3scale, profile picture
Uploaded by3scale
PDF, PPTX10,958 views

Five Ways to Scale your API Without Touching Your Code

Five ways to scale an API without changing code: 1. Optimize API design by removing unnecessary methods and structuring methods to match use cases. 2. Add aggregate methods to reduce calls to base methods. 3. Implement rate limiting to reduce load and encourage efficient code. 4. Offboard caching and processing to clients to reduce server load. 5. Provide SDKs to encode best practices and optimize client code patterns. Together these techniques can significantly improve scaling by managing load through changes to API structure and client behavior rather than requiring code changes.

Embed presentation

Download as PDF, PPTX
Five Ways to Scale your API Without Touching Your Code Steven Willmott 3scale Inc. @njyx, @3scale
3scale is… API Infrastructure Provider ! Power 350+ APIs ! 110,000 Developers writing Apps ! API Tech Operations API Business Operations Developer Support (Selection) 3scale.net
+ As of today Also have a new service for Developers ! Track Transform Analyze API Traffic ! http://www.apitools.com
Onward to Scaling…
What does Scaling Mean?
A: Handling more Transactions per second?
A: Handling more Transactions per second?
A: Making more Customers Happy per Second (whilst using the same resources)
• Decoupling Layers • Caching • Compression • Database Changes • Streaming / Real-time • Smaller Payloads • SSL Optimization ! ! Getting the Question Right • Do all of the transaction scaling plus more • Change API Structure • Change Client Design Params • Think about Client needs to rethink transaction loads • Share scaling burden with developers ! Scaling Transaction Scaling Customers Very Important Often Forgotten
Suppose you have… • Fixed Hardware Resources • (Mostly) Static Application Code Base
Five Scaling Tips That Don’t Scale Transactions
1. API Design • Do methods / calls fit use cases? • Are you passing a lot of internal IDs around? • Are some methods more expensive to execute than others? • Does the API Design mean heavy load calls are being made even if that data is not needed? • Are clients making many calls when they should be making one? Method / Structure Design Add Specific Methods Remove Methods Unbundle & Rebundle
Expected Use of Your API Expected Unexpected DesiredUndesired Yay! Innovation Not so Good Oh-Oh.. Concept: Thor Mitchel / Google
2. API Call Aggregation • Creating Aggregate Methods which compose base functionalities • Cut Access to Individual Methods • Taylor to Clients or Use Cases • Adjust the set of compound methods over time • Works best when you own all the clients Post-Hoc API Design e.g Great talk by Daniel Jacobsen APIStrat New York: ! http://bit.ly/1gAN6mp
3. Rate Limiting • Rate Limits and Clear communication change Developer behavior • Rate limits generally mean more sensible code is being written and your servers are taxed less • Rate Limits stop fringe high volume users from negatively impacting everybody else • Make sure the limits are published - Developers hate undocumented limits Restrict Outlier Usage e.g Own build… Make sure key use cases are still feasible, and that rate limits are published.
4. Off Boarding Calls • Calls that are never made you don’t have to handle! • Client Side Caching • Allow it in your Terms of Service • Build it into your SDKs, suggest it in your code samples • Calculate your rate limits by assuming caching • Use Caching headers • Consider caching both reads and writes Make the Client Work! e.g Again you need to ensure the core API Use cases are still supported if you go this route
3scale XtremeCapacity 3scale XC Nodes offboard Lookup & Processing to Local Resources
5. SDK Provision • It can be tough for third developers to write good code • Writing SDKs can make it easier • Encodes best practice in terms of API Calls • Makes Call Patterns more predictable • You can encode counterpart behavior to your rate limits • Local check for errors in calls (so your backend never receives them). Optimize your Clients e.g SDKs can create maintenance issues - but critical for large developer bases
Five Techniques 1. API Design 2. API Call Aggregation 3. Rate Limiting 4. Off Boarding Calls 5. SDK Provision Almost Certainly you have some wins here….
Conclusions Make sure you are asking the right question! Your API structure and policies massively affect how it scales Out of the Box thinking can save a lot of dollars (and the planet)
3scale: http://www.3scale.net APItools: http://www.apitools.com APICodex: http://apicodex.3scale.net
Thank You! Contact: http://www.3scale.net @njyx - steve@3scale.net

More Related Content

PPTX
AWS API Gateway
byMuhammed YALÇIN
 
PDF
Why your next serverless project should use AWS AppSync
byYan Cui
 
PDF
Mastering AWS Organizations with Infrastructure as code
byYan Cui
 
PDF
Aws Technical Day 2015 - Amazon API Gateway
byaws-marketing-il
 
PPTX
Scaling APIs: Predict, Prepare for, Overcome the Challenges
byApigee | Google Cloud
 
PDF
Serverless Architecture Patterns - Manoj Ganapathi
byCodeOps Technologies LLP
 
PDF
Donald Ferguson - Old Programmers Can Learn New Tricks
byServerlessConf
 
PPTX
2016 - Serverless Microservices on AWS with API Gateway and Lambda
bydevopsdaysaustin
 
AWS API Gateway
byMuhammed YALÇIN
 
Why your next serverless project should use AWS AppSync
byYan Cui
 
Mastering AWS Organizations with Infrastructure as code
byYan Cui
 
Aws Technical Day 2015 - Amazon API Gateway
byaws-marketing-il
 
Scaling APIs: Predict, Prepare for, Overcome the Challenges
byApigee | Google Cloud
 
Serverless Architecture Patterns - Manoj Ganapathi
byCodeOps Technologies LLP
 
Donald Ferguson - Old Programmers Can Learn New Tricks
byServerlessConf
 
2016 - Serverless Microservices on AWS with API Gateway and Lambda
bydevopsdaysaustin
 

What's hot

PPTX
Inside Wordnik's Architecture
byTony Tam
 
PDF
Building Cloud-agnostic Serverless APIs
byPostman
 
PPTX
Serverless by examples and case studies
byCodeOps Technologies LLP
 
PDF
From AUI to Atlaskit - Streamlining Development for Server & Cloud Apps
byAtlassian
 
PPTX
Amazon API Gateway
byMark Bate
 
PDF
Is Serverless The New Swiss Cheese?
byChase Douglas
 
PDF
Building a reliable, scalable service with Clojure and Core.async
byKapil Reddy
 
PDF
Serverless in production, an experience report (JeffConf)
byYan Cui
 
PDF
Amazon API Gateway
byMark Bate
 
Inside Wordnik's Architecture
byTony Tam
 
Building Cloud-agnostic Serverless APIs
byPostman
 
Serverless by examples and case studies
byCodeOps Technologies LLP
 
From AUI to Atlaskit - Streamlining Development for Server & Cloud Apps
byAtlassian
 
Amazon API Gateway
byMark Bate
 
Is Serverless The New Swiss Cheese?
byChase Douglas
 
Building a reliable, scalable service with Clojure and Core.async
byKapil Reddy
 
Serverless in production, an experience report (JeffConf)
byYan Cui
 
Amazon API Gateway
byMark Bate
 

Similar to Five Ways to Scale your API Without Touching Your Code

PPTX
Building a REST API for Longevity
byMuleSoft
 
PDF
API workshop by AWS and 3scale
by3scale
 
PPTX
API Design- Best Practices
byPrakash Bhandari
 
PDF
Optimizing your API to Perform at Scale
byAkamai Developers & Admins
 
PDF
The ultimate api checklist by Blendr.io
byBlendr.io
 
PDF
6 Best Practices that Make a Great API .pdf
byExpert App Devs
 
PDF
How to Design Scalable and Secure APIs: Essential Considerations for 2025
byScalaCode
 
PDF
Is your API Naked? API Technology and Ops Considerations: Webinar slides
byApigee | Google Cloud
 
PPTX
API Management Workshop (at Startupbootcamp Berlin)
by3scale
 
PDF
Json api dos and dont's
byNeven Rakonić
 
PDF
Code-Camp-Rest-Principles
byKnoldus Inc.
 
PDF
Chris Mathias Presents Advanced API Design Considerations at LA CTO Forum
byChris Mathias
 
PDF
API-Consumption compressed (1)
byRahul Ghai
 
PDF
Lectura 2.4 is your api naked - 10 roadmap considerations
byMatias Menendez
 
PDF
Creating a RESTful api without losing too much sleep
byMike Anderson
 
PDF
JOSA TechTalks - RESTful API Concepts and Best Practices
byJordan Open Source Association
 
PDF
API First
byKirsten Hunter
 
PPTX
Api Design
byJason Harmon
 
PPT
Unlock your Digital Content & Expand beyond your Website
by3scale
 
PDF
APIs for your Business + Stages of the API Lifecycle
by3scale
 
Building a REST API for Longevity
byMuleSoft
 
API workshop by AWS and 3scale
by3scale
 
API Design- Best Practices
byPrakash Bhandari
 
Optimizing your API to Perform at Scale
byAkamai Developers & Admins
 
The ultimate api checklist by Blendr.io
byBlendr.io
 
6 Best Practices that Make a Great API .pdf
byExpert App Devs
 
How to Design Scalable and Secure APIs: Essential Considerations for 2025
byScalaCode
 
Is your API Naked? API Technology and Ops Considerations: Webinar slides
byApigee | Google Cloud
 
API Management Workshop (at Startupbootcamp Berlin)
by3scale
 
Json api dos and dont's
byNeven Rakonić
 
Code-Camp-Rest-Principles
byKnoldus Inc.
 
