API Innovation
Tuesday, October 25, 2022
PRO Workshop (API): Building an API Layer for Blockchain Data using Scaffold-ETH and The Graph
In this talk we will showcase how to leverage the power of The Graph to index blockchain event data into an easy to use and flexible API built on Graph QL.
Attendees can easily follow along the workshop by building out their own development environment with only Git, Yarn and NodeJS. Come learn to build the future on Web3.
PRO Workshop (API): OpenAPI3 + Istio = Zero Overhead API Routing
API-as-a-Product is an emerging concept in the software development sphere. Speed in API development and delivery is becoming increasingly important. Open API 3 enables faster and collaborative API development and its custom extensions can be leveraged to augment API contracts with additional functionality. Here at Intuit we built a system that uses Open API spec, Istio Service Mesh and other extensions to dynamically generate the runtime and enable zero overhead routing for the orchestration APIs. Istio VirtualService is used to create the routing layer with zero overhead to enable faster API delivery. This zero overhead routing supports API patterns like aggregation, transformation and proxy and can be used uniformly across both north-south (via API Gateway on Service Mesh) and east-west traffic. Such an API orchestration runtime and routing will allow you to create and present new and elegant APIs on top of existing APIs while adhering to industry best practices. Come and learn how Intuit’s API Management Platform team built a low code / no code zero overhead routing for orchestration APIs using OpenAPI3 and Istio.
PRO Workshop (API): Crafting a Simpler Developer Experience for APIs with UI Kits
Developer Experience (DevEx or DX if you prefer) is all about creating an environment where APIs can be used successfully by the end-user, a software developer.
This session will take a look at examples and better practices for crafting a DX that puts the needs of a developer for adoption first as the metric of success. Designing Low-Code APIs and UI Kits can be an effective way of making the easy things easy and the hard things possible.
PRO Workshop (API): Testing Pyramid for Event-Driven Microservices
Event-Driven systems, being decoupled by definition, present a very different API from classic, endpoint-based microservices. This characteristic requires an evolution of the traditional approach to writing automated tests.
In this session, we will look at various ways to write these automated tests for these kinds of systems. The session will include a live code walkthrough in Kotlin.
Wednesday, October 26, 2022
OPEN TALK (API): Evented API Gateways: Bringing the Productivity of Evented Systems to Synchronous Services and Systems
We all know that synchronous and asynchronous APIs can be a bit like oil and water. They’re completely different, operate on different protocols, and operate on different communication paradigms.
So, how are organizations supposed to manage, secure, and govern API ecosystems that have both synchronous and asynchronous APIs playing vital roles for the business?
Join this session to learn about how teams can implement an event-native API Management strategy to bring the productivity of evented backends and services to synchronous systems, make synchronous and asynchronous systems “shake hands” securely, and turn these APIs into revenue-generating products.
So, how are organizations supposed to manage, secure, and govern API ecosystems that have both synchronous and asynchronous APIs playing vital roles for the business?
Join this session to learn about how teams can implement an event-native API Management strategy to bring the productivity of evented backends and services to synchronous systems, make synchronous and asynchronous systems “shake hands” securely, and turn these APIs into revenue-generating products.
WORKSHOP (API): Protecting GraphQL with Effective Governance & Security
GraphQL is a new approach to expose your services to application developers. There are many advantages which come with new challenges to security and governance. In this session you can learn how to protect and enforce governance for your GraphQL server endpoints from these unique GraphQL threats with a low-code approach. You'll see demoes of numerous approaches such as cost analysis, graph filtering, and much more.
OPEN TALK (API): Is Your App Security Scalable?
This discussion focuses on building durable, scalable access control systems for you and your clients’ database/app architectures. We will review three access control systems (Access Control Lists (ACLs), Role-Based Access Controls (RBAC), and Policy-Based Access Controls (PBAC (or ABAC))) and then, in a thought experiment, compare the development and maintenance effort of each when fulfilling the authorization requirements for one software app. The goal of this discussion is to offer you a system selection guide for your apps and present the case for why we chose PBAC for Devii.
