Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Modern REST API Development in Go
  • Table Of Contents Toc
Modern REST API Development in Go

Modern REST API Development in Go

By : Jesús Espino
Buy this Book
close
close
Modern REST API Development in Go

Modern REST API Development in Go

By: Jesús Espino
Buy this Book

Overview of this book

Modern REST API Development in Go is a hands-on guide to understanding and applying REST principles using Go’s powerful standard library. In an era where interconnected systems demand robust and performant APIs, Go offers the perfect combination of simplicity, performance, and tooling to build modern backend services. This book is centered around a complete, real-world REST API project and guides you through every stage of the development process, from building HTTP handlers to applying authentication and generating OpenAPI documentation. You’ll learn to structure your application, handle persistence with common libraries like GORM and Squirrel, apply observability patterns through logging and tracing, and ensure code quality through unit and integration tests. Each concept is grounded in REST theory and backed by idiomatic Go practices, enabling you to build APIs that are not only functional but production-ready. By the end of the book, you’ll be ready to design, build, and maintain REST APIs in Go.
Table of Contents (18 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Get in touch
Lock Free Chapter
1
Introduction to APIs
Icon
Introduction to APIs
Icon
Getting the most out of this book – get to know your free benefits
Icon
Technical requirements
Icon
What’s an API?
Icon
What’s REST?
Icon
Why use Go for API development?
Icon
Building a simple API in Go
Icon
Summary
2
Exploring REST APIs
Icon
Exploring REST APIs
Icon
Technical requirements
Icon
OpenAPI
Icon
Postman
Icon
curl
Icon
Summary
3
Building a REST Client
Icon
Building a REST Client
Icon
Technical requirements
Icon
The Go HTTP client
Icon
Request and Response objects
Icon
Building your API client
Icon
Summary
4
Designing Your REST API
Icon
Designing Your REST API
Icon
Technical requirements
Icon
HTTP methods and status codes
Icon
Understanding routing
Icon
Middleware
Icon
API versioning
Icon
Building a CRUD API
Icon
Summary
5
Authentication and Authorization
Icon
Authentication and Authorization
Icon
Basic authentication
Icon
Token-based authentication
Icon
Authorization using the RBAC approach
Icon
Adding authentication to our API
Icon
Adding authorization to our API
Icon
Summary
6
Data Persistency
Icon
Data Persistency
Icon
Creating and accessing your database
Icon
The repository pattern
Icon
The sql package
Icon
Using a query builder
Icon
Adding persistence to your API
Icon
Summary
7
API Security
chevron up
Icon
API Security
Icon
Input validation and sanitization
Icon
Password handling
Icon
HTTP security features
Icon
HTTPS with Let’s Encrypt
Icon
Adding CORS to our API
Icon
Adding HTTPS to our API
Icon
Summary
8
API Performance
Icon
API Performance
Icon
Technical requirements
Icon
HTTP cache
Icon
ETag
Icon
Server cache
Icon
Go performance
Icon
Adding HTTP headers to your API
Icon
Adding an in-memory cache to your API
Icon
Summary
9
Deploying Your API
Icon
Deploying Your API
Icon
Technical Requirements
Icon
Selecting the correct deployment for you
Icon
Bare-metal/VM deployment
Icon
Container deployment
Icon
Kubernetes deployment
Icon
FaaS
Icon
Summary
10
Testing
Icon
Testing
Icon
Technical requirements
Icon
How do you test your API?
Icon
Unit testing and mocks
Icon
Integration testing
Icon
E2E testing
Icon
Adding tests to our shopping list API
Icon
Summary
11
Documenting with OpenAPI
Icon
Documenting with OpenAPI
Icon
Technical requirements
Icon
What is OpenAPI?
Icon
The OpenAPI format
Icon
Documenting your endpoints
Icon
Publishing your API documentation
Icon
Adding OpenAPI documentation to your API
Icon
Summary
12
Metrics, Logs, and Traces
Icon
Metrics, Logs, and Traces
Icon
Why do we need logs, metrics, and traces?
Icon
Logs
Icon
Metrics
Icon
Traces
Icon
Adding observability to our project
Icon
Summary
13
Using GORM
Icon
Using GORM
Icon
Technical requirements
Icon
What is GORM?
Icon
Setting up GORM
Icon
Creating models in GORM
Icon
CRUD operations with GORM
Icon
Working with relationships
Icon
Interesting GORM features
Icon
Integrating GORM into our shopping list API
Icon
Summary
14
Using the Echo Framework
Icon
Using the Echo Framework
Icon
What is Echo?
Icon
Setting up Echo
Icon
Echo handlers
Icon
Echo middleware
Icon
Error handling
Icon
Migrating our shopping list API to Echo
Icon
Summary
15
Unlock Your Book’s Exclusive Benefits
Icon
Unlock Your Book’s Exclusive Benefits
Icon
How to unlock these benefits in three easy steps
16
Other Books You May Enjoy
Icon
Other Books You May Enjoy
17
Index
Icon
Index

HTTP security features

Hypertext Transfer Protocol (HTTP) provides a mechanism to interchange Hypertext, but also provides some security features that, as an API developer, you should be aware of. Let’s start by talking about Content Security Policy (CSP).

CSP

CSP is a mechanism that HTTP provides to have granular control over the restriction of loaded content. One of the most important features of CSP is XSS protection, which we already discussed in the input validation section. With CSP headers, you can restrict inline script execution, remote JavaScript execution, JavaScript eval code execution, and form submission, or even load iframes. CSP is a complex feature, so I would recommend investigating it in detail, but here is an example of how to use it from Go:

func myHandler(rw http.ResponseWriter, r *http.Request) {
  rw.Header().Set("Content-Security-Policy", "default-src 'self'",
    "frame-ancestors 'none'&quot...
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Modern REST API Development in Go
End of Section 7
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon