The Ultimate API Showdown: Server Actions, tRPC, GraphQL, and REST Compared!

00:00

whenever the topic of server actions

00:01

comes up inevitably folks ask well now

00:03

that we have server actions and

00:04

something like nextjs do we even need

00:07

stuff like trpc graphql or rest and

00:11

that's actually a complex question so

00:13

what we're going to do in this video is

00:15

compare server actions to trpc graphql

00:19

and rest and give you some insights into

00:22

which might be the best choice for your

00:24

project let's get right into

00:28

it

00:33

all right let's introduce our four

00:34

different paradigms starting off we've

00:37

got server actions server actions are

00:39

functions that you define on the server

00:42

in the case of xjs 14 you define them

00:45

using the use server pragma and then you

00:47

can invoke them from the client by just

00:50

calling that function and nextjs or

00:53

solid start or quick or whatever

00:55

framework you're using manages that

00:58

entire flow of making that call for you

01:01

next up is trpc or typesafe remote

01:03

procedure calls you define the remote

01:06

procedure calls that you want to have

01:08

exposed by the server it then

01:10

automatically creates some handy query

01:13

hooks for you and does all of that

01:16

marshalling for you between the API

01:18

endpoint and your function which is

01:20

really cool it sits on top of HTTP and

01:22

Json and despite what people may think

01:25

you don't have to be using typescript to

01:27

use trpc you can make RPC requests from

01:32

any language next up is graphql it is a

01:34

query language that was created by meta

01:36

it sits again on top of HTP and Json

01:38

there is nothing exotic about the return

01:41

values those are simple Json what is

01:43

interesting is the request format which

01:46

is a query language and you can specify

01:49

either queries or mutations and the

01:51

Syntax for that query is well understood

01:55

and there's a full standard around that

01:57

and then finally there is rest rest

01:59

stand stands for representational State

02:01

transfer it is an architectural style

02:04

where there are entities defined in a

02:07

hierarchic structure but beyond that it

02:10

it really doesn't have a lot of

02:11

formality to it or standards to it and

02:14

so you see things like open API and

02:17

Swagger as ways to kind of lock down

02:20

rest apis but rest apis can have all

02:24

kinds of different shapes and flavors

02:26

and styles so now let's get into

02:28

comparing the various advantag and

02:30

disadvantages of using server actions

02:32

trpc graphql and rest we'll start off

02:37

without easy each one of these is to set

02:39

up in terms of setup server actions is

02:41

incredibly easy to set up it's actually

02:43

built into NEX js14 now so you don't

02:46

even have to enable anything all you

02:48

have to do is just start using them and

02:50

they work out of the box so that's why

02:52

I'm giving it three up arrows if it's

02:55

three down arrows that would be the

02:56

lowest ranking three up arrows is our

02:58

highest ranking so how does that compare

03:00

to something like trpc well trpc is

03:03

fairly easy to set up the docs are

03:04

pretty good about how to set this up in

03:06

your environment so I'm going to give

03:07

that two up arrows graphql is actually

03:10

pretty difficult to set up not only you

03:11

have to go and set up the API end points

03:13

and get those going but you also usually

03:16

have to do something like a graphql code

03:18

generator to just go and create all of

03:21

the stuff like the query Hooks and

03:23

everything else to keep it type safe it

03:25

is kind of a pain to set up and then

03:27

rest is really easy to set up in most of

03:29

these environments

03:30

nextjs remix they all have a way to

03:32

create API endpoint routes all right

03:35

what's next ease of use all right well

03:38

server actions again are incredibly easy

03:39

to use there are just functions all you

03:42

got to do is just call these functions

03:44

on the client and the client does all of

03:47

the work of actually making the request

03:49

against the server and getting the data

03:51

back it couldn't be easier it looks just

03:53

like a function and if you're familiar

03:54

with react query trpc is pretty easy to

03:57

use as well as our graphql and rest

04:00

they're basically just queries against

04:03

that endpoint and with react query you

04:05

get all those status values and all of

04:06

that but let's face it come on use Query

04:09

is never going to be as convenient as

04:11

just calling a function which is what

04:12

you do with server actions our next

04:15

category is mutations how easy is it to

04:17

do a mutation against a server server

04:20

actions were designed to do mutations so

04:23

that's one of the places where server

04:26

actions are really going to shine of

04:27

course they're pretty good across trp C

04:29

and graphql as well graphql has specific

04:33

types of queries known as mutations

04:37

that's all type safe so that's really

04:38

easy to use now rest is also really easy

04:41

to do mutations with but the thing with

04:44

rest is when it comes to these endpoints

04:45

you're basically kind of making it up as

04:47

you go along you get to define the API

04:50

you could use a get to make a mutation

04:53

which is not something you'd want to do

04:54

you could use a post or a put you get to

04:57

define the API that you want and so in

05:00

essence you get to define a non-standard

05:03

API and that can be a problem all right

05:06

what's next well queries so the flip

05:08

side of doing a mutation is to do a

05:10

query this is actually where server

05:12

actions are not so great so server

05:15

actions aren't really designed to do

05:17

queries they're server actions after all

05:20

you're acting against the server you're

05:21

not querying against it you're trying to

05:23

make some sort of change on the server

05:25

and one of the things I've heard

05:27

recently about nextjs in particular is

05:29

that server action requests are cued so

05:31

if you want to go and make multiple

05:32

query requests against a server you're

05:34

going to have to wait for those to cue

05:36

and that's not great when you want to do

