SlideShare a Scribd company logo

Introduction to Web APIs and the Google+ API - BarCamp Phnom Penh 2011

traactivity
traactivity

Intro to Web APIs and the Google+ API by Guy Flysher Google Software Engineer at Barcamp Phnom Penh 2011, Phnom Penh, Cambodia.

TechnologyNews & Politics
1 of 42
Download to read offline
Guy Flysher Intro to Web APIs and the Google+ API Barcamp Phnom Penh 2011 Phnom Penh, Cambodia
About me ● Developer in the Emerging markets team. ● Joined Google in 2007. ● Previously worked on Social graphs, Gmail and Google Accounts. ● Currently work on SMS products (Chat SMS, G+ SMS and more to come...) ● G+ profile: http://gplus.to/GuyFlysher
The Google+ API(s)? When people say the Google+ API they can sometime mean: 1. The +1 button. 2. The hangouts API. 3. The actual Google+ API :)
Agenda ● Part I: What are Web APIs? ○ Explanation and examples. ○ How to enable Google APIs. ● Part II: The Google+ Web API ● Part III: OAuth and Web APIs ● Part IV: Client Libraries
What are Web APIs ● As the name implies they are APIs based on the web. ● Requests are made via HTTP requests. ● Responses return as JSON. ● Can be implemented in any language that supports HTTP requests. ● If the request was successful the HTTP status code is set to 200, otherwise another code will be returned along with a description of the error.
What is JSON? ● JavaScript Object Notation. ● Comprised of key value pairs. ● Easy for people to read. ● Easy for machines to parse.
JSON example { "myLabel": "my value", "image": { "nestedLabel": "another value" "anotherNestedLabel": "ok, got it." }, "collectionOfObjects": [ { "nestedLabelAgain": "first value", }, { "nestedLabelAgain": "second value" } ] }
A Web API call request: GET https://www.googleapis.com/plus/v1/people/102947238809719640943? key=AIzaSyB4g0MY3zsLInJHa-qbDg0rbyCWak05hmI
A Web API call response: { "kind": "plus#person", "id": "102947238809719640943", "displayName": "Guy Flysher", "tagline": "A legend in his own mind", "gender": "male", "aboutMe": "No matter who began or first commenced it, I&#39;m against it!", "url": "https://plus.google.com/102947238809719640943", "image": { "url": "https://lh5.googleusercontent.com/<removed to fit slide>" }, "urls": [ { "value": "https://plus.google.com/102947238809719640943", "type": "profile" }, { "value": "https://www.googleapis.com/plus/v1/people/102947238809719640943", "type": "json" } ] }
(Some of) Google's web APIs Analytics Blogger Books Custom Search Cloud SQL Cloud storage Google+ Buzz Identity Toolkit Moderator Orkut Places Search for Tasks Translate Audit Shopping Page Speed Latitude URL Shortner And more!
Enabling access to Google APIs ● Enabling access to the different Google APIs is done via the Google API console. ● Can be found at: https://code.google.com/apis/console/ ● Also used to enable Oauth access (more on that later). ● Gives you an API key (remember the example before?) ● Lets do it together.
Agenda ● Part I: What are Web APIs? ● Part II: The Google+ Web API ● Part III: OAuth and Client Libraries ● Part IV: Client Libraries
Google+ Web API overview Currently the API allows access to three things: 1. People ○ get ○ search ○ listByActivity 2. Activities ○ list ○ get ○ search 3. Comments ○ list ○ get
Google+ Web API overview - People ● get Get a person's profile (requires the person's user ID) - Returns a "person" resource. ● search Search all public profiles - Returns a collection of "people" resources (+ a few more details). ● listByActivity List all of the people in the specified collection for a particular activity (+1/Reshare) - Returns a collection of "people" resources (+ a few more details).
People get example GET https://www.googleapis.com/plus/v1/people/102947238809719640943? key=AIzaSyB4g0MY3zsLInJHa-qbDg0rbyCWak05hmI
People get respone: { "kind": "plus#person", "id": "102947238809719640943", "displayName": "Guy Flysher", "tagline": "A legend in his own mind", "gender": "male", "aboutMe": "No matter who began or first commenced it, I&#39;m against it!", "url": "https://plus.google.com/102947238809719640943", "image": { "url": "https://lh5.googleusercontent.com/<removed to fit in slide>" }, "urls": [ { "value": "https://plus.google.com/102947238809719640943", "type": "profile" }, { "value": "https://www.googleapis.com/plus/v1/people/102947238809719640943", "type": "json" } ] }
Google+ Web API overview - Activities ● list List all of the activities in the specified collection (currently only public) for a particular user - Returns a collection of "activities" resources (+ a few more details) ● get Get an activity (requires the activity's ID) - Returns an "activity" resource. ● search Search public activities - Returns a collection of "activities" resources (+ a few more details).
Activities search example GET https://www.googleapis.com/plus/v1/activities?key=AIzaSyB4g0MY3zsLInJHa- qbDg0rbyCWak05hmI &orderBy=recent &query=snooker
Activities search response Too big to fit in a slide... so... Play around with the API online: http://code.google.com/apis/explorer/ And the result of the example.
Google+ Web API overview - Comments ● list List all of the comments for an activity - Returns a collection of "comments" resources (+ a few more details) ● get Get a comment (requires the comment's ID) - Returns a "comment" resource.
