Book Image

Modern API Development with Spring 6 and Spring Boot 3 - Second Edition

By : Sourabh Sharma
1 (1)
Book Image

Modern API Development with Spring 6 and Spring Boot 3 - Second Edition

1 (1)
By: Sourabh Sharma

Overview of this book

Spring is a powerful and widely adopted framework for building scalable and reliable web applications in Java, complemented by Spring Boot, a popular extension to the framework that simplifies the setup and configuration of Spring-based applications. This book is an in-depth guide to harnessing Spring 6 and Spring Boot 3 for web development, offering practical knowledge of building modern robust web APIs and services. The book covers a wide range of topics that are essential for API development, including RESTful web service fundamentals, Spring concepts, and API specifications. It also explores asynchronous API design, security, designing user interfaces, testing APIs, and the deployment of web services. In addition to its comprehensive coverage, this book offers a highly contextual real-world sample app that you can use as a reference for building different types of APIs for real-world applications. This sample app will lead you through the entire API development cycle, encompassing design and specification, implementation, testing, and deployment. By the end of this book, you’ll have learned how to design, develop, test, and deploy scalable and maintainable modern APIs using Spring 6 and Spring Boot 3, along with best practices for bolstering the security and reliability of your applications and improving your application's overall functionality.

Related Content you might be interested in

Current Title:

Small book image
Modern API Development with Spring 6 and Spring Boot 3 - Second Edition
Sourabh Sharma
Sep, 2023 | 494 pages
Small book image
Mastering Microservices with Java.
Sourabh Sharma
Feb, 2019 | 446 pages
Small book image
Learning Spring Boot 3.0
Greg L Turnquist
Dec, 2022 | 270 pages
Small book image
Mastering Microservices with Java 9
Sourabh Sharma
Dec, 2017 | 316 pages
Table of Contents (21 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1 – RESTful Web Services
Part 1 – RESTful Web Services
Free Chapter
2
Chapter 1: RESTful Web Service Fundamentals
Chapter 1: RESTful Web Service Fundamentals
Technical requirements
Introducing REST APIs
Handling resources and URIs
Exploring HTTP methods and status codes
What is HATEOAS?
Best practices for designing REST APIs
Introducing our e-commerce app
Summary
Questions
Answers
Further reading
3
Chapter 2: Spring Concepts and REST APIs
Chapter 2: Spring Concepts and REST APIs
Technical requirements
Understanding the patterns and paradigms of Spring
Understanding the application of IoC containers
Defining a bean and its scope
Configuring beans using Java
How to code DI
Configuring a bean’s metadata using annotations
Writing code for AOP
Why use Spring Boot?
Understanding the importance of servlet dispatcher
Summary
Questions
Answers
Further reading
4
Chapter 3: API Specifications and Implementation
Chapter 3: API Specifications and Implementation
Technical requirements
Designing APIs with OAS
Understanding the basic structure of OAS
Converting OAS to Spring code
Implementing the OAS code interfaces
Adding a Global Exception Handler
Testing the implementation of the API
Summary
Questions
Answers
Further reading
5
Chapter 4: Writing Business Logic for APIs
Chapter 4: Writing Business Logic for APIs
Technical requirements
Overview of the service design
Adding a Repository component
Adding a Service component
Implementing hypermedia
Enhancing the controller with a service and HATEOAS
Adding ETags to API responses
Testing the APIs
Summary
Questions
Answers
Further reading
6
Chapter 5: Asynchronous API Design
Chapter 5: Asynchronous API Design
Technical requirements
Understanding Reactive Streams
Exploring Spring WebFlux
Understanding DispatcherHandler
Implementing reactive APIs for our e-commerce app
Summary
Questions
Answers
Further reading
7
Part 2 – Security, UI, Testing, and Deployment
Part 2 – Security, UI, Testing, and Deployment
8
Chapter 6: Securing REST Endpoints Using Authorization and Authentication
Chapter 6: Securing REST Endpoints Using Authorization and Authentication
Technical requirements
Implementing authentication using Spring Security 
and JWT
Securing REST APIs with JWT
Configuring CORS and CSRF
Understanding authorization
Testing security
Summary
Questions
Answers
Further reading
9
Chapter 7: Designing a User Interface
Chapter 7: Designing a User Interface
Technical requirements
Learning React fundamentals
Exploring React components and other features
Designing the e-commerce app components
Consuming APIs using Fetch
Implementing authentication
Running the application
Summary
Questions
Answers
Further reading
10
Chapter 8: Testing APIs
Chapter 8: Testing APIs
Technical requirements
Testing APIs and code manually
Testing automation
Summary
Questions
Answers
Further reading
11
Chapter 9: Deployment of Web Services
Chapter 9: Deployment of Web Services
Technical requirements
What is containerization?
Building a Docker image
Deploying an application in Kubernetes
Summary
Questions
Answers
Further reading
12
Part 3 – gRPC, Logging, and Monitoring
Part 3 – gRPC, Logging, and Monitoring
13
Chapter 10: Getting Started with gRPC
Chapter 10: Getting Started with gRPC
Technical requirements
How does gRPC work?
Understanding service definitions
Exploring the RPC life cycle
Handling errors and error status codes
Summary
Questions
Answers
Further reading
14
Chapter 11: gRPC API Development and Testing
Chapter 11: gRPC API Development and Testing
Technical requirements
Writing an API
Developing the gRPC server
Coding for handling errors
Developing the gRPC client
Understanding microservice concepts
Summary
Questions
Answers
Further reading
15
Chapter 12: Adding Logging and Tracing to Services
Chapter 12: Adding Logging and Tracing to Services
Technical requirements
Logging and tracing using the ELK stack
Installing the ELK stack
Implementing logging and tracing in the gRPC code
Distributed tracing with Zipkin and Micrometer
Summary
Questions
Answers
Further reading
16
Part 4 – GraphQL
Part 4 – GraphQL
17
Chapter 13: Getting Started with GraphQL
Chapter 13: Getting Started with GraphQL
Technical requirements
Getting to know GraphQL
Learning the fundamentals of GraphQL
Designing a GraphQL schema
Testing GraphQL queries and mutations
Solving the N+1 problem
Summary
Questions
Answers
Further reading
18
Chapter 14: GraphQL API Development and Testing
Chapter 14: GraphQL API Development and Testing
Technical requirements
Workflow and tooling for GraphQL
Implementing the GraphQL server
Implementing GraphQL queries
Writing fetchers for GraphQL queries
Implementing GraphQL mutations
Implementing and testing GraphQL subscriptions
Instrumenting the GraphQL APIs
Test automation
Summary
Questions
Answers
Further reading
19
Index
Index
Why subscribe?
20
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

