my blog. for you.

Reden wir über Digitales.

Ich bin selbständiger IT Berater und Unternehmer in der Internet und Software Branche. Ich beschäftige mich mit Design, Enterprise Applikationen, Web Apps und SaaS Produkten. Ich entwerfe und entwickle Business Lösungen und Anwendungen. Ich helfe Unternehmen in Sachen Software Qualität und Wissenstransfer, z.B. mit Angular und Spring Boot.

REST next level: Crafting domain-driven web APIs by Julien Topçu @ Spring I/O 2023

Leider ist der Eintrag nur auf English verfügbar.
3. Dezember 2023 by Bjoern in Enterprise Software, Software, Web Applikation
Read more

CORS: What It Is and How It Works

Leider ist der Eintrag nur auf English verfügbar.Expanding on last week's article on best practices for REST API Design I'd like to point to a specific aspect working REST APIs frequently entails: A browser security feature called "Cross-Origin Resource Sharing (CORS)". This feature allows you to define which resources provided by a web application are supposed to be accessible from which origin, which in turn typically is comprised of protocol, host / domain name and port. This website's origin for example is ...
2. Mai 2021 by Bjoern in Front End Entwicklung, Software, Web Applikation
Read more

REST API Design: Best Practices

Leider ist der Eintrag nur auf English verfügbar.It's probably safe to say that REST (REpresentational State Transfer - originally described by Roy Fielding) is the most widely used architectural pattern when it comes to APIs in web application contexts. From statelessness, to self-descriptive messages, and hypermedia as the engine of application state (HATEOAS) REST comes with quite a few principles, constraints, patterns, and flavours, not all of which are used or applied consistently with each REST API. REST often is a rather ...
25. April 2021 by Bjoern in Software, Web Applikation
Read more

The Richardson Maturity Model for REST APIs

Leider ist der Eintrag nur auf English verfügbar.On his website about software design patterns Martin Fowler provides an in-depth explanation of the Richardson Maturity Model for HTTP-based REST APIs by Leonard Richardson. According to that model REST APIs come in 4 levels of sophistication: Level 0, aka the "Everything is a POST request" model for example propagated by SOAP. This is basically tantamount to remote procedure invocation. Level 1 - Resources: Every resource is accessed through its own canonical URL. Level 2 - HTTP Verbs: ...
15. März 2020 by Bjoern in Software, Web Applikation
Read more

JSON Web Tokens: Downsides, Best Practices and Secure and Robust Alternatives

Leider ist der Eintrag nur auf English verfügbar.JSON Web Tokens (JWTs) nowadays are commonly used for transmitting authentication data in web applications, especially those exhibiting the widespread client-server architecture where you have a fat client / single-page application written in JavaScript as a front-end and a back-end server providing REST endpoints for use by that front-end client. However, while common there are good arguments against this practice. In a nutshell, JWT often are used for storing session data such user authorization and authentication ...
10. November 2019 by Bjoern in Enterprise Software, Front End Entwicklung, Software, Web Applikation
Read more

HTTP and REST Standards, Protocols and Headers for More Secure and More Robust Applications

Leider ist der Eintrag nur auf English verfügbar.Standards.REST is a website that helps you create better, more robust HTTP- and REST-based applications by providing an overview of existing, proven standards that allow you to build on existing solutions rather than re-invent the wheel yourself. The list of standards mentioned includes OAuth 2.0, the HTTP Caching standard and Application-Level Profile Semantics (ALPS), which - among others - is used extensively in Spring Data REST and Spring HATEOAS. On a closely related note, Stefan ...
29. September 2019 by Bjoern in Enterprise Software, Front End Entwicklung, Software, Web, Web Applikation
Read more

A Quick Reminder About the Relevance of Latency in Computer Systems

Leider ist der Eintrag nur auf English verfügbar.This Gist by Jonas Bonér gives a quick overview of the different latency values for accessing different kinds of data storage and memory systems and the order of magnitude by which they differ: Latency Numbers Every Programmer Should Know Putting this in perspective is particularly important in the context of service-based architectures like RESTful web services, Microservices and similar approaches. All-out service-based architectures might be the right the solution to some scalability and deployment problems in complex ...
21. Januar 2018 by Bjoern in Software
Read more

Using Swagger to Generate Client SDKs for REST APIs

Leider ist der Eintrag nur auf English verfügbar.These days Swagger is a popular, easy-to-use tool for (semi-)automatically documenting REST APIs on-the-fly. For example, in order to document a REST API created with Spring Boot and Jersey literally all you have to do is add these two entries to your Maven pom.xml: [xml] <dependency> <groupid>io.springfox</groupid> <artifactid>springfox-swagger2</artifactid> <version>2.6.1</version> </dependency> <dependency> <groupid>io.springfox</groupid> <artifactid>springfox-swagger-ui</artifactid> <version>2.6.1</version> </dependency> [/xml] You'll then get a ready-made documentation for all your REST API endpoints. An example of how this looks like can be seen here. While this already is very useful in that it ...
21. Mai 2017 by Bjoern in Enterprise Software, Front End Entwicklung, Software
Read more

Testing REST Services with REST Assured

Leider ist der Eintrag nur auf English verfügbar.RESTful service testing can be unwieldy and difficult to get started with. Providing a REST API implies using a variety of technologies and techniques such as HTTP, JSON, authentication, various payload transfer mechanisms and content types. This is where a tool that abstracts over these technical details and facilitates their application comes in handy. REST Assured is a high-level DSL for testing REST APIs. It draws upon behaviour-driven development (BDD) and hence makes for ...
30. April 2017 by Bjoern in Enterprise Software, Software
Read more

ng-admin: Create admin panels from REST APIs

Leider ist der Eintrag nur auf English verfügbar.ng-admin is a helpful AngularJS UI component that automatically creates an admin user interface for RESTful APIs. Such a component is particularly useful for instance with back end applications in enterprise contexts because it allows you to quickly implement and iterate basic user interfaces based on your current model and its API.
5. Juli 2015 by Bjoern in Enterprise Software, Front End Entwicklung, Web Applikation
Read more