Comments list example GET https://www.googleapis.com/plus/v1/activities/ z12pgdeqosedtdqtt22cshljesigjfxs5/comments? key=AIzaSyB4g0MY3zsLInJHa-qbDg0rbyCWak05hmI Result
Agenda ● Part I: What are Web APIs? ● Part II: The Google+ Web API ● Part III: OAuth ● Part IV: Client Libraries
Applications acting on behalf of the user ● Some applications need access a user's product data (e.g. Calendar meetings) ● Some applications need to perform actions on behalf of the user in a product (e.g. set up a meeting). ● How does the application prove to the product (in this case Google) that it is allowed to act for the user? ○ User gives the application their password? ■ This is bad, why?
The solution: OAuth ● OAuth is an open standard for authorization. ● Allows users to share their private resources (e.g. photos, videos) stored on one site with another site without having to hand out their username and password. ● The user is prompted by Google to give the application the permissions it is asking for. ● If the user agrees Google gives the application a "token" with which the application can act on behalf of the user.
http://web-apis-slides.appspot.com/demo
How does it work? ● You (your application) sends the user to a special URL asking for the permissions you want: REDIRECT https://accounts.google.com/o/oauth2/auth? client_id=685953454903.apps.googleusercontent.com& redirect_uri=https://mydemo.com/oauth2callback& scope=https://www.googleapis.com/auth/plus.me& response_type=code
Confirmation page
If the user agrees... Google redirects the user to: https://mydemo.com/oauth2callback? code=4/P7q8W92a-oMsCeLvIaQm6bTrgtp7 If the user doesn't agree, Google redirects to the same URL with no code parameter (but with an error parameter).
Exchange the code for OAuth2 tokens Send a post request: POST /o/oauth2/token HTTP/1.1 Host: accounts.google.com code=4/P7q8W92a-oMsCeLvIaQm6bTrgtp7& client_id=685953454903.apps.googleusercontent.com& client_secret=Au4-Kcj1TPv0ycmNbjNV_esF& redirect_uri=https://www.example.com/back& grant_type=authorization_code
Exchange the code for OAuth2 tokens We get back a JSON response: HTTP/1.1 200 OK { "access_token": "1/fFAGRNJru1FTz70BzhT3Zg", "expires_in": 3920, "refresh_token": "1/6BMfW9j53gdGImsixUH6kU5RsR4zwI9lUVX-tqf8JXQ" }
Using the OAuth token In Google+ for example, we can now use the "me" identifier: GET https://www.googleapis.com/plus/v1/people/me? key=AIzaSyB4g0MY3zsLInJHa-qbDg0rbyCWak05hmI& access_token=1/fFAGRNJru1FTz70BzhT3Zg This will return the profile of the user this token was issues for.
Agenda ● Part I: What are Web APIs? ● Part II: The Google+ Web API ● Part III: OAuth ● Part IV: Client Libraries
The great news... You don't need to do all this work: ● Prepare the HTTP API calls ● Parse the JSON response ● Prepare the OAuth2 requests (including refreshing the access token). Google has client libraries for using the Google+ API (as well as the other APIs) for: ● .Net ● GWT ● Java ● Objective C (Iphone) ● PHP ● Python ● Ruby
Using the Google+ Java client library // This sample assumes a client "plus" object has been created. Plus.People.Search searchPeople = plus.people().search(); searchPeople.setQuery("Jenny"); searchPeople.setMaxResults(5L); PeopleFeed peopleFeed = searchPeople.execute(); List<Person> people = peopleFeed.getItems(); // Go over all the results...
Using the OAuth2 Java client library // Get the OAuth2 code. public void doGet( HttpServletRequest req, HttpServletResponse resp) { // Generate the URL to which we will direct users. String authorizeUrl = new GoogleAuthorizationRequestUrl( 685953454903.apps.googleusercontent.com, // App ID https://mydemo.com/oauth2callbackurl, // Redirect URL https://www.googleapis.com/auth/plus.me) // Scope .build(); // Redirect the user so that they can allow us access. resp.sendRedirect(authorizeUrl); return; }
Using the OAuth2 Java client library (2) // Get the OAuth2 tokens. public void doGet( HttpServletRequest req, HttpServletResponse resp) { String oauth2Code = req.getParameter("code"); if (oauth2Code == null) { /* User did not allow us access */ } // Exchange the code for an access and refresh tokens. GoogleAuthorizationCodeGrant authRequest = new GoogleAuthorizationCodeGrant(TRANSPORT, JSON_FACTORY, CLIENT_ID, CLIENT_SECRET, oauth2Code, CALLBACK_URL); authRequest.useBasicAuthorization = false; AccessTokenResponse authResponse = authRequest.execute(); ...
Using the OAuth2 Java client library (3) ... // Save authResponse.accessToken and authResponse.refreshToken // in a database somewhere to be used for this user whenever // we need it. // If the access token has expired, get a new one. GoogleAccessProtectedResource access = new GoogleAccessProtectedResource(authResponse.accessToken, TRANSPORT, JSON_FACTORY, CLIENT_ID, CLIENT_SECRET, authResponse.refreshToken); access.refreshToken(); // access.getAccessToken() will contain the new token.
! Q&A
Learning more Google+ API: https://developers.google.com/+/api/ Google API client libraries: https://developers.google.com/+/downloads The Plus Java client library docs: http://goo.gl/ojaLM OAuth 2 in Java: http://code.google.com/p/google-api-java- client/wiki/OAuth2Draft10