Thursday, October 27, 2022
PRO TALK (API): APIs in the wild
With the expansion of the cloud towards the end user, some common issues emerge: unreliable internet connection, fewer hardware resources, unreliable power available, metered connection …
In most of those use cases though the devices out there still need some way to communicate with the cloud, to let it know they are still alive at the very least. But what is the quickest and most efficient way to do that?
In this session we will explore and compare different API protocols in terms of resource usage and we will examine different mechanisms that are usually available at the API gateway level and at the device level, to optimize communication and respond to failures at the different levels of the stack.
We will conclude with some industry best practices when building services at the edge.
OPEN TALK (API): Build with the Zoom Video SDK, Zoom’s Core Technology
Zoom has opened up its core technology for developers alike to build custom video, audio, screen share, and chat experiences. Learn how to use the Zoom Video SDK and witness just how simple, yet powerful it is.
PRO TALK (API): Make Content Queryable: How to Build a Real-Time Document Store That Scales Globally
Customer-facing applications are increasingly integrated across the business, driven by a host of workflows spanning departments and even organizations. From marketing to e-commerce and all the way into the heart of product, content is powering all of our customer interactions, yet it is so often treated as an afterthought, handled by an amalgam of disconnected databases, isolated systems and, god forbid, a patchwork of spreadsheets.
There is a better way. In this talk, I'll outline how to build a modern, scalable content infrastructure, then walk you through the important steps you need to take to build that resilient, collaborative, global content store. I'll introduce the concept of a “Content Lake", similar to a data lake, and discuss the specifics of the Sanity Content Lake, a turn-key system for content orchestration that provides a single source of truth. We also invented GROQ, a flexible query for schemaless JSON documents, that's used to power GraphQL and other APIs. This lets you integrate content across internal tools and systems so applications run smoothly with the right content at the right time.
PRO TALK (API): A Bridge Too Far? Creating APIs for Some of the World’s Most Challenging Platforms
We all know that creating APIs for modern platforms can be a vexing experience without the right set of tools, processes, and people. But how do you create APIs for mission-critical legacy platforms that were never designed to be integrated with in the first place? How do you unlock the decades of investment your organization has made in these workhorse systems? Integrating with “green screen” applications? Seriously, is that even a thing anymore??? (Yeah, it totally is…)
Best case, this usually this entails dealing with uncommon security protocols, complex systems programming, ungainly architectural workarounds, and a lot of time and resources – the latter two of which are almost always scarce commodities. So many organizations just avoid the topic and try to work around it, or they hire armies of consultants who just end up adding to their already burgeoning legacy technical debt.
Can these APIs actually be built quickly and cost-effectively without disrupting the business - or is this simply “a bridge too far” for most organizations? In this session we’ll show you how to create sophisticated, scalable, and secure legacy APIs in a matter of minutes, rather than the weeks or months it normally takes, without writing a single line of code.
PRO TALK (API): How to Autogenerate Awesome GraphQL Documentation with SpectaQL
Having accurate and complete documentation for your APIs is necessary, but can also be quite challenging and time consuming. GraphQL, however, with its schema definition and the variety of tools that can access and explore that schema, does not have to be. See how our open-source project SpectaQL can help you keep your documentation complete, current and beautiful with the least amount of pain possible.
Cancelled -- KEYNOTE (API): Marqeta -- Bringing Crypto to Real-World Payments with APIs
46 million Americans said they’d like to use cryptocurrencies to make retail purchases, and new APIs can help make that happen. Cryptocurrency platforms have come a long way in the last decade and new APIs are helping make crypto more accessible for the average person. Randy will discuss how flexible APIs help cryptocurrency platforms simplify how cryptocurrency holders make purchases, accelerating innovation in the space. He’ll share examples, such as how Coinbase created a customizable debit card that makes it easy for its users to spend from their crypto balances where Visa debit cards are accepted.
OPEN TALK (API): Expanding from Consumer to Enterprise with APIs: Learn, Build, Optimize
Picsart built a 150M monthly creators strong consumer business with its app that offers hundreds of individual tools for fast editing. And now the company is exploring new territory with their new API program designed to make their most popular consumer creative tools available to enterprises and platforms via API. Learn how Picsart’s API team built a new revenue stream from existing tech but with a completely new business approach.
