An properly designed API for either mobile apps or 3rd party access needs to be built with maintainability, security, version control, data volume optimisation and speed performance in mind. Rod Hemphill from Melbourne App Development explains the options and his experience.
What is Serverless Computing?
From its Introduction, Architecture, Characteristics, Commercial Platform, Benefits and Drawbacks, Use Cases and Workloads, to its API Composition.
Serena unveils the new release of SBM 10.1.5 focused on enhancing and modernizing SBM user experience. Join Dave Easter and Anbu Ramanathan to learn about the latest capabilities that are bundled in our new SBM 10.1.5 release. The wecast covers an overview of the new release and quickly dives into a live product demonstration of the new features.
SAP #BOBJ #BI 4.1 Upgrade Webcast Series 6: User Authentication and SSOSAP Analytics
Obtain details about the authentication methods that are supported by SAP BusinessObjects BI 4.1 platform and how SSO can be achieved for the available BI clients. Also learn about new options to configure SSO for SAP HANA.
• Learn about the major authentication methods that are supported in BI 4.1
• Learn how to achieve SSO using various SSO mechanisms (e.g. Kerberos, CA Siteminder, SAP SSO tickets, etc.)
• Understand the authentication and SSO options available between BI 4.1 and SAP HANA
• Review authentication options available for BI client tools
Fundamentals of software 2 | Test Case | Test Suite | Test Plan | Test ScenarioSiddharth Sharma
Test case design in software testing is a mandatory skill for every Software Test Engineer, QA Engineer, Quality Analyst etc. Test scenario vs Test case are the topics that are required to be clarified. Test suite collection should be managed to have good quality testing.
What is Serverless Computing?
From its Introduction, Architecture, Characteristics, Commercial Platform, Benefits and Drawbacks, Use Cases and Workloads, to its API Composition.
Serena unveils the new release of SBM 10.1.5 focused on enhancing and modernizing SBM user experience. Join Dave Easter and Anbu Ramanathan to learn about the latest capabilities that are bundled in our new SBM 10.1.5 release. The wecast covers an overview of the new release and quickly dives into a live product demonstration of the new features.
SAP #BOBJ #BI 4.1 Upgrade Webcast Series 6: User Authentication and SSOSAP Analytics
Obtain details about the authentication methods that are supported by SAP BusinessObjects BI 4.1 platform and how SSO can be achieved for the available BI clients. Also learn about new options to configure SSO for SAP HANA.
• Learn about the major authentication methods that are supported in BI 4.1
• Learn how to achieve SSO using various SSO mechanisms (e.g. Kerberos, CA Siteminder, SAP SSO tickets, etc.)
• Understand the authentication and SSO options available between BI 4.1 and SAP HANA
• Review authentication options available for BI client tools
Fundamentals of software 2 | Test Case | Test Suite | Test Plan | Test ScenarioSiddharth Sharma
Test case design in software testing is a mandatory skill for every Software Test Engineer, QA Engineer, Quality Analyst etc. Test scenario vs Test case are the topics that are required to be clarified. Test suite collection should be managed to have good quality testing.
SharePoint Saturday Silicon Valley - Upgrading from SharePoint 2010 to 2013Shereen Qumsieh
This slide is a copy of the talk given at SharePoint Saturday Silicon Valley on upgrading a SharePoint 2010 environment to SharePoint 2013 including backup of service applications and content databases, testing, installation and upgrade.
Learn how to monitor the various attributes of WebSphere MQ, ActiveMQ, and SharePoint servers, configure systematic alerts for performance degrading issues, and visualize trends with interactive dashboards and advanced analytics.
Hanover Displays Limited designs and manufactures passenger information systems for the public transport industry in the United Kingdom and internationally.
The company offers a range of LED destination signs that include monochrome, curved, colour route number, and full colour signs; various types of sign controllers with various levels of sophistication, interface options, and feature sets; and on-board information systems that include interior LED signs, multimedia screens, and audio announcement systems, as well as on-board computers built specifically for public transport environments.