Chris Mathias Presents Advanced API Design Considerations at LA CTO Forum
byChris Mathias
 
API-Consumption compressed (1)
byRahul Ghai
 
Lectura 2.4 is your api naked - 10 roadmap considerations
byMatias Menendez
 
Creating a RESTful api without losing too much sleep
byMike Anderson
 
JOSA TechTalks - RESTful API Concepts and Best Practices
byJordan Open Source Association
 
API First
byKirsten Hunter
 
Api Design
byJason Harmon
 
Unlock your Digital Content & Expand beyond your Website
by3scale
 
APIs for your Business + Stages of the API Lifecycle
by3scale
 

More from 3scale

PPTX
How to Survive the API Copyright Apocalypse
by3scale
 
PDF
Inside mind of a successful platform architect / Gartner APPS 2016
by3scale
 
PPTX
Integrating, exposing and managing distributed data with RESTful APIs and op...
by3scale
 
PPTX
Microservices in action: How to actually build them
by3scale
 
PPTX
API Model Canvas (APIDays Mediterranea 2015)
by3scale
 
PPTX
API Model Canvas for successful API strategies and programs
by3scale
 
PPTX
Building Successful API Programs in Higher Education
by3scale
 
PDF
The API-Application Semantic Gap
by3scale
 
PPTX
A Connector, A Container and an API Walk into a Bar… Microservices Edition
by3scale
 
PPTX
Take Control of your APIs in a Microservice Architecture
by3scale
 
PDF
Build and Manage Serverless APIs (APIDays Nordic, May 19th 2016)
by3scale
 
PDF
APIsBerlin 3scale Data for a Web of APIs
by3scale
 
PPTX
APIs.JSON: Bootstrapping The Web of APIs
by3scale
 
PPTX
The Swagger Format becomes the Open API Specification: Standardizing descript...
by3scale
 
PPTX
The Fundamentals of Platform Strategy: Creating Genuine Value with APIs
by3scale
 
PPTX
Entering the Platform Age: How to create genuine value for internal and exter...
by3scale
 
PPTX
APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...
by3scale
 
PDF
APISTRAT KEYNOTE: Surfing the Wave between Chaos and Innovation
by3scale
 
PPTX
A Connector, A Container and an API Walk Into a Bar: The Programmable World
by3scale
 
PDF
APIs and the Bot Revolution (APIDays Nordic, May 18)
by3scale
 
How to Survive the API Copyright Apocalypse
by3scale
 
Inside mind of a successful platform architect / Gartner APPS 2016
by3scale
 
Integrating, exposing and managing distributed data with RESTful APIs and op...
by3scale
 
Microservices in action: How to actually build them
by3scale
 
API Model Canvas (APIDays Mediterranea 2015)
by3scale
 
API Model Canvas for successful API strategies and programs
by3scale
 
Building Successful API Programs in Higher Education
by3scale
 
The API-Application Semantic Gap
by3scale
 
A Connector, A Container and an API Walk into a Bar… Microservices Edition
by3scale
 
Take Control of your APIs in a Microservice Architecture
by3scale
 
Build and Manage Serverless APIs (APIDays Nordic, May 19th 2016)
by3scale
 
APIsBerlin 3scale Data for a Web of APIs
by3scale
 
APIs.JSON: Bootstrapping The Web of APIs
by3scale
 
The Swagger Format becomes the Open API Specification: Standardizing descript...
by3scale
 
The Fundamentals of Platform Strategy: Creating Genuine Value with APIs
by3scale
 
Entering the Platform Age: How to create genuine value for internal and exter...
by3scale
 
APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...
by3scale
 
APISTRAT KEYNOTE: Surfing the Wave between Chaos and Innovation
by3scale
 
A Connector, A Container and an API Walk Into a Bar: The Programmable World
by3scale
 
APIs and the Bot Revolution (APIDays Nordic, May 18)
by3scale
 

Recently uploaded

PDF
AI Star Keynote on Artificial Intelligence. OnWorld. OffWorld. InWorld
byAlison B. Lowndes
 
PPTX
The Landscape of Computer Software Development Companies
byYash Singh
 
PDF
Taming the Chaos: How to Turn Unstructured Data into Decisions
bySafe Software
 
PDF
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
PDF
The Future of Search: Why LLM Optimization Matters for Every Website
byav0763436
 
PDF
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
PDF
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
PDF
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
PDF
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
PDF
Tracing the Thread: Decoding the Decision-Making Process with GraphRAG
byEnterprise Knowledge
 
PDF
Mobile-Computing-A-Revolution-in-Our-Hands.pdf
bymimbulatove
 
PDF
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
PDF
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
PDF
eResource Scheduler Enterprise Resource Management and Scheduling Software.pdf
byeResource Scheduler
 
PDF
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
PDF
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
PDF
Greetings All Students Update 3 by Mia Corp
by©LDMMIA, ©Reiki Yoga
 
