What is an API?

00:00

Guys, whenever I used to think about online e-commerce websites, airline ticket booking and food ordering

00:05

How these things work?

00:07

then there I used to get very surprised upon hearing

00:10

that the e-commerce websites

00:11

you guys are a seller and you've been given a dashboard

00:16

and you people on an e-commerce store such as amazon

00:20

can sell anything there

00:22

and a lot of customers... what they can do is buy this stock.

00:28

and in this customer need to talk to amazon's store.

00:32

dashboard is something we say, is given to affiliated marketers

00:37

they need to talk to amazon.in's main system.

00:42

How is all this possible?

00:45

One very good example we have is of airline ticket booking.

00:48

There are a lot of third party websites.

00:50

One name that comes to my mind is Ixigo, there's via

00:54

and then paytm also book flights.

00:58

and with that nowadays amazon, flipkart are also joining this line.

01:03

So when this happens, that all these players

01:07

can talk to different airlines like Indigo or Vistara or GoAir.

01:15

It means that these individual companies could fetch no. of seats that are left, that are booked

01:21

or if any ticket is booked, they can update in their systems.

01:24

Because if a flight of GoAir is booked

01:28

So i need to tell GoAir that I'm Flipkart

01:31

I have booked one of your seats, so you don't let the same seat get booked from someone else.

01:35

So thats why different systems need to talk to and fro with each other.

01:39

What will happen in this, if I'm Amazon

01:42

and assume that you are Vistara. Would you say that

01:46

"Hey amazon, this is my password, do whatever you want in my server"?

01:49

This don't happen. Okay

01:51

Because me as vistara or as amazon cannot trust the other company directly.

01:57

If here I have Amazon, which I don't, but just assume that I have

02:03

then I won't trust Indigo, Indigo won't trust me.

02:07

And we'll try to communicate in such a way that the trust remain maintained and the work get done.

02:13

So this "trust remain maintained and work get done" is carried out by API

02:19

What is API?

02:20

Full form of API is Application Programming Interface.

02:24

Application Programing Interface.

02:27

And this API makes it possible for different systems to interact with each other. Okay

02:34

So, this third party website.. rather I'd write websites

02:38

those by talking to respective airlines, can do to and fro communication

02:43

that hey I booked this seat of yours and you gave me this much commision

02:49

I booked this much seats of yours and these type of conversations... Communication keeps on going. Okay

02:54

So, what is API if I talk about its definition.

02:57

So, API is such a mean that helps these systems in exposing some of their data.

03:05

So, I'll write API here that whenever Amazon will talk to Indigo,

03:10

it will have to talk to API, it can't talk to the system directly.

03:14

So, what will happen here is that Amazon will say to Indigo... It will say

03:18

that I want to book one of your seats.

03:20

I am Amazon. Okay.

03:22

it will do it something like... Amazon to tell Indigo that I have booked a seat of yours.

03:27

Suppose Indigo folks have given an end point of their website.

03:30

They have said that you indigo.com, maybe its goindigo.com.

03:34

goindigo.com/makebooking/ put your API key here.

03:41

Everybody has their secret key and

03:43

This key is to recognize are you the Amazon?

03:48

Its not like I go to Indigo and say book 4 seats and they'll book 4 seats.

03:53

It will not happen.

03:55

You need to hit this end point with proper API key.

03:58

and what API will do is it will, first of all, go to the back hand and

04:02

check if Amazon has send this request.

04:05

If yes, we will book the seats and send the ticket to Amazon.

04:09

but if someone is trying to hack into the system or someone is entering wrong API key

04:13

then there we'll... Our response will be... We get a request. API got a request.

04:19

Amazon told Indigo, here is my API key and

04:22

here is that person's name whose ticket needs to be booked.

04:25

Book one ticket from Delhi to Bangalore. Okay

04:29

So, Indigo's API will say, stop.

04:32

Understand API as something like Indigo is a bungalow, inside the bungalow the owner is sitting.

04:36

and API is a security guard.

04:38

API will say, STOP! Tell me what is your API key? Show me your API key.

04:44

It will match it with its API key. Did we give some API like this to the Amazon?

04:49

If yes, okay. Your ticket can be booked.

04:51

If not, then it will repulse it away.

04:55

It will say invalid credentials. Get Out. Okay

04:58

It will say something like this and if it keeps on trying again and again then it'll block it.

05:02

There are systems like that too.

05:04

So, basically API is an interface that is, it is a way with whose help you can talk to the actual system.

05:11

Now, the actual system, that is, Indigo's server

05:14

or if they use some distributed computing in the backend.

05:19

They cannot give access of all those servers, clusters to Amazon or everyone who are booking through their website.

05:26

Its not like Indigo will say "Here's my password, do booking after login." to amazon,flipkart, ixigo, via or paytm.

05:33

We are living in a world where people don't reveal there facebook password,

05:37

so these business's password is a much bigger deal.

05:39

So, what's done here is, everyone is given their own individual API key

05:44

and it gets known that who booked how many tickets by sending what requests.

05:47

everything will keep getting locked in their system.

05:50

So, the advantage of having API is that, the websites like Flipkart, Paytm, via, Ixigo, all these third party websites,

05:58

they don't have to give anything to Indigo

06:01

there was no need to give them their credentials.

06:02

Just imagine, if Indigo here share all of them its password

06:07

and someone would destroy their system

06:10

Ixigo would say its Flipkart's fault, Flipkart would say it's amazon's fault,

06:13

Amazon would say its Via's fault.

06:15

So, to avoid all of this, everyone is given their own individual key.

06:18

and they'll login from their API key, they will authenticate.