Its product line comprises interior vehicle lighting, which includes LED strip lighting and direct replacement LED bulbs; static information signs for applications, such as bus stop signs to provide estimated arrival times for waiting passengers; and HELEN, a Windows-based PC program that allows the creation of message databases for display on Hanover’s LED destination signs. The company also provides repair and technical support services. It serves customers through subsidiaries and partnering agents.
Hanover Displays Limited was founded in 1985 and is based in Lewes, United Kingdom.
Hanover has subsidiaries in continental Europe, the Middle East, North America, and Agents in New Zealand and Australia.
Slides from the recording of April Mainframe Virtual User Group with our special guest from TCF Bank. Troy Tomlinson, AVP of Operations, shares the bank's journey from legacy version control systems and lack of visibility to complete control using ChangeMan ZMF. Troy discusses the issues and challenges that drove the decision to upgrade to Serena’s solution and how the bank has benefited from implementing ChangeMan ZMF on Z/OS.
(ATS4-PLAT03) Balancing Security with access for DevelopmentBIOVIA
Administrators of Pipeline Pilot servers wish to have a controlled environment to ensure that ownership and access is properly identified and enforced. Protocol developers desire the ability to quickly easily publish protocols and updates for production use. End-users need deployed applications to be tested and maintained. It is important to establish policies that ensure that these often-conflicting needs are met in a balanced way appropriate for your environment. In this session we will discuss the commonly reported pain points and outline the types of policies and procedures that that can help bring harmony. Be prepared to discuss your own experiences!
Advanced Motion Control: Using the New 1500TF Processor and Siemens LAxis Lib...DMC, Inc.
Presenter - Erin Meyer
DMC recently developed a program for the 1517-TF PLC that utilized the Siemens LAxis function block library to control 15 axes of S120 servo motion. The features utilized included a Virtual Master axis, point to point motion, velocity motion, electronic gearing, and electronic camming. The drives were configured to utilize PROFISafe functions including STO and SS1 functionality.
Topics covered will include: considerations made when selecting the 1500T platform, a summary of the new features on the 1500T, and an overview of the software design, implementation, and commissioning process utilized to successfully start up the machine in TIA Portal v14. This includes developing code using the LAxis library and Profisafe, using Starter to commission the drives, and testing and starting up the various axis configurations. Tips, tricks, and lessons learned will also be presented
http://www.auditbots.com/products/sap-license-saver/
SAP is an extremely powerful system. With that power comes the need to control access to application functions and data elements in an efficient and secure manner for proper SAP License Compliance.
While users may be able to access the functionality required in the system, a number of opportunities exist to increase the effectiveness and efficiency of the security design, reduce overall maintenance, and increase visibility into user access for better control of SAP License Costs.
A high number of excess access occurrences were identified, increasing the risk of unauthorized and inadvertent changes and transactions. Since the SAP License Compliance is based on the User activity in the system, there need to be a better control on the SAP Role Assignment. AuditBOT SAP License Audit tool will consider the actual transactions used by the user and the amount of transaction posted to come up with the optimal SAP License type. We also show you the potential risk in SAP License compliance due to excessive access.
A simple introduction on Sahi Pro tool, used for software testing.In this presentation people will get the short intoduction of this tool that how it is created and which programmming languages are involved to create it.
In today’s economy, e-business has established itself as the essential channel for the growth of businesses everywhere. Extending your business into the electronic channel increases your possibilities of success and expansion into the widest available audience in commerce history
With the guidance and knowledge of TULI eServices, you’ll extend your business into the e-business marketplace quickly and efficiently. Whether you need a Business-to-Business or Business-to-Commerce solution, we can help you build your e-business to your specific needs. Our experts combine cutting-edge technology and tactical business knowledge to deliver reliable, dependable, customized and easy-to-use e-commerce sites. Most importantly, we concentrate on all of your e-business applications, so you will have the time to focus on core business.