05:37

queries you're generally going to want

05:39

to do multiple queries simultaneously so

05:41

that's something to watch out for when

05:42

it comes to server actions on nextjs

05:45

queries really shine of course on trpc

05:47

and graphql but there's a big hidden

05:50

gotcha on graphql and that's the fact

05:53

that a client can make up any query that

05:56

they want against the server and that

05:58

can be deadly you can get a denial of

06:00

service against your API when someone

06:02

makes an AP a malicious API request that

06:06

ends up eating a lot of either database

06:09

time or server time to accomplish that

06:11

request so that's something to watch out

06:13

for when it comes to graphql now there

06:15

are productss like vunder graph that

06:16

allow you to do build time graphql but

06:19

runtime rest that avoid that issue so

06:22

that's simply something you want to

06:23

think about when you think about putting

06:24

graphql into production particularly

06:27

when you're thinking about high traffic

06:30

and then of course rest is phenomenal

06:32

for queries all you've got to do is just

06:33

create a get endpoint and it's really

06:35

easy so another big question is how

06:37

types safe are these so server actions

06:39

are fantastic they're typees safe right

06:40

out of the box you're just calling a

06:42

function and so typescript is able to

06:44

track those types just as a function now

06:48

type safety is one where I'm going to

06:49

give an advantage to graphql because

06:51

graphql allows for introspection against

06:53

the server and that means that a client

06:55

whether it be on JavaScript or

06:57

typescript or go or rust or whatever

06:59

have you you can go and request against

07:02

the server to get the schema from the

07:04

server and create types off of that so

07:07

that is very very handy and it's a

07:09

unique advantage of

07:11

graphql and then rest is a problem when

07:13

it comes to type safety because again

07:15

you can make up anything you want when

07:17

it comes to rest now you could follow

07:19

open API or you could export Swagger and

07:24

potentially get types out of rest but

07:25

that's a lot of setup and unless you're

07:28

in a larger setup most of the time you

07:31

are just going and creating your own

07:33

types around your own queries and that's

07:35

not great for type safety all right

07:37

another Vector of comparison is

07:38

compatibility so if you are going to

07:41

have these endpoints how compatible are

07:43

they with other things making those

07:45

calls for example you have a mobile

07:47

client or you got a desktop client are

07:49

those going to interface with these

07:51

Technologies well and that's actually

07:53

one of the areas where server actions

07:55

fall down and that's because server

07:58

actions the API is a effectively

08:00

designed by the framework so you don't

08:02

control what type of query it is if it's

08:05

a form post what the actions are the

08:09

format of the request you control none

08:11

of that so when it comes to a mobile

08:14

client if all you have a server actions

08:16

they're basically going to have to look

08:17

at the wire and see what's going across

08:19

the wire and then imitate that to go and

08:22

do the equivalent of the server action

08:25

which is not a great API trpc is really

08:28

good for this you can have the types

08:29

that are then imported by a client if

08:32

you got JavaScript or typescript on the

08:34

other client that's going to be

08:36

fantastic when it comes to trpc when it

08:38

comes to something like go or rust or

08:40

another framework that's not going to be

08:43

as good but yeah if you're doing trpc

08:46

between two different typescript

08:48

applications be it react native and the

08:51

web that's going to be great graphql is

08:53

fantastic when it comes to

08:54

interoperability that's because graphql

08:57

is a standard and so you can make

08:58

Library liaries that comport to that

09:00

standard and therefore you can have you

09:03

know IOS and Android libraries that are

09:05

fantastic for doing graphql as well as

09:07

rust and go it's great rust is pretty

09:11

good when it comes to compatibility

09:12

pretty much everything you're going to

09:13

find is going to be able to do a get or

09:15

a post against some server but you're

09:17

not going to get that really nice

09:19

standardized request like you would with

09:21

like a graphql one last area of

09:23

comparison that's specific to the web is

09:25

whether it can work without JavaScript

09:27

being enabled on the client the only on

09:29

that's going to be able to do that are

09:31

server actions server actions are often

09:33

done as a form post that's a basic

09:35

function of the web and therefore can be

09:37

accomplished without JavaScript and the

09:39

only thing that's going to do that of

09:40

course is server actions in this case so

09:42

if you need that it's going to be server

09:44

actions or nothing so my recommendations

09:46

as of late 2023 after nextjs 14 has come

09:49

out are that for very simple nextjs

09:52

applications that are webon using a

09:55

combination of queries on the server in

09:58

react server components and server

10:00

actions is going to be the easiest way

10:01

to go if you're looking to support

10:04

mobile if you're looking if you also

10:06

have mobile clients or desktop clients

10:08

then I personally would recommend

10:10

probably

10:11

trpc if it's an internal app or an

10:14

internet app I might also look at

10:15

graphql as a possibility nice thing

10:18

about graphql is it's really good on the

10:20

server and the client and it's really

10:22

easy to make customized

10:24

queries but on the other hand it's got

10:27

that denial of service issue so I

10:29

wouldn't want to put it out on the open

10:31

internet because it could potentially be

10:33

denial of serviced well I hope this

10:35

helps you figure out what you want to

10:36

use in your applications of course let

10:38

me know in the comments do you agree

10:40

with my assessments or not in the

10:41

meantime of course hit that like button

10:43

if you like the video hit the Subscribe

10:44

button if you really like the video and

10:46

I'll see you on the next Blue Collar

10:47

coder