Recommended

Django
DjangoDjango
DjangoKangjin Jun
 
Django with Mongo using Mongoengine
Django with Mongo using MongoengineDjango with Mongo using Mongoengine
Django with Mongo using Mongoenginedudarev
 
HtmlElements – естественное расширение PageObject
HtmlElements – естественное расширение PageObjectHtmlElements – естественное расширение PageObject
HtmlElements – естественное расширение PageObjectSQALab
 
Doctype htm1
Doctype htm1Doctype htm1
Doctype htm1Eddy_TKJ
 
Introduction To Developing Custom Actions Within SharePoint
Introduction To Developing Custom Actions Within SharePointIntroduction To Developing Custom Actions Within SharePoint
Introduction To Developing Custom Actions Within SharePointGeoff Varosky
 
JSON Web Tokens Will Improve Your Life
JSON Web Tokens Will Improve Your LifeJSON Web Tokens Will Improve Your Life
JSON Web Tokens Will Improve Your LifeJohn Anderson
 
Stateless authentication with OAuth 2 and JWT - JavaZone 2015
Stateless authentication with OAuth 2 and JWT - JavaZone 2015Stateless authentication with OAuth 2 and JWT - JavaZone 2015
Stateless authentication with OAuth 2 and JWT - JavaZone 2015Alvaro Sanchez-Mariscal
 
Exploring Google APIs with Python & JavaScript
Exploring Google APIs with Python & JavaScriptExploring Google APIs with Python & JavaScript
Exploring Google APIs with Python & JavaScriptwesley chun
 

Recommended

Django
DjangoDjango
DjangoKangjin Jun
 
Django with Mongo using Mongoengine
Django with Mongo using MongoengineDjango with Mongo using Mongoengine
Django with Mongo using Mongoenginedudarev
 
HtmlElements – естественное расширение PageObject
HtmlElements – естественное расширение PageObjectHtmlElements – естественное расширение PageObject
HtmlElements – естественное расширение PageObjectSQALab
 
Doctype htm1
Doctype htm1Doctype htm1
Doctype htm1Eddy_TKJ
 
Introduction To Developing Custom Actions Within SharePoint
Introduction To Developing Custom Actions Within SharePointIntroduction To Developing Custom Actions Within SharePoint
Introduction To Developing Custom Actions Within SharePointGeoff Varosky
 
JSON Web Tokens Will Improve Your Life
JSON Web Tokens Will Improve Your LifeJSON Web Tokens Will Improve Your Life
JSON Web Tokens Will Improve Your LifeJohn Anderson
 
Stateless authentication with OAuth 2 and JWT - JavaZone 2015
Stateless authentication with OAuth 2 and JWT - JavaZone 2015Stateless authentication with OAuth 2 and JWT - JavaZone 2015
Stateless authentication with OAuth 2 and JWT - JavaZone 2015Alvaro Sanchez-Mariscal
 
