Downloaded 13 times
Uploaded byTim Messerschmidt
Expanding APIs beyond the Web
The document discusses the expansion of APIs beyond traditional web usage, highlighting key requirements such as security, flexibility, and scalability. It covers the significant growth of IoT devices and technological advancements like Bluetooth Low Energy (BLE) and the movement towards open-source development. Additionally, it emphasizes the importance of user experience in security practices and provides technical details about IoT authentication and payment processing using Braintree's services.
More Related Content
Similar to Expanding APIs beyond the Web
Expanding APIs beyond the Web
- 1. Expanding APIs beyondthe Web Tim Messerschmidt <Head of Developer Advocacy, EMEA/> Braintree_Dev. #APIDays Paris @Braintree_Dev @SeraAndroid
- 2.
- 3. That’s me @Braintree_Dev@SeraAndroid
- 4.
- 5. OFF FUTURE PaymentMethod ON ON ON ON Braintree @Braintree_Dev @SeraAndroid
- 6. >3 key requirementsin tech @Braintree_Dev @SeraAndroid
- 7.
- 8.
- 9.
- 10. >Current technology landscape @Braintree_Dev @SeraAndroid
- 11.
- 12.
- 13. Bluetooth LE @Braintree_Dev@SeraAndroid
- 14. Differences BLE vs.Bluetooth • Lower range (50m vs 100m) • Lower latency (Factor 16) • Lower battery consumption (Factor 100) nodesagency.com/the-beacon-dictionary @Braintree_Dev @SeraAndroid
- 15. ESTIMOTE BEACONS @Braintree_Dev@SeraAndroid
- 16. >Payments in thebackground @Braintree_Dev @SeraAndroid
- 17.
- 18. >Wearables and Biometrics @Braintree_Dev @SeraAndroid
- 19. FINGERPRINT AS UNIQUETOKEN @Braintree_Dev @SeraAndroid
- 20. HEARTBEAT AS IDENTIFIER @Braintree_Dev @SeraAndroid
- 21. A Trusted Environment @Braintree_Dev @SeraAndroid
- 22. “Favor security toomuch over the experience and you’ll make the website a pain to use.” smashingmagazine.com/2012/10/26/password-masking-hurt-signup-form @Braintree_Dev @SeraAndroid
- 23. >Introducing: The HypeCycle gartner.com/newsroom/id/2819918 (2014) @Braintree_Dev @SeraAndroid
- 24.
- 25.
- 26.
- 27.
- 28. >26 Billion IoTdevices by 2020 gartner.com/newsroom/id/2636073 (2013) @Braintree_Dev @SeraAndroid
- 29. >2020: 200 billionsmart devices intel.ly/1i8O2ec (2014) @Braintree_Dev @SeraAndroid
- 30. The Explosion ofIoT devices 6 Billion 15 Billion 200 Billion 250 200 150 100 50 0 2006 2015 2020 @Braintree_Dev @SeraAndroid
- 31. >The Age ofRapid Prototyping @Braintree_Dev @SeraAndroid
- 32. >The Movement ofOpen Source @Braintree_Dev @SeraAndroid
- 33. >A new FullStack Developer @Braintree_Dev @SeraAndroid
- 34. >Evaluation of availablehardware @Braintree_Dev @SeraAndroid
- 35. @Braintree_Dev Raspberry Pi@SeraAndroid
- 36. @Braintree_Dev Arduino Yún@SeraAndroid
- 37. @Braintree_Dev Intel Edison@SeraAndroid
- 38.
