When you GET into modern web development (see what I did there), you often hear the term REST thrown around. In this post, we’ll explore what REST is, discuss what makes an API truly RESTful, and some very common misconceptions.
What is REST?
Representational State Transfer (REST) is an architectural style defined by a set of constraints and principles that guide the design of networked applications. Although REST can be implemented over other protocols, HTTP is the most popular choice to handle actions (via HTTP methods) and resource representations (using formats like JSON or XML).
One common misconception about REST is that it is solely tied to HTTP or that it exclusively uses JSON for communication. While HTTP is the most popular protocol for implementing RESTful services, the REST architectural style is not limited to any one protocol—it can be applied to other transport protocols as well. Similarly, JSON has become the go-to format for many developers with web applications, but REST is not restricted to JSON. XML, HTML, or even plain text can be used to represent resources, as long as the principles of REST, like statelessness and a uniform interface, are followed.
What Makes an API RESTful?
- Resource Identification in Requests:
Resources (data entities) should be uniquely identified via URIs. For instance, in a .NET-based API for managing products, you might have endpoints like/api/productsor/api/products/{id}. - Use of HTTP Methods:
HTTP methods have specific semantic meanings:
| HTTP Verb | Description | Idempotent? | Safe? |
|---|---|---|---|
| GET | Retrieves a resource. | Yes | Yes |
| POST | Creates a new resource or performs operations that result in a change of state. | No | No |
| PUT | Replaces a resource or creates one if it doesn’t exist. | Yes | No |
| PATCH | Partially updates a resource. | Typically No (depends on implementation) | No |
| DELETE | Removes a resource. | Yes | No |
| HEAD | Retrieves the headers for a resource, identical to GET without the body. | Yes | Yes |
| OPTIONS | Retrieves the supported HTTP methods and communication options for a resource. | Yes | Yes |
| TRACE | Echoes back the received request so that a client can see what (if any) changes or additions have been made by intermediate servers. | Yes | Yes* |
*Note: While TRACE is considered safe and idempotent, it is often disabled on many servers due to security concerns.
3. Representation of Resources:
Resources should be represented in a standardized format, typically JSON or XML. JSON is especially popular in modern web applications due to its simplicity and ease of integration with JavaScript.
4. Stateless Communication:
Each API request should contain all necessary information to process it. Authentication tokens, if needed, must be included in every request, usually via headers.
Conclusion
Wrapping up, understanding HTTP verbs—especially what it means for a method to be “safe”—can really change how you approach API design. It’s not just about following a standard; it’s about making thoughtful choices that improve both the reliability and efficiency of your application. When you know that certain methods won’t alter data, you can build systems that are more predictable and easier to maintain, which is something every developer appreciates.
Affiliate promo
If you love learning new stuff and want to support me, consider buying a course from Dometrain using this link: Browse courses – Dometrain. Thank you!
Coding Bolt 
Leave a comment