What is HATEOAS?

With HATEOAS, RESTful web services provide information dynamically through hypermedia. Hypermedia is a part of the content that you receive from a REST call response. This hypermedia content contains links to different types of media, such as text, images, and videos.

Hypermedia links can be contained either in HTTP headers or the response body. If you look at GitHub APIs, you will find that GitHub APIs provide hypermedia links in both headers and the response body. GitHub uses the header named Link to contain the paging-related links. Additionally, if you look at the responses of GitHub APIs, you’ll also find other resource-related links with keys that have a postfix of url. Let’s look at an example. We’ll hit the GET /users resource and analyze the response:

$ curl -v https://api.github.com/users

This command execution provides an output similar to the following:

*   Trying 20.207.73.85:443...* Connected to api.github.com (20.207.73.85) port 443 (#0)… < more info>
…
> GET /users HTTP/2
> Host: api.github.com
> user-agent: curl/7.78.0
… < more info >
< HTTP/2 200
< server: GitHub.com
< date: Sun, 28 Aug 2022 04:31:50 GMT status: 200 OK
< content-type: application/json; charset=utf-8
…
< link: <https://api.github.com/users?since=46>; rel="next", <https://api.github.com/users{?since}>; rel="first"
…
[
  {
    "login": "mojombo",
    "id": 1,
    "node_id": "MDQ6VXNlcjE=",
    "avatar_url":
        "https://avatars.githubusercontent.com/u/1?v=4",
    "gravatar_id": "",
    "url": "https://api.github.com/users/mojombo",
    "html_url": "https://github.com/mojombo",
    "followers_url":
        "https://api.github.com/users/mojombo/followers",
    "following_url":
"https://api.github.com/users
/mojombo/following{/other_user}",
    "gists_url": "https://api.github.com/users/mojombo/gists{/gist_        id}",
    "starred_url":
"https://api.github.com/users/mojombo/starred{/owner}{/repo}",
    "subscriptions_url":
        "https://api.github.com/users/mojombo/subscriptions",
    "organizations_url":
        "https://api.github.com/users/mojombo/orgs",
    "repos_url":
        "https://api.github.com/users/mojombo/repos",
    "events_url":    "https://api.github.com/users/mojombo/events{/        privacy}",
    "received_events_url":
       "https://api.github.com/users/mojombo/received_events",
    "type": "User",
    "site_admin": false
  },
  …
  … < more data >
]

In the preceding output, you’ll find that the Link header contains the pagination information. Links to the next page and the first page are given as a part of the response. Additionally, you can find many URLs in the response body, such as avatar_url or followers_url, which provide links to other hypermedia.

REST clients should possess a generic understanding of hypermedia so they can interact with RESTful web services without having any specific knowledge of how to interact with the server. You just call any static REST API endpoint, and you will receive the dynamic links as a part of the response to interact further. REST allows clients to dynamically navigate to the appropriate resource by traversing the links. It empowers machines, as REST clients can navigate to different resources in a similar way to how humans look at a web page and click on any link. Put simply, the REST client uses these links to navigate.

HATEOAS is a very important concept of REST. It is one of the concepts that differentiate REST from RPC. Even Roy Fielding was so concerned with certain REST API implementations that he published the following blog on his website in 2008: REST APIs must be hypertext-driven (https://roy.gbiv.com/untangled/2008/rest-apis-must-be-hypertext-driven).

You must be wondering what the difference between hypertext and hypermedia is. Essentially, hypermedia is just an extended version of hypertext.

What is the difference between hypermedia and hypertext?

As Roy Fielding states: “When I say hypertext, I mean the simultaneous presentation of information and controls such that the information becomes the affordance through which the user (or automaton) obtains choices and selects actions. Hypermedia is just an expansion on what text means to include temporal anchors within a media stream; most researchers have dropped the distinction. Hypertext does not need to be HTML on a browser. Machines can follow links when they understand the data format and relationship types.”

Now that you are familiar with REST, let’s explore REST best practices in the next section.

Previous Section
End of Section 6
Next Section