APIs: Possibilities and Pitfalls
Published by O'Reilly Media, Inc.
Future-proofing for innovation and security in the API economy
Following up on the themes explored during our API Day event in the early spring, APIs: Possibilities and Pitfalls now takes exploring APIs to the next step, with future-thinking insights on important and innovative APIs and techniques for API-driven development, integrating machine learning models, and platform engineering.
Join host Jean Yang and some of the top experts in the field to learn how to leverage APIs to build new products, increase productivity, and more. Whether you’re a machine learning engineer, business leader, security analyst, developer, or software architect, these practical sessions will help you understand APIs at a deeper level to build resilient, secure, and future-proof applications as part of the API economy.
We’re still working on finalizing the schedule for this event. Please check back closer to the event date for more information.
What you’ll learn and how you can apply it
- Learn how the API economy is driving and transforming internal developer platforms
- Understand how to design, build, integrate, and secure APIs
- Determine your API strategy for integrating generative AI into your product
This live event is for you because...
- You’re a software architect looking to effectively integrate APIs into your architecture.
- You’re a software developer who needs strategies for successfully choosing and integrating APIs, as well as the skills and tools for building robust and scalable APIs.
- You’re part of an ops team dealing with the integration, governance, management, and automation of APIs and the applications using them.
- You’re a security analyst who wants to better understand how to combat the threat presented by recent increases in API attacks.
- You’re a business leader looking to lead and accelerate your digital transformation efforts.
- You’re a web or application developer faced with overwhelming choice, security challenges, and a rapidly changing future landscape of Web APIs.
Prerequisites
- Come with your questions
- Have a pen and paper handy to capture notes, insights, and inspiration
Recommended follow-up:
- Read Mastering API Architecture (book)
- Read RESTful Web API Patterns and Practices Cookbook (book)
- Read Continuous API Management, second edition (book)
- Read Designing Web APIs: Building the APIs that Developers Love (book)
- Take API Styles Fundamentals (live online course with Lukasz Dynowski)
- Take GraphQL First Steps (live online course with Eve Porcello)
Schedule
The time frames are only estimates and may vary according to how the class is progressing.
Jean Yang: Introduction (5 minutes) - 8:00am PT | 11:00am ET | 3:00pm UTC/GMT
- Jean Yang welcomes you to APIs: Possibilities and Pitfalls.
Daniel Bryant: The Busy Platform Engineer’s Guide to API Gateways (30 minutes) 8:05am PT | 11:05am ET | 3:05pm UTC/GMT
- API gateways are not a new technology, but the way they’re being deployed, configured, and operated within modern platforms is forcing many to rethink their approach. Can you simply lift and shift your existing gateway into the cloud? Is your API gateway GitOps-friendly (and must it be)? And what about service meshes, CNI, eBPF, and…? Daniel Bryant takes you on a whistle-stop tour of modern API gateways, focusing on deploying and managing this technology within Kubernetes, on which many modern platforms are built. You’ll learn about gateways, options, and requirements for modern platforms, understand how to identify key considerations for migrating to the cloud or building a new platform on Kubernetes, and examine how cloud native workflows impact the user/developer experience of an API gateway.
- Daniel Bryant is an independent technical consultant and the news manager at InfoQ. His technical expertise centers on DevOps tooling, cloud/container platforms, and microservice implementations. He’s a longtime coder, platform engineer, and Java Champion who contributes to several open source projects. He also writes for InfoQ, O’Reilly, and the New Stack and regularly presents at international conferences such as KubeCon, QCon, and JavaOne. In his copious amounts of free time, he enjoys running, reading, and traveling.
Lorna Mitchell: API Experience is Developer Experience (30 minutes) - 8:35am PT | 11:35am ET | 3:35pm UTC/GMT
- Traditionally, best practices in API experience have been reserved for external APIs for paying customers. But as systems grow in complexity, internal APIs grow quickly, and those best practices become very valuable within organizations too. Lorna Mitchell shares how having good processes in place throughout the API development lifecycle can improve the developer experience for the people who build and publish the APIs and those who integrate with them. You’ll hear how to improve the quality and standards of APIs at your organization, how to choose tools to make the job easier, and how to help your developer teams play nicely together.
- Lorna Mitchell works on developer experience at Redoclyis and is a published author and experienced conference speaker based in Yorkshire, UK. She has a strong background in open source and a passion for making APIs and developer tools better for everyone. You can find out more about Lorna on her website.
- Break (5 minutes)
Joyce Lin: API-First Design and Development (30 minutes) 9:10am PT | 12:10pm ET | 4:10pm UTC/GMT
- More organizations are prioritizing APIs at the beginning of the development process, positioning them as the building blocks of software. Joyce Lin introduces an API-first design and development approach and compares it with a traditional code-first software development process. Learn how pioneering organizations are implementing API-first practices and how you can get started too.
- Joyce Lin is a senior director of developer relations at Postman, where she works with organizations to design better practices for building and testing APIs. Previously, she held positions in marketing, pricing analysis, and product management at Motili, CenturyLink, and HomeAdvisor. Joyce shares her insights with the broader community through technical blog posts or videos.
José Haro Peralta: Secure by Design—Delivering Safe and Reliable APIs (30 minutes) 9:40am PT | 12:40pm ET | 4:40pm UTC/GMT
- Organizations increasingly use APIs to drive integrations, automate internal processes, and tap into new lines of business. But APIs also represent gateways into systems and can make organizations vulnerable to data breaches and system abuse. José Haro Peralta explains how to deliver secure APIs by shifting security to the left with a secure-by-design approach. You’ll learn how secure-by-design fits within the API development cycle and explore design patterns and best practices for designing secure APIs. José also discusses tools like fuzzy testers that can help you automate your API security testing and validation process.
- José Haro Peralta is an architecture consultant, author, instructor, and speaker based in London. He's the author of Microservice APIs (Manning, 2022) and the founder of microapis.io. José helps organizations design complex distributed architectures, deliver better API integrations, and modernize their systems. He’s taught hundreds of students to build APIs and microservices.
- Break (5 minutes)
Evan Prodromou: The ActivityPub API (30 minutes) 10:15am PT | 1:15pm ET | 5:15pm UTC/GMT
- ActivityPub is a social API standard defined by the World Wide Web Consortium—the underlying standard for the social web (a.k.a. “the fediverse”). It lets people on one social network, such as Threads, follow people on another social network, such as Mastodon. This flexibility lets software developers create exciting and innovative services on the social web that are available to anyone with an account. Evan Prodromou reviews the ActivityPub standard and give examples of both simple and complex ways to distribute social content.
- Evan Prodromou is a people and product leader based in Montreal, Quebec. Co-creator of the ActivityPub specification, he’s the author of an upcoming book on ActivityPub for O’Reilly.
Jean Yang: Closing Remarks (5 minutes) 10:45am PT | 1:45pm ET | 5:45pm UTC/GMT
Your Host
Jean Yang
Jean Yang is the head of product/observability at Postman. Previously, she was founder and CEO of Akita Software, acquired by Postman this year. Before starting Akita, she was an assistant professor at Carnegie Mellon University. In 2016, Jean was named one of MIT's Top 35 Innovators Under 35 for her work on programming tools.