This tutorial will guide you through building a secure, serverless API to programmatically issue temporary AWS credentials using AWS STS (Security Token Service) and expose them via API Gateway. This approach avoids the need for long-lived credentials while providing secure, revocable tokens for clients. 1. Overview of the Solution We will: Use an IAM role... Continue Reading →
RIBS: Marrying the REST and MVC Design Patterns
[Diagram updated on 10/27. Thanks to @frozencanuck for his feedback.] The RIBS diagram is my third attempt to extend the wildly-succesful Model–View–Controller design pattern to encompass first the The DCI Architecture and now the REST architectural style.  This time, I started by reverse-engineered the design principles behind the Ki Statechart Framework, particularly their use of statecharts as coordinating controllers.... Continue Reading →
ActiveResource: The RESTful standard
One of the coolest if under-hyped features of RESTful Ruby on Rails is ActiveResource.  This allows you to treat any other RESTful Rails app as a database backend, providing an ActiveRecord like object model for abstracting that web service.Though changing slightly for Rails 2.0 (to use "/" instead of ";" as a parameter separator), this is becoming the de-facto standard for... Continue Reading →
Rohit’s SynOA takes the “Sin” out of SOA
Many years ago, my buddy Rohit Khare introduced me to a guy named Roy Fielding, and tried to explain how this whole web services thing was going in completely the wrong direction. To be honest, I didn't understand what the big deal was, particularly since I wasn't really working with those technologies. Alas, neither did... Continue Reading →
Steve Bjorg: The Story of the REST
With apologies to Paul Harvey, here's another Introduction to REST, courtesy of Steve Bjorg (with a little help from yours truly).
OpenID: The RESTful approach to Single Sign-On
Been spending a lot of time on regular work, but a friend recently suggested I check out OpenID -- the de facto distributed authentication standard for Web 2.0. I think of it as "Decentralized Kerberos for the Internet", in that provides the ability to do Single Sign-On without the need for everyone to agree on... Continue Reading →
A Theology of REST?
Over on REST discuss, transplanted Ghanese IBMer Koranteng Ofosu-Amaah posted a fascinating economic analysis of REST. [Read more] for some choice excerpts from his Biblically-inspired parable(emphasis mine); I should ask him if he knows economist-theologian Sayo Ajiboye! ? There's a Reverend: HTTP ? There's a choir: the HUHXtable quartet (HTTP, URI, HTML, XML) ? There... Continue Reading →
Sam Ruby goes Jeff Foxworthy on REST vs. SOAP
SAM got a little wistful today about this ancient post where he hoped that the REST vs. SOAP debate would focus on substantive issues. [Read more] to see why he isn't giving up his day job... From Sam Ruby:Rest vs RPCÊ In reality, there aren't two sides.Ê There are at least four.Ê ? Everything is... Continue Reading →
REST defined, concisely
Hat tip to Sam Ruby for pointing me to Koranteng Ofosu-Amaah's recap of the "REST Elevator Pitch" as four brief points: ? Identification Of Resources ? Manipulation Of Resources Through Representations ? Self-Descriptive Messages ? Hypermedia As The Engine Of Application State[Read more] for a longer, metaphor-laden excerpt from Koranteng's Toli about the "HUHXtable (?)... Continue Reading →
New Microrformats-REST wiki, mailing list
The interest in using microformats with REST has grown so strong, Tantek suggested a new microformats-rest mailing list. http://microformats.org/discuss/mail/microformats-rest/I've similarly created a new section of the wiki devoted to these RESTy issues:http://microformats.org/wiki/restI've tried to collect all the relevant rest work from elsewhere on the wiki, as well as external resources (like toydi's excellent preso). I... Continue Reading →
iHack, therefore iBlog 
You must be logged in to post a comment.