The explosive growth of social media, cloud computing and mobile devices is making Web APIs the primary interface for technology-driven products and services, and placing more and more attention on the emerging “API economy.” And with 50 percent of B2B collaboration predicted to take place through APIs by 2016, we are only seeing the tip of the iceberg.
Last week, the social posting site Buffer had both their database of access tokens and their OAuth client secrets compromised by attacks on Github and MongoDB. Buffer uses Github to store their client_secret in source code and MongoDB to store their access tokens.
A little more than one week has passed since Buffer’s infrastructure was successfully hacked, resulting in a flood of unauthorized posts to Twitter and Facebook. Shortly after ProgrammableWeb’s investigation of the hack revealed how more questions about the attack deserved to be answered, Buffer disclosed some of the answers on its blog. But more questions remained and Buffer’s CTO Sunil Sadasivan has come forward to answer them in this ProgrammableWeb exclusive Q&A.
There’s more than meets the eye to October’s successful attack on Buffer. Due to the significant legal and financial risks alone, the incident involving identity theft should serve as a wake-up call to end-users, Web developers, and API providers that not enough is being done to secure the Web.
The social sharing application Buffer gets hacked. But it’s the users of Twitter and Facebook that end up paying the price because of how Buffer automates posts to both networks. The incident could prove instructive to other services that offer public APIs.
For a couple of years at least, Buffer fans have been clamoring for the social media service to integrate with Google+. Why can’t we schedule posts to our Google+ Pages?, they asked. The answer was because Google had not released a Google+ write API yet.
Buffer creates scheduled posting via Google+’s new API. Facebook updates its Android SDK, catches up with its iOS SDK. Plus: SOA and API management markets may be merging, the two syllables barred from app titles on Instagram are “Insta” and “gram”, and 10 new APIs.
There is a category of vendors on the rise in the API space; Integration Platform as a Service (iPaaS). The term is fairly new and there is some debate as to the definition and features of vendors that would be classified in the iPaaS category. This post is an overview of iPaaS and features several vendors that offer iPaaS solutions.
Our API directory now includes 38 scheduling APIs. The newest is the T Dispatch Passengers API. The most popular, in terms of mashups, is the Buffer API. We list 1 Buffer mashup. Below you’ll find some more stats from the directory, including the entire list of scheduling APIs.