“Microservices” have become a trendy development strategy. Hosting and running such services used to be pretty painful... but here comes Service Fabric! Let’s take a closer look at this platform, its different development models and all the features it offers, and not only for microservices!
SharePoint Saturday Silicon Valley - Upgrading from SharePoint 2010 to 2013Shereen Qumsieh
This slide is a copy of the talk given at SharePoint Saturday Silicon Valley on upgrading a SharePoint 2010 environment to SharePoint 2013 including backup of service applications and content databases, testing, installation and upgrade.
Learn how to monitor the various attributes of WebSphere MQ, ActiveMQ, and SharePoint servers, configure systematic alerts for performance degrading issues, and visualize trends with interactive dashboards and advanced analytics.
Hanover Displays Limited designs and manufactures passenger information systems for the public transport industry in the United Kingdom and internationally.
The company offers a range of LED destination signs that include monochrome, curved, colour route number, and full colour signs; various types of sign controllers with various levels of sophistication, interface options, and feature sets; and on-board information systems that include interior LED signs, multimedia screens, and audio announcement systems, as well as on-board computers built specifically for public transport environments.
Its product line comprises interior vehicle lighting, which includes LED strip lighting and direct replacement LED bulbs; static information signs for applications, such as bus stop signs to provide estimated arrival times for waiting passengers; and HELEN, a Windows-based PC program that allows the creation of message databases for display on Hanover’s LED destination signs. The company also provides repair and technical support services. It serves customers through subsidiaries and partnering agents.
Hanover Displays Limited was founded in 1985 and is based in Lewes, United Kingdom.
Hanover has subsidiaries in continental Europe, the Middle East, North America, and Agents in New Zealand and Australia.
Slides from the recording of April Mainframe Virtual User Group with our special guest from TCF Bank. Troy Tomlinson, AVP of Operations, shares the bank's journey from legacy version control systems and lack of visibility to complete control using ChangeMan ZMF. Troy discusses the issues and challenges that drove the decision to upgrade to Serena’s solution and how the bank has benefited from implementing ChangeMan ZMF on Z/OS.
(ATS4-PLAT03) Balancing Security with access for DevelopmentBIOVIA
Administrators of Pipeline Pilot servers wish to have a controlled environment to ensure that ownership and access is properly identified and enforced. Protocol developers desire the ability to quickly easily publish protocols and updates for production use. End-users need deployed applications to be tested and maintained. It is important to establish policies that ensure that these often-conflicting needs are met in a balanced way appropriate for your environment. In this session we will discuss the commonly reported pain points and outline the types of policies and procedures that that can help bring harmony. Be prepared to discuss your own experiences!
Advanced Motion Control: Using the New 1500TF Processor and Siemens LAxis Lib...DMC, Inc.
Presenter - Erin Meyer
DMC recently developed a program for the 1517-TF PLC that utilized the Siemens LAxis function block library to control 15 axes of S120 servo motion. The features utilized included a Virtual Master axis, point to point motion, velocity motion, electronic gearing, and electronic camming. The drives were configured to utilize PROFISafe functions including STO and SS1 functionality.
Topics covered will include: considerations made when selecting the 1500T platform, a summary of the new features on the 1500T, and an overview of the software design, implementation, and commissioning process utilized to successfully start up the machine in TIA Portal v14. This includes developing code using the LAxis library and Profisafe, using Starter to commission the drives, and testing and starting up the various axis configurations. Tips, tricks, and lessons learned will also be presented
http://www.auditbots.com/products/sap-license-saver/
SAP is an extremely powerful system. With that power comes the need to control access to application functions and data elements in an efficient and secure manner for proper SAP License Compliance.
While users may be able to access the functionality required in the system, a number of opportunities exist to increase the effectiveness and efficiency of the security design, reduce overall maintenance, and increase visibility into user access for better control of SAP License Costs.