PRO TALK (API): Bitloops Language (BL): Giving API developers DDD/BDD superpowers
BL is an open-source, high-productivity, fourth generation (4GL), DDD/BDD focused, programming language that transpiles into mainstream programming languages such as TypeScript and Java and helps developers build and maintain complex APIs faster and better than ever before.
Domain Driven Design (DDD) and Behavior Driven Development (BDD) are proven ways to increase developer productivity and a sure way to improve the probability of a product or project succeeding. Nonetheless, DDD and BDD require significant experience and have a very steep learning curve. As a result, most organizations and individuals fail to make DDD and BDD part of their everyday routine and end up missing out on their significant advantages.
BL has been created to dramatically reduce the DDD/BDD learning curve for developers, allowing them to produce working DDD systems in no time.
During the talk we will see how we can quickly write a working system using Domain-Driven Design and deploy it as a TypeScript project while easily switching between a modular monolith and an Event-Driven distributed microservices architecture.
Tuesday, November 1, 2022
[#VIRTUAL] PRO Workshop (API): Building an API Layer for Blockchain Data using Scaffold-ETH and The Graph
Join on HopinIn this talk we will showcase how to leverage the power of The Graph to index blockchain event data into an easy to use and flexible API built on Graph QL.
Attendees can easily follow along the workshop by building out their own development environment with only Git, Yarn and NodeJS. Come learn to build the future on Web3.
[#VIRTUAL] PRO Workshop (API): OpenAPI3 + Istio = Zero Overhead API Routing
Join on HopinAPI-as-a-Product is an emerging concept in the software development sphere. Speed in API development and delivery is becoming increasingly important. Open API 3 enables faster and collaborative API development and its custom extensions can be leveraged to augment API contracts with additional functionality. Here at Intuit we built a system that uses Open API spec, Istio Service Mesh and other extensions to dynamically generate the runtime and enable zero overhead routing for the orchestration APIs. Istio VirtualService is used to create the routing layer with zero overhead to enable faster API delivery. This zero overhead routing supports API patterns like aggregation, transformation and proxy and can be used uniformly across both north-south (via API Gateway on Service Mesh) and east-west traffic. Such an API orchestration runtime and routing will allow you to create and present new and elegant APIs on top of existing APIs while adhering to industry best practices. Come and learn how Intuit’s API Management Platform team built a low code / no code zero overhead routing for orchestration APIs using OpenAPI3 and Istio.
[#VIRTUAL] PRO Workshop (API): Crafting a Simpler Developer Experience for APIs with UI Kits
Developer Experience (DevEx or DX if you prefer) is all about creating an environment where APIs can be used successfully by the end-user, a software developer.
This session will take a look at examples and better practices for crafting a DX that puts the needs of a developer for adoption first as the metric of success. Designing Low-Code APIs and UI Kits can be an effective way of making the easy things easy and the hard things possible.
[#VIRTUAL] PRO Workshop (API): From Web API to Native API
Join on HopinToday, most SaaS providers provide web APIs that allow their users to customize their experience. The user often needs to set up and maintain a webhook server to receive API events, tolerate long latencies, and handle authentication and authorization. That is a lot of development and operation efforts besides the core business functions the user wants to perform. In another word, those web APIs are not serverless.
There is an emerging approach for users to interact with, extend and customize SaaS products through serverless functions. SaaS could enable users to submit code functions to be embedded in their SaaS account, much like AWS Lambda allowing users to embed serverless functions into the AWS infrastructure. In that way, the SaaS provides native integration points in the form of programming language APIs instead of web APIs to the users. It is much faster and safer than web APIs and allows developers to focus on business logic.
WebAssembly plays a crucial role in those SaaS serverless functions by providing a secure, safe, lightweight, and high-performance sandbox runtime for those user-submitted functions.
In this talk, Dr. Yuan will cover technical approaches to embedding WebAssembly functions, written in languages like Rust, Go, JavaScript and Python, into SaaS products and therefore turning them into aPaaS platforms. Those serverless functions could be embedded into the SaaS or “co-located” with the SaaS. He will demonstrate use cases with popular SaaS products such as Github and Slack.
[#VIRTUAL] PRO Workshop (API): Testing Pyramid for Event-Driven Microservices
Join on HopinEvent-Driven systems, being decoupled by definition, present a very different API from classic, endpoint-based microservices. This characteristic requires an evolution of the traditional approach to writing automated tests.
