The problem with non hypermedia-driven webservices

I don’t like SOAP. But I don’t blame people using it.

You have tons of reasons to use it:

But since today I had a meeting with the developers of a series of SOAP services we will integrate with, one of my first questions was “How do you manage the fact that the customer has the need to change the domain of the application and you need to update the WS and its consumers?”.

We don’t.
We tend to force the customer embrace the way the domain model has been already designed .
If it really needs to change it, we just evolve it, push it to the staging/testing area and then deploying it in production.
Since this is so expensice, we force it to happen twice or so in a year.
Which is perfectly understandable.

This is all you need to be aware of.

The choice is yours: you can decide to feed your consumers with WSDL or hypermedia controls, and your specific need is the only thing that matters in this decision.


Hi there! I recently wrote an ebook on web application security, currently sold on leanpub, the Amazon Kindle store and gumroad.

It contains 160+ pages of content dedicated to securing web applications and improving your security awareness when building web apps, with chapters ranging from explaining how to secure HTTP cookies with the right flags to understanding why it is important to consider joining a bug bounty program.

Feel free to skim through some of the free chapters published on this blog and, if the content seems interesting enough to you, grab a copy on leanpub, the Amazon Kindle store, gumroad or simply checkout right down below!

Buy the Web Application Security ebook for $9.99

In the mood for some more reading?

...or check the archives.