Exploring Google APIs with Python & JavaScript
Exploring Google APIs with Python & JavaScriptExploring Google APIs with Python & JavaScript
Exploring Google APIs with Python & JavaScriptwesley chun
 
Exploring Google (Cloud) APIs with Python & JavaScript
Exploring Google (Cloud) APIs with Python & JavaScriptExploring Google (Cloud) APIs with Python & JavaScript
Exploring Google (Cloud) APIs with Python & JavaScriptwesley chun
 
Introducing Hangout Apps
Introducing Hangout AppsIntroducing Hangout Apps
Introducing Hangout AppsJonathan Beri
 
The Big Picture and How to Get Started
The Big Picture and How to Get StartedThe Big Picture and How to Get Started
The Big Picture and How to Get Startedguest1af57e
 
Image archive, analysis & report generation with Google Cloud
Image archive, analysis & report generation with Google CloudImage archive, analysis & report generation with Google Cloud
Image archive, analysis & report generation with Google Cloudwesley chun
 
How can a data layer help my seo
How can a data layer help my seoHow can a data layer help my seo
How can a data layer help my seoPhil Pearce
 
Build an AI/ML-driven image archive processing workflow: Image archive, analy...
Build an AI/ML-driven image archive processing workflow: Image archive, analy...Build an AI/ML-driven image archive processing workflow: Image archive, analy...
Build an AI/ML-driven image archive processing workflow: Image archive, analy...wesley chun
 
2011 august-gdd-mexico-city-rest-json-oauth
2011 august-gdd-mexico-city-rest-json-oauth2011 august-gdd-mexico-city-rest-json-oauth
2011 august-gdd-mexico-city-rest-json-oauthikailan
 
Getting started using Google APIs (2019)
Getting started using Google APIs (2019)Getting started using Google APIs (2019)
Getting started using Google APIs (2019)wesley chun
 
Exploring Google APIs 102: Cloud vs. non-GCP Google APIs
Exploring Google APIs 102: Cloud vs. non-GCP Google APIsExploring Google APIs 102: Cloud vs. non-GCP Google APIs
Exploring Google APIs 102: Cloud vs. non-GCP Google APIswesley chun
 
Power your apps with Gmail, Google Drive, Calendar, Sheets, Slides & more
Power your apps with Gmail, Google Drive, Calendar, Sheets, Slides & morePower your apps with Gmail, Google Drive, Calendar, Sheets, Slides & more
Power your apps with Gmail, Google Drive, Calendar, Sheets, Slides & morewesley chun
 
Using Google (Cloud) APIs
Using Google (Cloud) APIsUsing Google (Cloud) APIs
Using Google (Cloud) APIswesley chun
 
OpenSocial Intro
OpenSocial IntroOpenSocial Intro
OpenSocial IntroPamela Fox
 
Google+ API (2012)
Google+ API (2012)Google+ API (2012)
Google+ API (2012)Oon Arfiandwi
 
Google Opening up to Developers - From 2 to 55 APIs in 3 years
Google Opening up to Developers - From 2 to 55 APIs in 3 yearsGoogle Opening up to Developers - From 2 to 55 APIs in 3 years
Google Opening up to Developers - From 2 to 55 APIs in 3 yearsPatrick Chanezon
 
Google APIs
Google APIsGoogle APIs
Google APIsClub Scientifique de l'ESI - CSE
 
Google Integration in Android Apps - Mooscon 2013 Cebit
Google Integration in Android Apps - Mooscon 2013 CebitGoogle Integration in Android Apps - Mooscon 2013 Cebit
Google Integration in Android Apps - Mooscon 2013 CebitFriedger Müffke
 
Mashups & APIs
Mashups & APIsMashups & APIs
Mashups & APIsPamela Fox
 
Build with ALL of Google Cloud
Build with ALL of Google CloudBuild with ALL of Google Cloud
Build with ALL of Google Cloudwesley chun
 
Microsoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needsMicrosoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needsMicrosoft Tech Community
 
Microsoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needsMicrosoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needsMicrosoft Tech Community
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 

More Related Content

Similar to Introduction to Web APIs and the Google+ API - BarCamp Phnom Penh 2011

Exploring Google (Cloud) APIs with Python & JavaScript
Exploring Google (Cloud) APIs with Python & JavaScriptExploring Google (Cloud) APIs with Python & JavaScript
Exploring Google (Cloud) APIs with Python & JavaScriptwesley chun
 
