Hi,I am trying to understand the difference between REST api's and XML based HTTP api's. An example of the XML based web api that we are looking at is Intacct. I am able to make api calls to these web service but I don't quite follow the structure of the api.The api endpoint url is - https://api.intacct.com/ia/xml/xmlgw.phtml . It accepts the authentication details through the HTTP POST request body. The body also includes application request details. These details need to be passed in a specific format in the body. i.e. xmlrequest = <request>....</request>.
I have a few questions
- Does such an api qualify to be called as a REST api? The fact that the api call succeeds through standard REST clients like postman, I am kind of confused if they could be termed as REST api's. In my understanding it violates some of the REST principles including
- Using POST request to fetch data from the server
- URL format does not include resource names
- Authentication details accepted as part of the request body instead of the authentication header parameter
- What category do such api's fall under if not REST? Would it be right to call them as XML based api's? If so, what are the standards for defining such XML based api's?
--
You received this message because you are subscribed to the Google Groups "API Craft" group.
To unsubscribe from this group and stop receiving emails from it, send an email to api-craft+unsubscribe@googlegroups.com.
Visit this group at https://groups.google.com/group/api-craft.
For more options, visit https://groups.google.com/d/optout.
Using POST isn't disqualifying, but you don't mention anything about use of "GET" wherever possible, so that is a strong indication of a non-REST-ful implementation. Specifically, it sounds like RPC over HTTP
However, if authentication information must ALWAYS be sent as part of the body of a request, that automatically means that GET requests never get used, and thus not a REST-ful design.
that automatically means that GET requests never get used, and thus not a REST-ful design
To unsubscribe from this group and stop receiving emails from it, send an email to api-craft+...@googlegroups.com.
Why are "GET" requests an important factor in knowing if the API is RESTful?