A high number of excess access occurrences were identified, increasing the risk of unauthorized and inadvertent changes and transactions. Since the SAP License Compliance is based on the User activity in the system, there need to be a better control on the SAP Role Assignment. AuditBOT SAP License Audit tool will consider the actual transactions used by the user and the amount of transaction posted to come up with the optimal SAP License type. We also show you the potential risk in SAP License compliance due to excessive access.
A simple introduction on Sahi Pro tool, used for software testing.In this presentation people will get the short intoduction of this tool that how it is created and which programmming languages are involved to create it.
In today’s economy, e-business has established itself as the essential channel for the growth of businesses everywhere. Extending your business into the electronic channel increases your possibilities of success and expansion into the widest available audience in commerce history
With the guidance and knowledge of TULI eServices, you’ll extend your business into the e-business marketplace quickly and efficiently. Whether you need a Business-to-Business or Business-to-Commerce solution, we can help you build your e-business to your specific needs. Our experts combine cutting-edge technology and tactical business knowledge to deliver reliable, dependable, customized and easy-to-use e-commerce sites. Most importantly, we concentrate on all of your e-business applications, so you will have the time to focus on core business.
“Microservices” have become a trendy development strategy. Hosting and running such services used to be pretty painful... but here comes Service Fabric! Let’s take a closer look at this platform, its different development models and all the features it offers, and not only for microservices!
TULI eServices has extensive experience in all aspects of Web Application Development. Whether you’re migrating an existing business application to the Web or are planning a completely new project, TULI eServices will provide the guidance and experience you need.
A high-level talk on developing APIs for mobile devices in enterprise, partner, and internal modes, with notes on our experience at Klout. Some big concepts are glossed over, and lots of details may be simplified for brevity.
This presentation includes:
- Why performance matters for digital businesses?
- Use Cases for performance / load testing
- Load Test Design Considerations
- Tools and Technologies
- Methodology and Approach
- Activities and Deliverables
- Load Testing Success Stories
Asynchronous API Testing: Trends, Tools & More | Calidad Infotech Calidad Infotech
Application Programming Interface or APIs create a wholesome environment of information exchange between users and services. With the APIs bridging interfaces to back-end data streams, data requests are handled effortlessly.
Slides used in Global Windows Azure Bootcamp, session was about using Azure Mobile Services along with SignalR, ASP.NET Web API to build Windows Phone 8.1 App.
code talks Commerce: The API Economy as an E-Commerce Operating SystemAdelina Todeva
My talk for the CodeTalks Commerce Edition, April 19 and 20 2016 in Berlin.
I explore the possibilities of APIs and API only products, explaining what APIs are, how one can participate in the API Economy, and what do look out for when selecting API products to power an e-commerce organisation
For enterprises trying to stay ahead of the game, having a robust and fast application development program can make or break their market presence. The challenge for developers, however, is to build responsive, devise-agnostic applications in days, not months.
Migrating from a monolith to microservices – is it worth it?Katherine Golovinova
IURII IVON, EPAM Solution Architect, Microsoft Competency Center Expert.
The term ‘microservices’ has become so popular that many people see it as a silver bullet for all architectural problems, or at least as a trend that should be followed. If your project is a monolith today, does it make sense to move towards microservices? This presentation overviews painful issues to be considered when migrating from a monolith to microservice architecture, ways to solve them, and ideas on the feasibility of such migration.
Apinizer - Full API Lifecycle and Integration Platform Mustafa Yildiz
A brief presentation about Apinizer, which has API Gateway, Instant API Creator, API Monitor, API Tester, API Designer, API Analytics and API Portal modules
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Let's dive deeper into the world of ODC! Ricardo Alves (OutSystems) will join us to tell all about the new Data Fabric. After that, Sezen de Bruijn (OutSystems) will get into the details on how to best design a sturdy architecture within ODC.