Introducing Hangout Apps
Introducing Hangout AppsIntroducing Hangout Apps
Introducing Hangout AppsJonathan Beri
 
The Big Picture and How to Get Started
The Big Picture and How to Get StartedThe Big Picture and How to Get Started
The Big Picture and How to Get Startedguest1af57e
 
Image archive, analysis & report generation with Google Cloud
Image archive, analysis & report generation with Google CloudImage archive, analysis & report generation with Google Cloud
Image archive, analysis & report generation with Google Cloudwesley chun
 
How can a data layer help my seo
How can a data layer help my seoHow can a data layer help my seo
How can a data layer help my seoPhil Pearce
 
Build an AI/ML-driven image archive processing workflow: Image archive, analy...
Build an AI/ML-driven image archive processing workflow: Image archive, analy...Build an AI/ML-driven image archive processing workflow: Image archive, analy...
Build an AI/ML-driven image archive processing workflow: Image archive, analy...wesley chun
 
2011 august-gdd-mexico-city-rest-json-oauth
2011 august-gdd-mexico-city-rest-json-oauth2011 august-gdd-mexico-city-rest-json-oauth
2011 august-gdd-mexico-city-rest-json-oauthikailan
 
Getting started using Google APIs (2019)
Getting started using Google APIs (2019)Getting started using Google APIs (2019)
Getting started using Google APIs (2019)wesley chun
 
Exploring Google APIs 102: Cloud vs. non-GCP Google APIs
Exploring Google APIs 102: Cloud vs. non-GCP Google APIsExploring Google APIs 102: Cloud vs. non-GCP Google APIs
Exploring Google APIs 102: Cloud vs. non-GCP Google APIswesley chun
 
Power your apps with Gmail, Google Drive, Calendar, Sheets, Slides & more
Power your apps with Gmail, Google Drive, Calendar, Sheets, Slides & morePower your apps with Gmail, Google Drive, Calendar, Sheets, Slides & more
Power your apps with Gmail, Google Drive, Calendar, Sheets, Slides & morewesley chun
 
Using Google (Cloud) APIs
Using Google (Cloud) APIsUsing Google (Cloud) APIs
Using Google (Cloud) APIswesley chun
 
OpenSocial Intro
OpenSocial IntroOpenSocial Intro
OpenSocial IntroPamela Fox
 
Google Opening up to Developers - From 2 to 55 APIs in 3 years
Google Opening up to Developers - From 2 to 55 APIs in 3 yearsGoogle Opening up to Developers - From 2 to 55 APIs in 3 years
Google Opening up to Developers - From 2 to 55 APIs in 3 yearsPatrick Chanezon
 
Google Integration in Android Apps - Mooscon 2013 Cebit
Google Integration in Android Apps - Mooscon 2013 CebitGoogle Integration in Android Apps - Mooscon 2013 Cebit
Google Integration in Android Apps - Mooscon 2013 CebitFriedger Müffke
 
Mashups & APIs
Mashups & APIsMashups & APIs
Mashups & APIsPamela Fox
 
Build with ALL of Google Cloud
Build with ALL of Google CloudBuild with ALL of Google Cloud
Build with ALL of Google Cloudwesley chun
 
Microsoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needsMicrosoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needsMicrosoft Tech Community
 
Microsoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needsMicrosoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needsMicrosoft Tech Community
 

Similar to Introduction to Web APIs and the Google+ API - BarCamp Phnom Penh 2011 (20)

Exploring Google (Cloud) APIs with Python & JavaScript
Exploring Google (Cloud) APIs with Python & JavaScriptExploring Google (Cloud) APIs with Python & JavaScript
Exploring Google (Cloud) APIs with Python & JavaScript
 
Introducing Hangout Apps
Introducing Hangout AppsIntroducing Hangout Apps
Introducing Hangout Apps
 
The Big Picture and How to Get Started
The Big Picture and How to Get StartedThe Big Picture and How to Get Started
The Big Picture and How to Get Started
 
Image archive, analysis & report generation with Google Cloud
Image archive, analysis & report generation with Google CloudImage archive, analysis & report generation with Google Cloud
Image archive, analysis & report generation with Google Cloud
 
How can a data layer help my seo
How can a data layer help my seoHow can a data layer help my seo
How can a data layer help my seo
 
Build an AI/ML-driven image archive processing workflow: Image archive, analy...
Build an AI/ML-driven image archive processing workflow: Image archive, analy...Build an AI/ML-driven image archive processing workflow: Image archive, analy...
Build an AI/ML-driven image archive processing workflow: Image archive, analy...
 
