Learn/

APIs

Six lessons covering how APIs work — the interfaces between every service, client, and system.

REST (resources, HTTP verbs, statelessness, and status codes), GraphQL (schemas, queries, resolvers, and the N+1 problem), gRPC (Protocol Buffers, HTTP/2, and streaming patterns), WebSockets (persistent connections, the upgrade handshake, and real-time data), API authentication (API keys, OAuth 2.0, JWT, and session-based auth), and rate limiting (token bucket, sliding window, and distributed enforcement).

Every networked application communicates through APIs. Understanding how they work — which protocol to choose, how to authenticate, how to handle failure — is the difference between systems that compose cleanly and systems that break under load. The glossary defines every term. The FAQ answers common questions.

Lessons

1How REST Works — Resources, Verbs, and Statelessness2How GraphQL Works — Schemas, Queries, and the N+1 Problem3How gRPC Works — Protocol Buffers, HTTP/2, and Streaming4How WebSockets Work — Persistent Connections and Real-Time Data5How API Authentication Works — API Keys, OAuth, JWT, and Sessions6How Rate Limiting Works — Protecting APIs from Overload7APIs FAQ

Glossary

What is RESTWhat is a ResourceWhat is an EndpointWhat is GraphQLWhat is a SchemaWhat is a QueryWhat is a MutationWhat is a SubscriptionWhat is a ResolverWhat is gRPCWhat is Protocol BuffersWhat is HTTP/2What is a WebSocketWhat is SSEWhat is Long PollingWhat is an API KeyWhat is OAuthWhat is JWTWhat is a Bearer TokenWhat is Rate LimitingWhat is a Token BucketWhat is CORSWhat is IdempotencyWhat is PaginationWhat is a CursorWhat is a WebhookWhat is an API GatewayWhat is OpenAPIWhat is HATEOASWhat is Content Negotiation