61. REST APIS

API REVIEW

An API (Application Programming Interface) is a software interface that allows two applications to communicate with each other.
APIs are essential not just for network automation but for all kinds of applications
In SDN Architecture, APIs are use to communicate between apps and the SDN controller (via the NBI) and between the SDN controller and the network devices (via the SBI)
The NBI typically uses REST APIs
NETCONF and RESTCONF are popular Southbound APIs

CRUD OPERATIONS AND HTTP VERBS

CRUD ( CREATE, READ, UPDATE, DELETE) refers to the operations we perform using REST APIs
CREATE :
- Used to CREATE new variables and set their initial values
  - Example: create a variable “ip_address” and set the value to “10.1.1.1”
READ :
- Used to READ the value of a variable
  - Example: Read the value of variable “ip_address” (”10.1.1.1”)
UPDATE :
- Used to CHANGE / UPDATE the value of a variable
  - Example: Change the value of “ip_address” from “10.1.1.1” to “10.2.3.4”
DELETE :
- Used to DELETE variables
  - Example: Delete variable “ip_address”
HTTP uses verbs (aka. methods) that map to these CRUD operations
REST APIs typically use HTTP

Click to enlarge

HTTP REQUEST :

When an HTTP client sends a request to an HTTP server, the HTTP header includes information like this:
- An HTTP Verb (ie: GET)
- A URI (Uniform Resource Identifier) indicating the resource it is trying to access

Click to enlarge

An example of a URI (demonstrated later)

Click to enlarge

The HTTP request can include additional headers which pass additional information to the server.

Check the list at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers

Click to enlarge

An example would be an ACCEPT header, which informs the server about the types(s) of data that can be sent back to the client.
- Example: Accept: application/json or Accept: application/xml
You can also view standard HTTP header fields with some examples at https://en.wikipedia.org/wiki/List_of_HTTP_header_fields
When a REST client makes an API call (request) to a REST server, it will send an HTTP request like the one above

Tip

💡 REST APIs do NOT have to use HTTP for communication, although HTTP is the most common choice

HTTP RESPONSE :

The server’s response will include a STATUS CODE indicating if the request succeeded or failed, as well as other details
The FIRST digit indicates the class of the response:
- 1xx : Informational - request was received, continuing process
- 2xx : Successful - request was successfully received, understood, and accepted
- 3xx : Redirection - further action needs to be taken in order to complete the request
- 4xx : Client Error - request contains bad syntax or cannot be fulfilled
- 5xx : Server Error - server failed to fulfill an apparently valid request

Click to enlarge

Examples of each HTTP Response class:

1xx Informational
- 102 Processing indicates that the server received the request and is processing it but the response is not available yet
2xx Successful
- 200 OK **indicates that the request succeeded
- 201 Created indicates the request succeeded and a new resource was created
3xx Redirection
- 301 Moved Permanently indicates that the request resource has been moved and the server indicates its new location
4xx Client Error
- 403 Unauthorized means the client must authenticate to get a response
- 404 Not Found means the requested resource was not found
5xx Server Error
- 500 Internal Server Error means the server encountered something unexpected that it doesn’t know how to handle

REST APIs

REST stands for Representational State Transfer
REST APIs are also know as REST-based APIs or RESTful APIs
- REST isn’t a specific API. Instead it describes a set of rules about how the API should work
The SIX constraints of RESTful architecture are:
- Stateless
- Layered system
- Uniform Interface
- Client-Server
- Cacheable or non-cacheable
- Code-on-Demand (optional)
For applications to communicate over a network, networking protocols must be used to facilitate those communications
- For REST APIs, HTTP(S) is the most common choice

REST: Client-Server

REST APIs use a client-server architecture
The client uses API calls (HTTP requests) to access the resources on the server
The separation between the client and server means they can both change and evolve independently of each other
- When the client application changes or the server application changes, the interface between them must not break

Click to enlarge

REST: Stateless

REST APIs exchanges are STATELESS
This means that each API exchange is a separate event, independent of all past exchanges between the client and server
- The server does not store information about previous requests from the client to determine how it should respond to new requests
If authentication is required, this means that the client must authenticate with the server for each request it makes
TCP is an example of a STATEFUL protocol
UDP is an example of STATELESS protocol

** Although REST APIs use HTTP, which uses TCP (STATEFUL) as it’s LAYER 4 protocol, HTTP and REST APIs themselves aren’t STATEFUL. The functions of each layer are separate !

REST: Cacheable or Non-Cacheable

REST APIs must support caching of data
Caching refers to storing data for future use
- Example :
  - Your computer might cache many elements of a web page so it doesn’t have to retrieve the entire page every time you visit. This improves performance for the client and reduces load on the server
Not all resources have to be cacheable but cacheable resources MUST be declared as cacheable

FOR THE CCNA

Click to enlarge

REST API CALLS USING CISCO DEVNET

“Cisco DevNet is Cisco’s developer program to help developers and IT professionals who want to write applications and develop integrations with Cisco products, platforms, and API’s”
DevNet offers lots of free resources such as courses, tutorials, labs, sandboxes, documentation, etc to learn about AUTOMATION and develop your skills
There is also a DevNet certification track that you can pursue if you are interested in AUTOMATION
We will use their Cisco DNA Center Sandbox to send a REST API call using Postman
- DNA Center is one of Cisco’s SDN Controllers (covered in more detail later)
- Postman is a platform for building an using APIs

TO START:

Make an account on developer.cisco.com (Used my NetAcademy login)
Make an accounts on postman.com and download the desktop app (https://www.postman.com/downloads) - Used my gmail.com account