- 39. IoT Authentication 1.Non-expiring pre-generated Access Token 2. Access Token dynamically requested @Braintree_Dev @SeraAndroid
- 40. Receiving an OAuthAccess Token POST https://api.spark.io/oauth/token PARAMS { "grant_type": "password" "username": { Your Email Address } "password": { Password } } @Braintree_Dev @SeraAndroid
- 41. Sending Data tothe Core POST https://api.spark.io/v1/devices/{deviceid}/{route} PARAMS { "access_token": {OAuth Access Token} "args": {Payload} } @Braintree_Dev @SeraAndroid
- 42. Registering Functions voidsetup() { Spark.function("handler", handlePayload); } void loop() { ... } int handlePayload(String payload) { ... } @Braintree_Dev @SeraAndroid
- 43. Registering Functions voidsetup() { Spark.function("handler", handlePayload); } void loop() { ... } int handlePayload(String payload) { ... } @Braintree_Dev @SeraAndroid
- 44. Registering Functions voidsetup() { Spark.function("handler", handlePayload); } void loop() { ... } int handlePayload(String payload) { ... } @Braintree_Dev @SeraAndroid
- 45. Registering Functions voidsetup() { Spark.function("handler", handlePayload); } void loop() { ... } int handlePayload(String payload) { ... } @Braintree_Dev @SeraAndroid
- 46. Braintree's v.zero ona POS device developers.braintreepayments.com github.com/SeraphimSerapis/vzero-iot-node @Braintree_Dev @SeraAndroid
- 47. Frontend JS Backend Node.js Spark Core Braintree Spark Cloud @Braintree_Dev @SeraAndroid
- 48.
- 49. Sending transactions tothe Spark var formData = { access_token: sparkToken, params: amount + ',' + method }; request.post({ url: 'https://api.spark.io/v1/devices/' + sparkDeviceID + '/pay', form: formData }, function (err, httpResponse, body) { if (err) { console.log(err); } else { console.log(body); } }); @Braintree_Dev @SeraAndroid
- 50. Sending transactions tothe Spark var formData = { access_token: sparkToken, params: amount + ',' + method }; request.post({ url: 'https://api.spark.io/v1/devices/' + sparkDeviceID + '/pay', form: formData }, function (err, httpResponse, body) { if (err) { console.log(err); } else { console.log(body); } }); @Braintree_Dev @SeraAndroid
- 51. Sending transactions tothe Spark var formData = { access_token: sparkToken, params: amount + ',' + method }; request.post({ url: 'https://api.spark.io/v1/devices/' + sparkDeviceID + '/pay', form: formData }, function (err, httpResponse, body) { if (err) { console.log(err); } else { console.log(body); } }); @Braintree_Dev @SeraAndroid
- 52. Sending transactions tothe Spark var formData = { access_token: sparkToken, params: amount + ',' + method }; request.post({ url: 'https://api.spark.io/v1/devices/' + sparkDeviceID + '/pay', form: formData }, function (err, httpResponse, body) { if (err) { console.log(err); } else { console.log(body); } }); @Braintree_Dev @SeraAndroid
- 53. Spark Support forSSE “A server-sent event is when a web page automatically gets updates from a server.” w3schools.com/Html/html5_serversentevents.asp @Braintree_Dev @SeraAndroid
- 54. >A new Standard:FIDO Alliance @Braintree_Dev @SeraAndroid
- 55. >The Road Ahead @Braintree_Dev @SeraAndroid
- 56. Thanks tim@getbraintree.com developers.braintreepayments.com slideshare.com/PayPal @Braintree_Dev @SeraAndroid
Editor's Notes
- #2 We’re here to make your life as developers easier How to make payments more secure How to open up payments?
- #5 First payments company to open up APIs in 2009 Founded in 1998 Confinity – Max Levchin & Peter Thiel Acquired in 2000 by x.commerce – Elon Musk Renamed to PayPal in 2001 Acquired by eBay in 2002
- #6 Founded in 2007 Full-stack payment solution Acquired Venmo 2012 Acquired by PayPal 2013
- #7 “What’s hot in fintech?”
- #11 “What’s hot in fintech?”
- #14 - QR-Codes suck - Useful for sending small packages - Not good for sending huge chunks of data
- #20 Should biometry replace passwords or identity?
- #21 Bionym startup based out of Toronto Heartbeat unique to a person
- #23 Let’s apply this to hardware, too
- #31 26 smart devices per human being
- #32 Frontend Backend Hardware
- #33 Creative Commons license and such Companies realized that OSS makes sense Let’s convince them that OS Hardware should be a thing
- #34 New breed
- #35 New breed
- #36 February 2012 by Raspberry Pi Foundation Originally intended for education Discovered by hackers
- #37 Comes with an OpenWrt-based Linux Can communicate with that Linux Comes with cURL, shell scripts and Python
- #38 Leverages the Intel Edison chip Based on x86 architecture Arduino-certified Comes with Linux Yocta
- #39 Originally started on Kickstarter Cloud Code Hardware and Firmware Open Source
- #49 Learned soldering for this
- #54 SSE stream via TCP Socket Webhooks not implemented yet