like chat applications, but the typical webapp, say an online shop. For me it seems kinda wasteful to fire separate requests with tiny payloads all the time. I currently use moleculer and socketio for a quite big project with multiple websites and backend containers, and so far, i haven't found a disadvantage.
So what have i missed?12 -
Do you guys return 200 when a search function in your API returns a not found and you attach a response in the object saying "success: false", or do you return 404? I'm confused. Thanks.
https://softwareengineering.stackexchange.com/...3 -
I got tired of the tedium of navigating dropdowns and required fields to open and close user stories, so I wrote a script with the following syntax:
./ticket open TICKET TITLE GOES HERE
./ticket close <TICKET #>3 -
Wrote another post on medium.
This one helps in automating the security token required for testing an API.
https://medium.com/@gvnix/... -
I have implemented RESTful API using expressJS, and another React app which will use the API's to fetch data.
I'm getting a problem of Allow-Origin Header.
what's the proper way of calling a API ?
do I use a CORS middleware and allow all origin ('*') and use Api-key as way of check authorization to prevent mis-use. ?
any other tricks ?2 -
When a junior develops an API call which return the user information and there is session_key and password encrypted in it too.
Dude! do you even know some basic security ! Please don't just Select * From table join table only !3 -
When I was working on my dissertation project. I was implementing a video sharing platform. Using Dropwizard for REST. I wrote the entire endpoint for uploading a video in one session. I was just taking a stab at how i thought it could work. Tested it in Postman expecting to get some kind of error.
And it worked first time. -
Optimizing my RESTful API plugin, used in a CMS to make it headless, was extremely satisfying.
Thanks to caching and alorithm improvements, I brought the response times down by a factor of 150.
The caching also includes dependency tags thus it will automatically invalidate on changes in the dependent element.1 -
create, read, update, delete, get, store, put, post, show, view, patch, destroy, list, remove, save, status, ...
crudgsppsvpdlrss? -
Hey guys, who has experience with JPA/hibernate RESTful performance numbers.
Interesting would be:
* persistence operations per second, and the response times
* proportion between read/write for a typical rest service
Rightnow i get ~300ms read, 900ms write at 350 concurrent requests. 75% write operations
I more or less ruled out my custom code, problem seems to be hibernate (of course ...😋)
Stack: jetty, jackson, hibernate, mysql9 -
Web API: "Oh, I see that you're trying to update to our new design with a category and sub-category dropdown layout. Here's one api endpoint that provides you the whole table without fucking input parameters to filter per category and sub-category. Goodluck! And Have fun filtering through the json and sub-json response!
And btw, don't even bother asking me to update the endpoint. Cause admin already said that the UI SHOULD ADJUST TO THE API AND NOT THE OTHER WAY AROUND. AS THE APIs ARE HARDER TO REVISE"
It's not our fault your api design is crap. You piece of shits. -
While working with Django Rest Framework, the Post and Delete requests were giving me 403 error. With no help from stack overflow, I decided in vain to check it with Firefox browser instead of Chrome.
IT FUCKING WORKS ON FIREFOX!! HOW THE FUCK??
Things like this are responsible for my mid life crisis.10 -
The integration of technologies project I have this year. Not yet finished but I already learned a lot of very cool stuff.
First, I learned a new programming language + framework (Ruby on Rails)
Second, for the first time, I implemented a continuous deployment pipeline with Capistrano and Travis ci.
Third, first time I programmed a Restful API.
And more cool stuff coming up ! :D
I freaking love learning ! -
!rant
Just learned how to use Spring + Eureka + Feign + Ribbon to easily discover microservices as they're deployed, do basic load balancing, easily hitting endpoints on other micro services, etc.
Mind = blown 🤓 -
I'm on holiday this week. I'm also doing everything in my power to resist checking Slack to see what's going on.
Must...switch...off...2 -
!rant
This week, I worked on my side project. The basic idea of this project is to let everyone build software components in their favorite programming language without any need to learn any complicated protocols (such as CORBA or whatever).
It already worked good enough for some stand alone cases, but recently, I build a web app based on it.
So far, I write the code by myself. But I guess the project won't be as good as what it is right now without any help from everyone. Some fellow developers in real life and in devRant (especially @plugsut) really help me in order to write a better code. And I'm grateful for that.