61. REST APIS

API REVIEW

An API (Application Programming Interface) is a software interface that allows two applications to communicate with each other.
APIs are essential not just for network automation but for all kinds of applications
In SDN Architecture, APIs are use to communicate between apps and the SDN controller (via the NBI) and between the SDN controller and the network devices (via the SBI)
The NBI typically uses REST APIs
NETCONF and RESTCONF are popular Southbound APIs

CRUD OPERATIONS AND HTTP VERBS

CRUD ( CREATE, READ, UPDATE, DELETE) refers to the operations we perform using REST APIs
CREATE :
- Used to CREATE new variables and set their initial values
  - Example: create a variable “ip_address” and set the value to “10.1.1.1”
READ :
- Used to READ the value of a variable
  - Example: Read the value of variable “ip_address” (”10.1.1.1”)
UPDATE :
- Used to CHANGE / UPDATE the value of a variable
  - Example: Change the value of “ip_address” from “10.1.1.1” to “10.2.3.4”
DELETE :
- Used to DELETE variables
  - Example: Delete variable “ip_address”
HTTP uses verbs (aka. methods) that map to these CRUD operations
REST APIs typically use HTTP

Click to enlarge

HTTP REQUEST :

When an HTTP client sends a request to an HTTP server, the HTTP header includes information like this:
- An HTTP Verb (ie: GET)
- A URI (Uniform Resource Identifier) indicating the resource it is trying to access

Click to enlarge

An example of a URI (demonstrated later)

Click to enlarge

The HTTP request can include additional headers which pass additional information to the server.

Check the list at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers

Click to enlarge

An example would be an ACCEPT header, which informs the server about the types(s) of data that can be sent back to the client.
- Example: Accept: application/json or Accept: application/xml
You can also view standard HTTP header fields with some examples at https://en.wikipedia.org/wiki/List_of_HTTP_header_fields
When a REST client makes an API call (request) to a REST server, it will send an HTTP request like the one above

Tip

💡 REST APIs do NOT have to use HTTP for communication, although HTTP is the most common choice

HTTP RESPONSE :

The server’s response will include a STATUS CODE indicating if the request succeeded or failed, as well as other details
The FIRST digit indicates the class of the response:
- 1xx : Informational - request was received, continuing process
- 2xx : Successful - request was successfully received, understood, and accepted
- 3xx : Redirection - further action needs to be taken in order to complete the request
- 4xx : Client Error - request contains bad syntax or cannot be fulfilled
- 5xx : Server Error - server failed to fulfill an apparently valid request

Click to enlarge

Examples of each HTTP Response class:

1xx Informational
- 102 Processing indicates that the server received the request and is processing it but the response is not available yet
2xx Successful
- 200 OK **indicates that the request succeeded
- 201 Created indicates the request succeeded and a new resource was created
3xx Redirection
- 301 Moved Permanently indicates that the request resource has been moved and the server indicates its new location
4xx Client Error
- 403 Unauthorized means the client must authenticate to get a response
- 404 Not Found means the requested resource was not found
5xx Server Error
- 500 Internal Server Error means the server encountered something unexpected that it doesn’t know how to handle

REST APIs

REST stands for Representational State Transfer
REST APIs are also know as REST-based APIs or RESTful APIs
- REST isn’t a specific API. Instead it describes a set of rules about how the API should work
The SIX constraints of RESTful architecture are:
- Stateless
- Layered system
- Uniform Interface
- Client-Server
- Cacheable or non-cacheable
- Code-on-Demand (optional)
For applications to communicate over a network, networking protocols must be used to facilitate those communications
- For REST APIs, HTTP(S) is the most common choice

REST: Client-Server

REST APIs use a client-server architecture
The client uses API calls (HTTP requests) to access the resources on the server
The separation between the client and server means they can both change and evolve independently of each other
- When the client application changes or the server application changes, the interface between them must not break

Click to enlarge

REST: Stateless

REST APIs exchanges are STATELESS
This means that each API exchange is a separate event, independent of all past exchanges between the client and server
- The server does not store information about previous requests from the client to determine how it should respond to new requests
If authentication is required, this means that the client must authenticate with the server for each request it makes
TCP is an example of a STATEFUL protocol
UDP is an example of STATELESS protocol

** Although REST APIs use HTTP, which uses TCP (STATEFUL) as it’s LAYER 4 protocol, HTTP and REST APIs themselves aren’t STATEFUL. The functions of each layer are separate !

REST: Cacheable or Non-Cacheable

REST APIs must support caching of data
Caching refers to storing data for future use
- Example :
  - Your computer might cache many elements of a web page so it doesn’t have to retrieve the entire page every time you visit. This improves performance for the client and reduces load on the server
Not all resources have to be cacheable but cacheable resources MUST be declared as cacheable

FOR THE CCNA

Click to enlarge

REST API CALLS USING CISCO DEVNET

“Cisco DevNet is Cisco’s developer program to help developers and IT professionals who want to write applications and develop integrations with Cisco products, platforms, and API’s”
DevNet offers lots of free resources such as courses, tutorials, labs, sandboxes, documentation, etc to learn about AUTOMATION and develop your skills
There is also a DevNet certification track that you can pursue if you are interested in AUTOMATION
We will use their Cisco DNA Center Sandbox to send a REST API call using Postman
- DNA Center is one of Cisco’s SDN Controllers (covered in more detail later)
- Postman is a platform for building an using APIs

TO START:

Make an account on developer.cisco.com (Used my NetAcademy login)
Make an accounts on postman.com and download the desktop app (https://www.postman.com/downloads) - Used my gmail.com account