PDF
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
PDF
Cybersecurity Prevention and Detection Specialization
byVICTOR MAESTRE RAMIREZ
 
PDF
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
AI Star Keynote on Artificial Intelligence. OnWorld. OffWorld. InWorld
byAlison B. Lowndes
 
The Landscape of Computer Software Development Companies
byYash Singh
 
Taming the Chaos: How to Turn Unstructured Data into Decisions
bySafe Software
 
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
The Future of Search: Why LLM Optimization Matters for Every Website
byav0763436
 
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
Tracing the Thread: Decoding the Decision-Making Process with GraphRAG
byEnterprise Knowledge
 
Mobile-Computing-A-Revolution-in-Our-Hands.pdf
bymimbulatove
 
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
eResource Scheduler Enterprise Resource Management and Scheduling Software.pdf
byeResource Scheduler
 
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
Greetings All Students Update 3 by Mia Corp
by©LDMMIA, ©Reiki Yoga
 
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
Cybersecurity Prevention and Detection Specialization
byVICTOR MAESTRE RAMIREZ
 
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 

Five Ways to Scale your API Without Touching Your Code

  • 1.
    Five Ways toScale your API Without Touching Your Code Steven Willmott 3scale Inc. @njyx, @3scale
  • 2.
    3scale is… API Infrastructure Provider ! Power 350+ APIs ! 110,000 Developers writingApps ! API Tech Operations API Business Operations Developer Support (Selection) 3scale.net
  • 3.
    + As oftoday Also have a new service for Developers ! Track Transform Analyze API Traffic ! http://www.apitools.com
  • 4.
  • 5.
  • 6.
  • 7.
  • 8.
    A: Making moreCustomers Happy per Second (whilst using the same resources)
  • 9.
    • Decoupling Layers •Caching • Compression • Database Changes • Streaming / Real-time • Smaller Payloads • SSL Optimization ! ! Getting the Question Right • Do all of the transaction scaling plus more • Change API Structure • Change Client Design Params • Think about Client needs to rethink transaction loads • Share scaling burden with developers ! Scaling Transaction Scaling Customers Very Important Often Forgotten
  • 10.
    Suppose you have… •Fixed Hardware Resources • (Mostly) Static Application Code Base
  • 11.
    Five Scaling TipsThat Don’t Scale Transactions
  • 12.
    1. API Design •Do methods / calls fit use cases? • Are you passing a lot of internal IDs around? • Are some methods more expensive to execute than others? • Does the API Design mean heavy load calls are being made even if that data is not needed? • Are clients making many calls when they should be making one? Method / Structure Design Add Specific Methods Remove Methods Unbundle & Rebundle
  • 13.
    Expected Use ofYour API Expected Unexpected DesiredUndesired Yay! Innovation Not so Good Oh-Oh.. Concept: Thor Mitchel / Google
  • 14.
    2. API CallAggregation • Creating Aggregate Methods which compose base functionalities • Cut Access to Individual Methods • Taylor to Clients or Use Cases • Adjust the set of compound methods over time • Works best when you own all the clients Post-Hoc API Design e.g Great talk by Daniel Jacobsen APIStrat New York: ! http://bit.ly/1gAN6mp
  • 15.
    3. Rate Limiting •Rate Limits and Clear communication change Developer behavior • Rate limits generally mean more sensible code is being written and your servers are taxed less • Rate Limits stop fringe high volume users from negatively impacting everybody else • Make sure the limits are published - Developers hate undocumented limits Restrict Outlier Usage e.g Own build… Make sure key use cases are still feasible, and that rate limits are published.
  • 16.
    4. Off BoardingCalls • Calls that are never made you don’t have to handle! • Client Side Caching • Allow it in your Terms of Service • Build it into your SDKs, suggest it in your code samples • Calculate your rate limits by assuming caching • Use Caching headers • Consider caching both reads and writes Make the Client Work! e.g Again you need to ensure the core API Use cases are still supported if you go this route
  • 17.
    3scale XtremeCapacity 3scale XCNodes offboard Lookup & Processing to Local Resources
  • 18.
    5. SDK Provision •It can be tough for third developers to write good code • Writing SDKs can make it easier • Encodes best practice in terms of API Calls • Makes Call Patterns more predictable • You can encode counterpart behavior to your rate limits • Local check for errors in calls (so your backend never receives them). Optimize your Clients e.g SDKs can create maintenance issues - but critical for large developer bases
  • 19.
    Five Techniques 1. APIDesign 2. API Call Aggregation 3. Rate Limiting 4. Off Boarding Calls 5. SDK Provision Almost Certainly you have some wins here….
  • 20.
    Conclusions Make sure youare asking the right question! Your API structure and policies massively affect how it scales Out of the Box thinking can save a lot of dollars (and the planet)
  • 21.
  • 22.