2011 august-gdd-mexico-city-rest-json-oauth
2011 august-gdd-mexico-city-rest-json-oauth2011 august-gdd-mexico-city-rest-json-oauth
2011 august-gdd-mexico-city-rest-json-oauth
 
Getting started using Google APIs (2019)
Getting started using Google APIs (2019)Getting started using Google APIs (2019)
Getting started using Google APIs (2019)
 
Exploring Google APIs 102: Cloud vs. non-GCP Google APIs
Exploring Google APIs 102: Cloud vs. non-GCP Google APIsExploring Google APIs 102: Cloud vs. non-GCP Google APIs
Exploring Google APIs 102: Cloud vs. non-GCP Google APIs
 
Power your apps with Gmail, Google Drive, Calendar, Sheets, Slides & more
Power your apps with Gmail, Google Drive, Calendar, Sheets, Slides & morePower your apps with Gmail, Google Drive, Calendar, Sheets, Slides & more
Power your apps with Gmail, Google Drive, Calendar, Sheets, Slides & more
 
Using Google (Cloud) APIs
Using Google (Cloud) APIsUsing Google (Cloud) APIs
Using Google (Cloud) APIs
 
OpenSocial Intro
OpenSocial IntroOpenSocial Intro
OpenSocial Intro
 
Google+ API (2012)
Google+ API (2012)Google+ API (2012)
Google+ API (2012)
 
Google Opening up to Developers - From 2 to 55 APIs in 3 years
Google Opening up to Developers - From 2 to 55 APIs in 3 yearsGoogle Opening up to Developers - From 2 to 55 APIs in 3 years
Google Opening up to Developers - From 2 to 55 APIs in 3 years
 
Google APIs
Google APIsGoogle APIs
Google APIs
 
Google Integration in Android Apps - Mooscon 2013 Cebit
Google Integration in Android Apps - Mooscon 2013 CebitGoogle Integration in Android Apps - Mooscon 2013 Cebit
Google Integration in Android Apps - Mooscon 2013 Cebit
 
Mashups & APIs
Mashups & APIsMashups & APIs
Mashups & APIs
 
Build with ALL of Google Cloud
Build with ALL of Google CloudBuild with ALL of Google Cloud
Build with ALL of Google Cloud
 
Microsoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needsMicrosoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needs
 
Microsoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needsMicrosoft Graph: Connect to essential data every app needs
Microsoft Graph: Connect to essential data every app needs
 

Recently uploaded

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)wesley chun
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsJoaquim Jorge
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 

Recently uploaded (20)

