engineering
Designing API Keys: Generation, Storage, Rotation
API keys are the front door to your service. Most implementations get the basics wrong — and the cost is paid the first time a key leaks.
api
engineering
Logging That Actually Helps in Production
Most application logs are noise pretending to be signal. Here is what we actually log across four production APIs — and what we deliberately do not.
engineering
Caching Strategies Every Small API Should Implement
Most caching advice is written for problems you do not have. Here is the practical caching playbook for an API that serves under a million requests a day — and why most of it is just HTTP headers.
api
HTTP Status Codes That Tell the Truth
Most APIs lie about status codes. They return 200 with an error in the body. They return 500 for client mistakes. The right code in the right place is one of the cheapest ways to make an API honest.