Below is the specs of my project:
URLS:
* Repository: https://github.com/goFrendiAsgard/...
* npm: https://npmjs.com/package/...
CREATING BOILER PLATE:
* Install Chimera-Framework (`npm install --global chimera-framework`)
* Create web project (`chimera-init-web <your-project-name>`)
RUN THE SERVER
* `npm start`
PERFORM TEST
* `npm test`
TECHNICAL SPECS:
* Database: MongoDB
* Programming Language: Javascript + CHIML
* Supported Programming Language: CHIML + virtually any programming language.
TESTING RESULTS:
* JWT Authentication: Fully tested.
* REST API with Whitehouse API standard (https://github.com/WhiteHouse/...): Fully tested.
* Total request performed for testing: 27
* Total assertion: 92
* Total testing time: 7 seconds
* Average response time: 217 miliseconds
TODO:
* Write documentation for fellow developers
* Create GUI for mere mortals -
This is not a rant. Rather just a question or an ask for advice, as I have seen a lot of people talk about web development around here. I am planning to create a website for my search engine. I created a Rest API for my VPS so I can do http requests and retrieve some links for certain key words. But I need some good ideas to do this from a website. As I am not sure what would be the best way to do http requests. As far as I know it's possible with Js and PHP, but I am not sure what's better, more secure or convenient? So here I am to ask you guys, especially those who have experience with this, what I should consider to do.
Oh and please forgive me my limited knowledge about Js and PHP 😅😊3 -
Wanted to add a simple log entry when a model changes state in a certain way.
Unit tests pass, functional tests pass, manual tests through application GUI pass.
But for some fucking reason the single line logging call I added results in an error 500 when the application is accessed through a REST API.
Going to have a fun day tomorrow debugging this shit. -
I'm working on a project using certain APIs to access some web services. I spent almost an entire day trying to make it work, but I always get an error message. When I try to contact the customer support they tell me something like:"Yeah we're gonna look into it. Meanwhile try this other endpoint". I didn't ask for that(besides this alternative endpoint doesn't do the same thing). I just want to know why my code doesn't work, even though I thoroughly followed the docs!
-
Developing a News app in android and kinda struck at the point where a new news is added to the server and then to be notified to all users.. I mean I want to know how to correctly implement push notifications and will I need an XMPP server for that ? If so ,then which one do all you experienced devs suggest..?
Thanks.. #awesomeCommunity5 -
I need to build a REST API in PHP, what framework could you recommend me?
Lumen (https://lumen.laravel.com) looks fast and relatively simple.
has anyone ever used Api Platform? (https://api-platform.com) What are your thoughts on it?9 -
The theme files of this WordPress site I'm supposed to improve are completely and unnecessarily custom for a simple ecommerce site. I'm really regretting not spending some free time I had recently to better learn plugin programming to abstract out this functionality for this customer.
-
// !rant
Need some assistance with Drupal and Dreamfactory.
Dreamfactory is an amazing piece of software that basically turns any database into a REST API. I mean any DB from SQL Server to MySQL and all kinds of others. For a connection to the API it uses JWT (JSON Web Tokens) which expire momentarily.
On Drupal, there's wsdata and rest client modules. Restclient is a module where you configure a connection via OAuth or HybridAuth to a rest server. The problem is that the rest server for dreamfactory uses JWT and i'm not sure how to get Drupal and restclient to connect that way. -
trying for three hours to understand why an error occurs. adding one log statement. reloading. everything works... 😡3
-
After an hour of head banging trying to get products filtered from woocommerce api, I get to know that filters do not exist anymore. Why would they remove something so important in a newer api version?
Anybody aware of alternatives?1 -
What HTTP Header should be used to send an App identifier to a REST/micro-service
I remember reading about this a long time ago and want to suggest it again to my boss so it's easier to identify what specific apps making calls to our APIs3 -
Is there a Java libary or a list of the endpoints that devrant uses? Would like to write my own client2
-
First run of an import procedure in the production environment.
Spent all morning with an "Unsupported media type" error.
Finds out that the provided password was wrong and that the Webservice always return that message when there's an error.
Any type of error... -
When your business processes just don't map to four HTTP verbs, and the world seems a little less well-ordered. That feeling.