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 

Introduction to Web APIs and the Google+ API - BarCamp Phnom Penh 2011

  • 1. Guy Flysher Intro to Web APIs and the Google+ API Barcamp Phnom Penh 2011 Phnom Penh, Cambodia
  • 2. About me ● Developer in the Emerging markets team. ● Joined Google in 2007. ● Previously worked on Social graphs, Gmail and Google Accounts. ● Currently work on SMS products (Chat SMS, G+ SMS and more to come...) ● G+ profile: http://gplus.to/GuyFlysher
  • 3. The Google+ API(s)? When people say the Google+ API they can sometime mean: 1. The +1 button. 2. The hangouts API. 3. The actual Google+ API :)
  • 4. Agenda ● Part I: What are Web APIs? ○ Explanation and examples. ○ How to enable Google APIs. ● Part II: The Google+ Web API ● Part III: OAuth and Web APIs ● Part IV: Client Libraries
  • 5. What are Web APIs ● As the name implies they are APIs based on the web. ● Requests are made via HTTP requests. ● Responses return as JSON. ● Can be implemented in any language that supports HTTP requests. ● If the request was successful the HTTP status code is set to 200, otherwise another code will be returned along with a description of the error.
  • 6. What is JSON? ● JavaScript Object Notation. ● Comprised of key value pairs. ● Easy for people to read. ● Easy for machines to parse.
  • 7. JSON example { "myLabel": "my value", "image": { "nestedLabel": "another value" "anotherNestedLabel": "ok, got it." }, "collectionOfObjects": [ { "nestedLabelAgain": "first value", }, { "nestedLabelAgain": "second value" } ] }
  • 8. A Web API call request: GET https://www.googleapis.com/plus/v1/people/102947238809719640943? key=AIzaSyB4g0MY3zsLInJHa-qbDg0rbyCWak05hmI
  • 9. A Web API call response: { "kind": "plus#person", "id": "102947238809719640943", "displayName": "Guy Flysher", "tagline": "A legend in his own mind", "gender": "male", "aboutMe": "No matter who began or first commenced it, I&#39;m against it!", "url": "https://plus.google.com/102947238809719640943", "image": { "url": "https://lh5.googleusercontent.com/<removed to fit slide>" }, "urls": [ { "value": "https://plus.google.com/102947238809719640943", "type": "profile" }, { "value": "https://www.googleapis.com/plus/v1/people/102947238809719640943", "type": "json" } ] }
  • 10. (Some of) Google's web APIs Analytics Blogger Books Custom Search Cloud SQL Cloud storage Google+ Buzz Identity Toolkit Moderator Orkut Places Search for Tasks Translate Audit Shopping Page Speed Latitude URL Shortner And more!
  • 11. Enabling access to Google APIs ● Enabling access to the different Google APIs is done via the Google API console. ● Can be found at: https://code.google.com/apis/console/ ● Also used to enable Oauth access (more on that later). ● Gives you an API key (remember the example before?) ● Lets do it together.
  • 12. Agenda ● Part I: What are Web APIs? ● Part II: The Google+ Web API ● Part III: OAuth and Client Libraries ● Part IV: Client Libraries
  • 13. Google+ Web API overview Currently the API allows access to three things: 1. People ○ get ○ search ○ listByActivity 2. Activities ○ list ○ get ○ search 3. Comments ○ list ○ get
  • 14. Google+ Web API overview - People ● get Get a person's profile (requires the person's user ID) - Returns a "person" resource. ● search Search all public profiles - Returns a collection of "people" resources (+ a few more details). ● listByActivity List all of the people in the specified collection for a particular activity (+1/Reshare) - Returns a collection of "people" resources (+ a few more details).
  • 15.
  • 16. People get example GET https://www.googleapis.com/plus/v1/people/102947238809719640943? key=AIzaSyB4g0MY3zsLInJHa-qbDg0rbyCWak05hmI
  • 17. People get respone: { "kind": "plus#person", "id": "102947238809719640943", "displayName": "Guy Flysher", "tagline": "A legend in his own mind", "gender": "male", "aboutMe": "No matter who began or first commenced it, I&#39;m against it!", "url": "https://plus.google.com/102947238809719640943", "image": { "url": "https://lh5.googleusercontent.com/<removed to fit in slide>" }, "urls": [ { "value": "https://plus.google.com/102947238809719640943", "type": "profile" }, { "value": "https://www.googleapis.com/plus/v1/people/102947238809719640943", "type": "json" } ] }
  • 18. Google+ Web API overview - Activities ● list List all of the activities in the specified collection (currently only public) for a particular user - Returns a collection of "activities" resources (+ a few more details) ● get Get an activity (requires the activity's ID) - Returns an "activity" resource. ● search Search public activities - Returns a collection of "activities" resources (+ a few more details).
  • 19.
  • 20. Activities search example GET https://www.googleapis.com/plus/v1/activities?key=AIzaSyB4g0MY3zsLInJHa- qbDg0rbyCWak05hmI &orderBy=recent &query=snooker
  • 21. Activities search response Too big to fit in a slide... so... Play around with the API online: http://code.google.com/apis/explorer/ And the result of the example.
  • 22. Google+ Web API overview - Comments ● list List all of the comments for an activity - Returns a collection of "comments" resources (+ a few more details) ● get Get a comment (requires the comment's ID) - Returns a "comment" resource.