In this session, we will look at various ways to write these automated tests for these kinds of systems. The session will include a live code walkthrough in Kotlin.
Wednesday, November 2, 2022
[#VIRTUAL] OPEN TALK (API): Evented API Gateways: Bringing the Productivity of Evented Systems to Synchronous Services and Systems
We all know that synchronous and asynchronous APIs can be a bit like oil and water. They’re completely different, operate on different protocols, and operate on different communication paradigms.
So, how are organizations supposed to manage, secure, and govern API ecosystems that have both synchronous and asynchronous APIs playing vital roles for the business?
Join this session to learn about how teams can implement an event-native API Management strategy to bring the productivity of evented backends and services to synchronous systems, make synchronous and asynchronous systems “shake hands” securely, and turn these APIs into revenue-generating products.
So, how are organizations supposed to manage, secure, and govern API ecosystems that have both synchronous and asynchronous APIs playing vital roles for the business?
Join this session to learn about how teams can implement an event-native API Management strategy to bring the productivity of evented backends and services to synchronous systems, make synchronous and asynchronous systems “shake hands” securely, and turn these APIs into revenue-generating products.
[#VIRTUAL] WORKSHOP (API): Protecting GraphQL with Effective Governance & Security
Join on HopinGraphQL is a new approach to expose your services to application developers. There are many advantages which come with new challenges to security and governance. In this session you can learn how to protect and enforce governance for your GraphQL server endpoints from these unique GraphQL threats with a low-code approach. You'll see demoes of numerous approaches such as cost analysis, graph filtering, and much more.
[#VIRTUAL] OPEN TALK (API): Is Your App Security Scalable?
Join on HopinThis discussion focuses on building durable, scalable access control systems for you and your clients’ database/app architectures. We will review three access control systems (Access Control Lists (ACLs), Role-Based Access Controls (RBAC), and Policy-Based Access Controls (PBAC (or ABAC))) and then, in a thought experiment, compare the development and maintenance effort of each when fulfilling the authorization requirements for one software app. The goal of this discussion is to offer you a system selection guide for your apps and present the case for why we chose PBAC for Devii.
Thursday, November 3, 2022
[#VIRTUAL] PRO TALK (API): APIs in the wild
Join on HopinWith the expansion of the cloud towards the end user, some common issues emerge: unreliable internet connection, fewer hardware resources, unreliable power available, metered connection …
In most of those use cases though the devices out there still need some way to communicate with the cloud, to let it know they are still alive at the very least. But what is the quickest and most efficient way to do that?
In this session we will explore and compare different API protocols in terms of resource usage and we will examine different mechanisms that are usually available at the API gateway level and at the device level, to optimize communication and respond to failures at the different levels of the stack.
We will conclude with some industry best practices when building services at the edge.
[#VIRTUAL] PRO TALK (API): Build Resilient Applications Using Orchestration
Join on HopinAs we move towards an exciting future of more distributed systems, we are bound to encounter microservices written in different languages and infrastructures.
The resiliency of different applications only makes sense if they come together beautifully to create one invincible application.
In this session, we will talk about how companies like Netflix, Tesla, etc. used orchestration to build robust and scalable applications that inspire innovation.
[#VIRTUAL] OPEN TALK (API): Expanding from Consumer to Enterprise with APIs: Learn, Build, Optimize
Join on HopinPicsart built a 150M monthly creators strong consumer business with its app that offers hundreds of individual tools for fast editing. And now the company is exploring new territory with their new API program designed to make their most popular consumer creative tools available to enterprises and platforms via API. Learn how Picsart’s API team built a new revenue stream from existing tech but with a completely new business approach.
[#VIRTUAL] OPEN TALK (API): Build with the Zoom Video SDK, Zoom’s Core Technology
Join on HopinZoom has opened up its core technology for developers alike to build custom video, audio, screen share, and chat experiences. Learn how to use the Zoom Video SDK and witness just how simple, yet powerful it is.
