1. Intro & Setup
Welcome to the Laravel API course! Get ready to dive into the exciting world of building APIs with Laravel, the powerful and flexible PHP framework.
15:57
2. Cleaning up Laravel
Ready to supercharge your Laravel project for an API-first approach? Let’s dive into optimizing and cleaning it up to make it lightning-fast and ultra-efficient!
16:19
3. Data Modeling
When building an API, mastering the art of structuring your data and defining dynamic relationships between various entities is absolutely essential in Laravel 11.
24:27
4. API Design
When you design an API, it’s absolutely crucial to understand that every API should have a meaningful purpose!
33:09
5. Authentication & Authorization
Say goodbye to the hassle of manually crafting every single detail, and say hello to a streamlined, efficient process that keeps your endpoints vividly documented and ready to go!
14:15
6. Rate Limiting
When it comes to managing API requests, rate limiting is a key player. You don’t want to open the floodgates and let users bombard your API with endless requests.
8:24
7. API Versioning
API versioning might sound like a minor detail at first, but trust me, it's one of those decisions that can make or break the future usability of your API.
22:22
8. Pagination
When you're handling requests that could return extensive lists of resources, it's essential to implement pagination to ensure your responses are manageable and user-friendly.
11:43
9. API Standards
API standards, while useful, aren’t the be-all and end-all. What often takes precedence is discoverability and consistency in your API design.
26:17
10. Handling Errors
Today, we'll explore how to leverage Laravel 11’s error handling system by implementing the API Problem Specification and enhancing it with custom packages to provide consistent, informative error responses.
26:49
11. Write Operations
Let’s explore the steps to manage resources in a Laravel 11 API, focusing on creating, validating, updating, and deleting resources. We’ll use a real-world approach to ensure clarity and usability.
29:30
12. Internationalization
In our previous video, we dove deep into handling write operations—everything from data validation and authorization to deciding between synchronous and asynchronous processing.
11:44
13. Caching Data
In our previous video, we dove deep into handling write operations—everything from data validation and authorization to deciding between synchronous and asynchronous processing.
18:08
14. Basic Security
When it comes to API security, think of it not as a threat but as an opportunity—a chance to build robust, multilayered defenses around your API.
9:53
15. Cache Requests
In Laravel 11, we can take advantage of built-in HTTP features to manage our cache more effectively, streamlining both the response time and the overall user experience.
8:40
16. Scheduling tasks & Sending requests
When working on a Laravel API, the task scheduling system plays a significant role in automating background jobs.
40:33
17. Notifications
Whether you're building a ping service or any application that requires user communication, you’ll likely need to notify users when certain actions occur, such as a service failure.
15:57
18. Monitoring and Logging
When you're developing APIs, it's important to have a clear picture of how your API is performing in real-time.
21:33
19. Testing
When you're developing APIs or any web-based product using Laravel 11, testing plays a crucial role in ensuring that your application behaves as expected.
18:01
20. API Platform
When it comes to building web applications, Laravel has long been a go-to framework for many developers. It's a robust framework, especially for full-stack applications.
17:16
21. Feature Flags
When it comes to building web applications, Laravel has long been a go-to framework for many developers. It's a robust framework, especially for full-stack applications.
11:05
22. Web Sockets
When you're working with APIs, there's a common misconception that WebSockets aren't relevant.
9:58
23. Search API
When you're building APIs, one key feature that often gets overlooked is search. That's what we’ll explore today using TypeSense(https://typesense.org/), a powerful open-source search engine.
15:30
24. Documenting your API
By default, API Platform will give you an OpenAPI specification (currently version 3.1). This standard format allows your API to be easily understood by machines and developers alike.
07:06
Rate Limiting
When it comes to managing API requests, rate limiting is a key player. You don’t want to open the floodgates and let users bombard your API with endless requests. Instead, you need a system in place to regulate traffic and protect your API from misuse. Laravel 11’s built-in support for rate limiting makes this process seamless and efficient.
Understanding Rate Limiting
Rate limiting is about controlling the frequency of requests to your API. Without limits, a user could bombard your server with hundreds of requests per second, overwhelming your resources and impacting other users. By setting reasonable rate limits, you can maintain a balance between providing access and protecting your API. Learn how rate and resource limiting can protect your API and optimize performance in this article.
Setting Up Rate Limiting in Laravel 11
Laravel 11 provides an even more streamlined way to set up rate limiting. Let's go through the steps to define and apply rate limits using a Rate Limiter Service Provider.
Step 1: Creating a Rate Limiter Service Provider
To start, create a new service provider for your rate limits:
php artisan make:provider RateLimitServiceProvider
In the newly created RateLimitServiceProvider, open up the boot method. This is where you will define your rate-limiting rules.
Step 2: Defining Basic Rate Limits
Inside the boot method, you can use Laravel 11's updated RateLimiter facade to define global and specific rate limits:
use Illuminate\Support\Facades\RateLimiter;
public function boot(): void
{
RateLimiter::for('global', fn () => Limit::perMinute(60));
RateLimiter::for('auth', fn () => Limit::perMinute(5));
}
Here, we have set a global rate limit that allows up to 60 requests per minute and a specific rate limit for authentication, restricting it to 5 requests per minute.
Step 3: Applying Rate Limits to Routes
To apply these rate limits to your routes, you can use the throttle middleware in your route definitions:
Route::middleware('throttle:global')->group(function () {
// Define your routes that should adhere to the global rate limit
});
Route::middleware('throttle:auth')->group(function () {
// Define routes with stricter rate limits
});
This approach helps keep your routes clean and your rate-limiting logic centralized.
Advanced Rate Limiting Techniques
Laravel 11 allows you to customize rate limiting further to suit your needs:
- Custom Responses: You can define custom responses when a user exceeds their rate limit.
- Dynamic Rate Limits: Adjust limits dynamically based on user roles or subscription levels. For example:
RateLimiter::for('custom', function ($request) {
if ($request->user()->isPremium()) {
return Limit::perMinute(100);
}
return Limit::perMinute(60);
});
- Multiple Rate Limits: Set up multiple rate limits for different scenarios, giving you fine-grained control over how your API is accessed.
New Features in Laravel 11
Laravel 11 introduces more advanced throttling features, which you can explore in the Laravel 11 Documentation. This includes the ability to define multiple rate limiters in a more streamlined way, making it easier to manage complex requirements.
Best Practices for Implementing Rate Limiting
- Understand Your Use Case: Tailor your rate limits based on how your API is used. For example, an endpoint handling sensitive operations like authentication should have stricter limits compared to a public data endpoint.
- Centralize Logic: Keep your rate-limiting rules in a single service provider to maintain clarity and manageability.
- Use Custom Responses: Provide informative feedback to users when they exceed limits, guiding them to avoid frustration.
- Consider User Types: Differentiate rate limits for various user roles or subscription tiers.
- Monitor and Adjust: Regularly monitor your API traffic and adjust rate limits as needed to balance performance and access.
Conclusion
Check out Laravel Rate Limiting to learn about all the customization options available and how they can benefit your specific use case.