Download to read offline
![API consistency - schema validations
• General conventions for API consistency
• Internal validations based on the schema
[ERROR] Caused by: sangria.schema.SchemaValidationException: Schema does not pass validation. Violations:
[ERROR] Output object 'Category' contains a localized string field named 'name' which does not follow the 'xxx' !-> String + 'xxxAllLocales' !-> List(LocalizedString) naming convention.
[ERROR] at sangria.schema.SchemaValidationRule$.validateWithException(SchemaValidationRule.scala:42)
[ERROR] at sangria.schema.Schema.<init>(Schema.scala:939)](https://image.slidesharecdn.com/graphqloctober2020-201106164232/75/Bringing-a-public-GraphQL-API-from-beta-to-production-ready-18-2048.jpg)
Uploaded byyann_s
Bringing a public GraphQL API from beta to production ready
The document outlines the transition of commercetools' public GraphQL API from beta to a production-ready service capable of handling increased traffic. It highlights key developments from 2015 to 2020, focusing on scaling operations, protecting against complex queries, and ensuring API consistency through automation and internal usage feedback. Additionally, it discusses performance optimization strategies and the importance of investments in automation and operations for sustained growth.
More Related Content
Similar to Bringing a public GraphQL API from beta to production ready
Bringing a public GraphQL API from beta to production ready
- 1. Bringing a publicGraphQL API from beta to production ready at scale Yann Simon
- 2. What is commercetools commercetools API /products /carts … merchant center Singlepage app Mobile app cloud functions cloud queues Server Web / app
- 3. GraphQL @ commercetools from2015 to 2020
- 4. 2015 • July 2015:Facebook published the first draft of the GraphQL specification • October 2015: first experimental GraphQL support at commercetools
- 5. 2015 - 2020 •from 2018, more & more GraphQL traffic
- 6.
- 7. What happened? • Scalingup • operation • development of GraphQL API (speed, quality) • performances
- 8.
- 9. Protection against complexqueries { products { results { id version } } } needs more resources to run { products { results { id version productType { name } } } } fetch the productType
- 10. Protection against maliciousqueries • Query complexity analysis based on schema and resolution strategies • Too complex queries are blocked • more info: • https://www.apollographql.com/blog/securing-your-graphql-api-from- malicious-queries-16130a324a6b/ • https://sangria-graphql.github.io/learn/#protection-against-malicious- queries
- 11. Add info toHTTP log entries method path status code GET /products 200 POST /carts 201 GET /reviews/79323 404 DELETE /product-discounts/47393 500
- 12. Add info toHTTP log entries method path status code POST /graphql 200 POST /graphql 200 POST /graphql 200 POST /graphql 200 operation type top level fields complexity number of errors Query products, category 650 0 Mutation cart 140 0 Query review 340 0 Mutation productDiscount 500 1
- 13.
- 14. Slow logs • logslow queries • ‼ do not log sensitive data ‼
- 15. Scaling up operations •protection against malicious queries • more info to http logs • metrics • slow logs • confidence in operating a GraphQL API at scale
- 16. Scaling up GraphQLAPI development
- 17. Internal usage • Internalapplications are using the GraphQL API (merchant center, demo shop) • shorter feedback loops • improve API design • Frontend and Backend working together
- 18. API consistency -schema validations • General conventions for API consistency • Internal validations based on the schema [ERROR] Caused by: sangria.schema.SchemaValidationException: Schema does not pass validation. Violations: [ERROR] Output object 'Category' contains a localized string field named 'name' which does not follow the 'xxx' !-> String + 'xxxAllLocales' !-> List(LocalizedString) naming convention. [ERROR] at sangria.schema.SchemaValidationRule$.validateWithException(SchemaValidationRule.scala:42) [ERROR] at sangria.schema.Schema.<init>(Schema.scala:939)
- 19. Automation of GraphQLSchema • Our REST API is following a CQRS architecture • different models for queries and mutations • Based on this model, generate GraphQL schema • Use schema introspection to test what is exposed
- 20. Automation of APIrelease notes • Production schema !== in development schema • Based on the differences, generate markdown file for public release notes
- 21.
- 22. Scaling up APIdevelopment • Faster feedback loops • internal usage • Faster development • generating GraphQL types from REST API models • schema validations for API consistency • public release notes • Using deprecations to evolve • Graphql coverage is almost complete
- 23.
- 24. more tools forexternal developers • Expose query complexity as HTTP header https://docs.commercetools.com/api/graphql#query-complexity • Profiling
- 25. query optimization Client ServerDatabase Optimize payload Servers to servers Migrating our Apple WatchOS Commerce App to GraphQL
- 26. query optimization Client ServerDatabase Optimize query Do not select all fields Performance optimization (GraphQL meetup in Berlin)
- 27.
- 28. Scaling up performances •Give tools for users of the API • Optimize database queries based on GraphQL query • Inspect live servers • Continuous process
- 29. Evolving a publicGraph API from experimental to production ready needs investments in different areas
- 30.
- 31.
- 32.
- 33.
- 34. Being production readyfor more GraphQL traffic