"Impact of front-end architecture on development cost", Viktor TurskyiFwdays
I have heard many times that architecture is not important for the front-end. Also, many times I have seen how developers implement features on the front-end just following the standard rules for a framework and think that this is enough to successfully launch the project, and then the project fails. How to prevent this and what approach to choose? I have launched dozens of complex projects and during the talk we will analyze which approaches have worked for me and which have not.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Search and Society: Reimagining Information Access for Radical FuturesBhaskar Mitra
The field of Information retrieval (IR) is currently undergoing a transformative shift, at least partly due to the emerging applications of generative AI to information access. In this talk, we will deliberate on the sociotechnical implications of generative AI for information access. We will argue that there is both a critical necessity and an exciting opportunity for the IR community to re-center our research agendas on societal needs while dismantling the artificial separation between the work on fairness, accountability, transparency, and ethics in IR and the rest of IR research. Instead of adopting a reactionary strategy of trying to mitigate potential social harms from emerging technologies, the community should aim to proactively set the research agenda for the kinds of systems we should build inspired by diverse explicitly stated sociotechnical imaginaries. The sociotechnical imaginaries that underpin the design and development of information access technologies needs to be explicitly articulated, and we need to develop theories of change in context of these diverse perspectives. Our guiding future imaginaries must be informed by other academic fields, such as democratic theory and critical theory, and should be co-developed with social science scholars, legal scholars, civil rights and social justice activists, and artists, among others.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
2. PROBLEM STATEMENT
• Management Advantage Pty Ltd provides administration and other solutions
for aged care facilities in Australia.
• There core system is an Entity Framework desktop Aged Care administration
system.
• They had an existing API built for their staff mobile app and needed to:
• provide an API to a new mobile app to support family members of clients, and
• an API to support third parties to provide other solutions such as catering and
maintenance.
• How do you do this?
3. THE CORE SYSTEM
• An extensive solution providing:
• client administration,
• ACFI appraisals,
• Medicare claims,
• client care,
• client assessments,
• care planning,
• progress management,
• graphical charting,
• client, management and healthcare professional communications,
• facilities maintenance,
• compliance audits,
• employee management,
• police checks,
• courses and certificate management,
• invoicing,
• banking
….. It’s big and comprehensive.
• Entity Framework .Net system using Forms, SQL Server with about 1500 tables.
4. STAFF APP
• Intended for client support staff to provide the following services:
• Record chart information (e.g. blood glucose level, heart rate etc)
• Provide staff with client personal information (e.g. life story, family details)
• Evacuation Aid
• ACFI reporting
• Activity events management (e.g. Bingo attendance)
• Xamarin Forms, Android and iPhone, oAuth session based authentication.
• Uses the camera.
• 60 pages, 3 graphic charts using telerix.
• Sqlite database with 117 tables.
• Designed to work offline hence keeps a copy of large amounts of operational data.
One medium sized client has 27,800 records stored locally and kept in sync.
5. FAMILY APP
• For family members of clients to communciate with health care professions, see
what their parents activities, provide feedback and maintenance request.
• Xamarin Forms, 17 pages.
• Social media and standard session based oAuth authetication.
• Push notifications, camera support.
• Sqlite with 20 tables, and a small volume of data.
• Firebase Deep Linking onboarding.
6. API FOR THIRD PARTY ACCESS
• Generic API for third party access to data.
• Uses: Catering services, facilities maintenance.
• Issued encrypted security key access.
• Continually growing.
7. DIFFERING REQUIREMENTS
Staff App Family App 3rd Party Access
Speed of transfer ✔ ✔
Volume of data optimisation ✔
Data synchronisation (always in sync) ✔ ✔
Simplistic flat data formats ✔
Ever evolving functionality ✔
New interfaces ✔
Require stable interfaces ✔
Maintainability ✔ ✔ ✔
8. API DESIGN CONSIDERATIONS
1. Maintainability, extensibility, expandability.
2. Security
3. Version control.
4. Data volume optimisation.
5. Speed performance.
9. 1. MAINTAINABILITY
Single or many API’s?