[#VIRTUAL] PRO TALK (API): Make Content Queryable: How to Build a Real-Time Document Store That Scales Globally
Join on HopinCustomer-facing applications are increasingly integrated across the business, driven by a host of workflows spanning departments and even organizations. From marketing to e-commerce and all the way into the heart of product, content is powering all of our customer interactions, yet it is so often treated as an afterthought, handled by an amalgam of disconnected databases, isolated systems and, god forbid, a patchwork of spreadsheets.
There is a better way. In this talk, I'll outline how to build a modern, scalable content infrastructure, then walk you through the important steps you need to take to build that resilient, collaborative, global content store. I'll introduce the concept of a “Content Lake", similar to a data lake, and discuss the specifics of the Sanity Content Lake, a turn-key system for content orchestration that provides a single source of truth. We also invented GROQ, a flexible query for schemaless JSON documents, that's used to power GraphQL and other APIs. This lets you integrate content across internal tools and systems so applications run smoothly with the right content at the right time.
[#VIRTUAL] PRO TALK (API): A Bridge Too Far? Creating APIs for Some of the World’s Most Challenging Platforms
Join on HopinWe all know that creating APIs for modern platforms can be a vexing experience without the right set of tools, processes, and people. But how do you create APIs for mission-critical legacy platforms that were never designed to be integrated with in the first place? How do you unlock the decades of investment your organization has made in these workhorse systems? Integrating with “green screen” applications? Seriously, is that even a thing anymore??? (Yeah, it totally is…)
Best case, this usually this entails dealing with uncommon security protocols, complex systems programming, ungainly architectural workarounds, and a lot of time and resources – the latter two of which are almost always scarce commodities. So many organizations just avoid the topic and try to work around it, or they hire armies of consultants who just end up adding to their already burgeoning legacy technical debt.
Can these APIs actually be built quickly and cost-effectively without disrupting the business - or is this simply “a bridge too far” for most organizations? In this session we’ll show you how to create sophisticated, scalable, and secure legacy APIs in a matter of minutes, rather than the weeks or months it normally takes, without writing a single line of code.
[#VIRTUAL] PRO TALK (API): How to Autogenerate Awesome GraphQL Documentation with SpectaQL
Join on HopinHaving accurate and complete documentation for your APIs is necessary, but can also be quite challenging and time consuming. GraphQL, however, with its schema definition and the variety of tools that can access and explore that schema, does not have to be. See how our open-source project SpectaQL can help you keep your documentation complete, current and beautiful with the least amount of pain possible.
[#VIRTUAL] PRO TALK (API): API Challenges for the Metaverse (AR, VR) Ecosystem
Join on HopinIf Metaverse is the next big thing, as creators and users we shouldn't have to deal with proprietary metaverses that live in silos.
In this talk, we will examine the current challenges and potential solutions for metaverse tech based on developing applications for several AR/VR platforms:
1. Unity and Unreal Games Engines both provided APIs to build AR/VR experiences.
2. iOS & Android have their own frameworks - ARCore & ARKit to build mobile AR Apps
3. WebXR initiative is working to bring VR and AR technology to the web using standard browser support but it's currently limited.
4. Occulus and Roblox have their own frameworks and APIs
To overcome these challenges developers should re-use their code not re-write the same logic for different tools/platforms. Architects need to define a standard-based approach that not only has common sets of APIs but also APIs that allow connecting from one system to another just like HTTP does for the web.
[#VIRTUAL] PRO TALK (API): Bitloops Language (BL): Giving API developers DDD/BDD superpowers
Join on HopinBL is an open-source, high-productivity, fourth generation (4GL), DDD/BDD focused, programming language that transpiles into mainstream programming languages such as TypeScript and Java and helps developers build and maintain complex APIs faster and better than ever before.
Domain Driven Design (DDD) and Behavior Driven Development (BDD) are proven ways to increase developer productivity and a sure way to improve the probability of a product or project succeeding. Nonetheless, DDD and BDD require significant experience and have a very steep learning curve. As a result, most organizations and individuals fail to make DDD and BDD part of their everyday routine and end up missing out on their significant advantages.
BL has been created to dramatically reduce the DDD/BDD learning curve for developers, allowing them to produce working DDD systems in no time.
During the talk we will see how we can quickly write a working system using Domain-Driven Design and deploy it as a TypeScript project while easily switching between a modular monolith and an Event-Driven distributed microservices architecture.