-
hello folks, any help would appreciated :). serious question about designing/developing a rest backend.
here is a little insight: I want to reduce the endpoints for many CRUD operations as I can. So for that approach I defined a set of "dynamic" routes like /:moduleName/list, /:moduleName/update and so on.
Now I want to also reduce hardcoding as much stuff as I can for the front end. like I want forms/view/components to know which fields can be sent in the "/:moduleName/xxx" endpoints from above. So I'm thinking to make some /:moduleName/list/map, /:moduleName/update/map endpoints that tells the frontend which fields/keys can be sent for X or Y operation.
regarding design/security concerns Is that a good approach? do you know any other approach that's like to what I want to achieve?6 -
To those who use server-side Swift, which one do you prefer: Perfect OR Vapor? Thanks for your opinion.1
-
!rant
Got a question since I've been working with ancient web technologies for the most part.
How should you handle web request authorization in a React app + Rest API?
Should you create a custom service returning to react app what the user authenticated with a token has access to and create GUI based on that kind of single pre other components response?
Should you just create the react app with components handling the requests and render based on access granted/denied from specific requests?
Or something else altogether? The app will be huge since It's a rewrite off already existing service with 2500 entities and a lot of different access levels and object ownerships. Some pages could easily reach double digits requests if done with per object authorization so I'm not quite sure how to proceed and would prefer not to fuck it up from the get go and everyone on the team has little to no experience with seperated frontend/backend logic.4 -
It seems odd that in a world where Web developers are mostly developing api first there are no tools that allow you to browse an unfinished but already authenticated REST api.
I would really like to have one but programming a full IDE/Project manager sounds like too big of a project.6 -
Hi, I hope that you guys can help me : Is Django REST Framework valuable for developing a little-sized android app backend? Does it have any support/community?
Is it better to just Django instead?12 -
New guy in the block!. Just started with a new position in a new company too!.
Designated as as Devops Engineer (after my 2 years of experience as one) in a well funded Saas Startup!. Lots to learn. I used to work in Openstack Terraform puppet etc whilst here it's fully AWS. I was expecting this right from the start but woah.
Lambda, dynamodb, cloudformation, ssm, codebuild, codepipeline
Serverless framework, Flask and node mixed apps , Vue (including vuex) js Front end, graphQl api, and rest for between microservices.
Lots of ground to cover and I've not consumed this much topics before. Especially graphQl and Vue js are being a pain for now .
Each Devops engineer is working on a tools to improve the productivity and shorten the release time. Lots of automations in the pipeline!.
I'm not sure this qualifies as a rant but here you go!.2 -
FUCKING SHIT, I HATE THIS
Does anyone have problems with axios?
I've been trying to make this work for at least 1 hour. If I use Postman, it works alright, but using axios messes it up.
Practically what happens it's that Django does not picks the foreign keys, it loads all the fields except those two.
I've been like fucking crazy trying to understand what's going on but to no avail... I want to die, it's friday and this stupid thing is delaying me more than it should3 -
Help needed.
Anyone who has worked with OpenBazaar REST APIs. I cannot seem to get any response from the endpoints even though I think I've set the server correct. Any sort of help would be highly appreciated.
P.S. (Rant) the docs and the "helpful slack community" are total shit. -
Question:
First big app around the corner. The backend is a REST api in pure php.
I've heard of heroku and other alikes but never had any time to look at it. Would any service like this benefit me?1 -
Does anyone know of any good examples of server and client implementations of a java rest service using cxf and multipart content?
-
I'm building a nodejs REST api with jwt token authentication for the first time. So far, it's been as smooth as butter. Any hiccups or gotchas I should worry about?
-
There I was trying to figure out how to use Spring to create a restful web service with hibernate. All the while learning more about Java as a language. After many headaches of understanding and configuring thank God I stumbled against Dropwizard.2
-
There's been an uprising in articles about migrating to GraphQL from REST. Is this the new cool shit?4
-
I am developing a webapp with a couple of friends and we want to implement stripe API with Django Rest. Does anybody knows about good integration test packages/practice that could be useful in this case?
-
Any grails dev here? I needed some help urgent but can't seem to get any answers from the internet or even the question I posted on SO. Here's the question:
https://stackoverflow.com/questions...
Top Tags
Weekly Rant
View