• Originally one for apps and one for 3rd party API.
• Now a single API.
• The architecture is complex, but the real maintenance is the functional changes.
REST
• Inherently flexible.
• Supports flat and hierarchic data.
• Internal systems can compromise flexibility for redundant data.
• You will need to pass parameters to handle complexity. We use “App-Name”.
10. 2. SECURITY
Differing options:
• Flat private key.
• Hashed private / public key. (Used for high security currency transations).
• Username/Password session based.
• Username/Password initiated oAuth, with sessions.
Management Advantage Chose:
• Flat private key for 3rd party
• Username/Password initiated oAuth with sessions.
• Use Https.
11. 3. VERSION CONTROL
Servers architecture:
1. Central server per client.
2. Centralised, single version, multi-
tenanted cloud based system.
Problem:
• You don’t have any control when the user
downloads an app.
• The app version could be behind or
ahead of your API.
• Your API could be ahead or behind your
app.
• i.e. your API needs to allow for App
versions that haven’t been written yet.
12. 3. VERSION CONTROL - IMPLEMENTATION
• Learnings:
• Don’t store app versions as strings. Use the inbuilt C# Version class.
• Pass the version of each system in the Request and Response headers.
(e.g. “X-API-VER” and “X-APP-VER”)
• Remember that the App will not know the API version when it first starts a session.
• Default to REST and Json wherever possible. Very forgiving.
• You will need to hard code ‘if tests’ for version numbers in both the API and App.
Ensure you use the [Obsolete] attribute with the version number where possible.
• Where not possible make sure you throw out debug messages when the ‘if tests’ should be
cleaned up.
• Have auto-updating database version control in your apps.
Naming our connection string as “/V1/xxxx” had little value. We use “/API/xxxx”.
13. 4. DATA VOLUME OPTIMISATION
• App needs to separate business logic from data transfer:
• Models support full business logic. (e.g. Client, Address, HCP)
• DTO’s optimised for data transfer. (e.g. ClientDto, AddressDto, HCPDto)
• Optimise Json with “DefaultValueHandling” – don’t transmit nulls.
• LastChangeDate.
https://manad.com.au/api/client?lastChangeDate=20180715T13:10:31.102
• We use a generic process.
Only use server side UTC dates. Never app device dates.
• Server should always send the “RunDate” – don’t rely on record LastUpdatedTimestamp.
14. 4. DATA VOLUME OPTIMISATION (CONT)
• For complex data structures, don’t resend data if already sent.
We created a “DtoSession” class.
ClientDto (recursive structure)
• AddressDto Address
• AddressDto MailingAddress
• List<HCPDto> HCPs
• AddressDto Address
• List<ClientDto> ClientContacts
• AddressDto Address
• (etc)
15. 5. SPEED PERFORMANCE
Considerations:
• Http overhead: A call per record type? One call and fully cascade data?
• Decision came down to what we could run on background threads:
• Initial startup you need data before show a page.
• Ongoing you can show last data and update with ObservableCollections.
• Do you have the Apache “KeepAlive” option?
• Reduced data has marginal effect on transmission performance:
• (802.11b should get at least 100 Mbytes per second)
• Real impact on speed is:
• Optimising your server enquiries.
• Optimising your app processing.
• Minimising the data usually reduces the app processing time.
• ... But may not reduce the server processing time.
16. 5. SPEED PERFORMANCE (CONT)
• We use NewtonSoft JSON which is fully functional:
• Supports streaming for http content.
• Allows us performance tuning options through scheme definitions and direct coding (if required in
the future).
• Compression or not?
• Overhead to compress and decompress outweigh benefits?
• Our research (not tested) said https you get better performance overall.
• We had to do https anyway, but we did not turn on http compression.