06:21

and after authenticating whatever they want to do, get tickets booked

06:24

or other services that they provide...

06:27

our airlines like how seats are there, how many window seats are left?

06:32

Which seats inside the aircraft are paid and which seats are free?

06:37

when did which flight got cancelled.

06:39

Different end points are made for all this different information.

06:43

and all the information that they should get, that is, these third party websites should get

06:48

only that is provided to them. They'll not tell them how much money are they making

06:53

or Indigo, Vistara, GoAir, they won't tell, what is their employees data

06:58

because what will Amazon, Flipkart, Ixigo, Via and Paytm do about their employees data.

07:03

They will get the information they want and for this they have to...

07:06

and for this information they have to send a request along with the API key.

07:10

So, they will send a request with their API key and they will get the proper response.

07:15

So, whenever there's a need for Amazon, Flipkart, Paytm to talk to Indigo, API acts as a middleman.

07:20

API said talk to me, don't talk to them. The owner is resting. Talk to me.

07:25

Tell me what you want. Authenticate everything. If its the right person, their work is done

07:31

otherwise show them the door. Okay

07:33

So this is how API works.

07:36

Now food ordering and online e-commerce websites have this type of APIs.

07:41

I would like to mention one thing. Its not necessary for an API to always have an API key.

07:46

Its not necessary. Some APIs are free.

07:48

Suppose I want to expose some data to the public and I have fast enough servers

07:53

then I can distribute the data even without an API key.

07:55

I'll say, hit a 'get request' on the website and take data. Okay

07:59

So, people expose API in this way too.

08:01

But in most of the cases, API data is obtained with the help of API key.

08:06

You have to authencicate first after that you get the data.

08:09

Now we'll look at a very local example. Okay.

08:12

What will be that local example?

08:14

Suppose you guys go to a restaurant to eat food and assume I'm the owner there.

08:20

Just assume it. What's the harm in assuming?

08:23

And here I feed you delicious Palak Paneer.

08:27

And you come here and I'm sitting here on the counter. This is me sitting here. Okay.

08:32

And suppose this is where the food is cooked. Here our chef's are sitting. Okay.

08:36

And this is our waiter. Okay.

08:38

So this waiter will ask you what food you want to eat?

08:41

This waiter will ask you .

08:43

You won't directly come into the kitchen and tell that you want to eat Palak Paneer.

08:47

or barge into my office and tell me that you want to eat Palak Paneer.

08:50

You won't do it yourself. Assume this as API.

08:52

Assume this waiter as API. This waiter is an API.

08:54

You approach him first and tell him to bring me one Palak Paneer, one roti, one Paneer Masala.

08:59

Whatever you want to eat... Chowmein,omlette.

09:02

Whatever you want to eat, you tell him and he notes all that.

09:04

He says,'good' X 4. Then he goes into the kitchen.

09:07

Sometimes he comes back and say, Sir Palak Paneer is not available, Sorry.

09:11

This is how API also returns its request.

09:13

You give a request to the API, sometimes API can deny you too.

09:17

It can say that you only had to hit me 40 times during a day,

09:22

and you are hitting me for the 41st time.

09:24

That's why you won't get the data. Sometimes, you get these types of responses from the API too.

09:28

So, who is the actual system? Actual system is the chef who is cooking the food.

09:34

and who is API? API is this waiter

09:36

who is taking in requests from you. Asking what do you want?

09:39

It wrote down the order. Now it goes inside and tell who...

09:44

she goes and tells the chef and if food is available

09:48

our chef sir will tell you that food is available, its cooking.

09:51

Sometimes you send a request to the waiter... you ask 'Food isn't prepared yet?'

09:54

Waiter tells you that its being cooked, wait a bit.

09:56

So, this is also a type of response.

09:57

You interact with an API and give it a request and its gives you back the response.

10:03

If I summarize all this, then I'll say

10:06

API is used so that the access to the actual system is not given to someone else.

10:11

We made an API and whoever wants some data of our system,

10:17

we'll expose those API to them, give them end points with proper API key

10:23

And with the help of this API key, we'll monitor who accessed how much data from our server.

10:28

API keys in most of the cases are documentations.

10:31

API keys are docs in which all information is written on how to use and rules.

10:38

How many times you can hit the API,

10:41

how many times you can send more request after extracting data.

10:45

What data can you extract from the API?

10:48

All this is written in documentation in most of the cases.

10:50

If I take one example of an API, it is news API that I taught you in Java Script course probably.

10:56

In that we made an app that extract all the news from a website with the help of a news API.

11:03

There was an API key too.

11:04

Now the Times of India folks... they don't want to give you the access to the whole server's database.

11:11

They cannot afford this. If you do something wrong there, they might get in a lot of trouble.

11:16

That's why they give you an API, oh okay, you want this, you take its API.

11:21

and after that if you want more data, send them another request.

11:26

So in this way for monitoring...

11:28

With this, APIs are used to safely handle the data.

11:33

It also lets you know who is using how much of data?

11:36

and with this your monitoring,that is,how much your actual system is being used and by whom.

11:42

All this is also done very well. I hope you guys understood API.

11:45

If you have understood, start using APIs.

11:50

I have taught you to use a lot of APIs

11:52

for example our news API. There's weather API.

11:55

So learn to access these types of APIs.

11:58

I have put on my web development, java script course. I would tell you that after this video

12:03

you go... if you are a web developer, you can checkout my web development course. Checkout my Javascript course.

12:09

We have seen a lot of APIs there. I hope you all liked this video.

12:13

Thank you so much for watching this video and I will see you next time.