  • 23.
  • 24. Comments list example GET https://www.googleapis.com/plus/v1/activities/ z12pgdeqosedtdqtt22cshljesigjfxs5/comments? key=AIzaSyB4g0MY3zsLInJHa-qbDg0rbyCWak05hmI Result
  • 25. Agenda ● Part I: What are Web APIs? ● Part II: The Google+ Web API ● Part III: OAuth ● Part IV: Client Libraries
  • 26. Applications acting on behalf of the user ● Some applications need access a user's product data (e.g. Calendar meetings) ● Some applications need to perform actions on behalf of the user in a product (e.g. set up a meeting). ● How does the application prove to the product (in this case Google) that it is allowed to act for the user? ○ User gives the application their password? ■ This is bad, why?
  • 27. The solution: OAuth ● OAuth is an open standard for authorization. ● Allows users to share their private resources (e.g. photos, videos) stored on one site with another site without having to hand out their username and password. ● The user is prompted by Google to give the application the permissions it is asking for. ● If the user agrees Google gives the application a "token" with which the application can act on behalf of the user.
  • 29. How does it work? ● You (your application) sends the user to a special URL asking for the permissions you want: REDIRECT https://accounts.google.com/o/oauth2/auth? client_id=685953454903.apps.googleusercontent.com& redirect_uri=https://mydemo.com/oauth2callback& scope=https://www.googleapis.com/auth/plus.me& response_type=code
  • 31. If the user agrees... Google redirects the user to: https://mydemo.com/oauth2callback? code=4/P7q8W92a-oMsCeLvIaQm6bTrgtp7 If the user doesn't agree, Google redirects to the same URL with no code parameter (but with an error parameter).
  • 32. Exchange the code for OAuth2 tokens Send a post request: POST /o/oauth2/token HTTP/1.1 Host: accounts.google.com code=4/P7q8W92a-oMsCeLvIaQm6bTrgtp7& client_id=685953454903.apps.googleusercontent.com& client_secret=Au4-Kcj1TPv0ycmNbjNV_esF& redirect_uri=https://www.example.com/back& grant_type=authorization_code
  • 33. Exchange the code for OAuth2 tokens We get back a JSON response: HTTP/1.1 200 OK { "access_token": "1/fFAGRNJru1FTz70BzhT3Zg", "expires_in": 3920, "refresh_token": "1/6BMfW9j53gdGImsixUH6kU5RsR4zwI9lUVX-tqf8JXQ" }
  • 34. Using the OAuth token In Google+ for example, we can now use the "me" identifier: GET https://www.googleapis.com/plus/v1/people/me? key=AIzaSyB4g0MY3zsLInJHa-qbDg0rbyCWak05hmI& access_token=1/fFAGRNJru1FTz70BzhT3Zg This will return the profile of the user this token was issues for.
  • 35. Agenda ● Part I: What are Web APIs? ● Part II: The Google+ Web API ● Part III: OAuth ● Part IV: Client Libraries
  • 36. The great news... You don't need to do all this work: ● Prepare the HTTP API calls ● Parse the JSON response ● Prepare the OAuth2 requests (including refreshing the access token). Google has client libraries for using the Google+ API (as well as the other APIs) for: ● .Net ● GWT ● Java ● Objective C (Iphone) ● PHP ● Python ● Ruby
  • 37. Using the Google+ Java client library // This sample assumes a client "plus" object has been created. Plus.People.Search searchPeople = plus.people().search(); searchPeople.setQuery("Jenny"); searchPeople.setMaxResults(5L); PeopleFeed peopleFeed = searchPeople.execute(); List<Person> people = peopleFeed.getItems(); // Go over all the results...
  • 38. Using the OAuth2 Java client library // Get the OAuth2 code. public void doGet( HttpServletRequest req, HttpServletResponse resp) { // Generate the URL to which we will direct users. String authorizeUrl = new GoogleAuthorizationRequestUrl( 685953454903.apps.googleusercontent.com, // App ID https://mydemo.com/oauth2callbackurl, // Redirect URL https://www.googleapis.com/auth/plus.me) // Scope .build(); // Redirect the user so that they can allow us access. resp.sendRedirect(authorizeUrl); return; }
  • 39. Using the OAuth2 Java client library (2) // Get the OAuth2 tokens. public void doGet( HttpServletRequest req, HttpServletResponse resp) { String oauth2Code = req.getParameter("code"); if (oauth2Code == null) { /* User did not allow us access */ } // Exchange the code for an access and refresh tokens. GoogleAuthorizationCodeGrant authRequest = new GoogleAuthorizationCodeGrant(TRANSPORT, JSON_FACTORY, CLIENT_ID, CLIENT_SECRET, oauth2Code, CALLBACK_URL); authRequest.useBasicAuthorization = false; AccessTokenResponse authResponse = authRequest.execute(); ...
  • 40. Using the OAuth2 Java client library (3) ... // Save authResponse.accessToken and authResponse.refreshToken // in a database somewhere to be used for this user whenever // we need it. // If the access token has expired, get a new one. GoogleAccessProtectedResource access = new GoogleAccessProtectedResource(authResponse.accessToken, TRANSPORT, JSON_FACTORY, CLIENT_ID, CLIENT_SECRET, authResponse.refreshToken); access.refreshToken(); // access.getAccessToken() will contain the new token.
  • 41. ! Q&A
  • 42. Learning more Google+ API: https://developers.google.com/+/api/ Google API client libraries: https://developers.google.com/+/downloads The Plus Java client library docs: http://goo.gl/ojaLM OAuth 2 in Java: http://code.google.com/p/google-api-java- client/wiki/OAuth2Draft10