Skip to main content
HashnodeTech Unfolded

Command Palette

Search for a command to run...

API Design in System Design Interviews

Best practices for designing a clean, scalable, and robust API during your system design interview.

Updated
20 min read
F
Felipe Rodrigues
Part of seriesSystem Design

The ability to design a robust, scalable, and developer-friendly API is not merely a technical skill; it is a foundational pillar of modern system architecture. Yet, in the high-pressure environment of a system design interview, many senior engineers falter, often reducing API design to a mere enumeration of endpoints. This oversight misses the critical point: an API is the public contract of your system, defining how it interacts with the world, how it evolves, and how resilient it truly is.

As seen in Netflix's extensive journey from a monolithic API to a sophisticated API Gateway and federated GraphQL approach, or in Amazon's foundational "API-first" mandate that shaped its entire ecosystem, API design is a strategic architectural decision. It dictates not only system performance and scalability but also organizational agility, developer experience, and long-term maintainability. The challenge in an interview, and indeed in the real world, is to move beyond a superficial list of HTTP verbs and URIs to a holistic design that accounts for clarity, evolvability, resilience, and operational efficiency, all while navigating real-world constraints and trade-offs. This article will deconstruct what it truly means to design an authoritative API in a system design context, challenging common pitfalls and providing a principles-first blueprint.

Architectural Pattern Analysis: Deconstructing Common Pitfalls

Many system design interview candidates, and even experienced teams, fall into predictable traps when designing APIs. These common, often flawed, patterns lead to systems that are brittle, difficult to evolve, and costly to operate at scale. Understanding why these patterns fail is the first step toward building resilient architectures.

The Anemic API Anti-Pattern

An anemic API often exposes the underlying data model directly, treating API resources as mere reflections of database tables. Operations are typically limited to basic CRUD (Create, Read, Update, Delete) actions. For instance, an API might have /users, /products, and /orders endpoints that allow direct manipulation of corresponding database entities.

Why this approach fails at scale:

  • Lack of Domain Encapsulation: The API lacks business context. It forces clients to understand the internal data structure and compose complex business logic themselves, leading to "smart clients" and "dumb servers."
  • Tight Coupling: Changes to the internal data model directly impact the API contract, breaking existing clients. This makes refactoring or database schema evolution extremely difficult without forcing client updates.
  • Poor Evolvability: As business requirements change, adding new functionality often means patching existing CRUD endpoints or introducing new, inconsistent ones, leading to a fragmented and incoherent API surface.
  • Security Risks: Exposing raw data models can inadvertently reveal sensitive information or allow unauthorized manipulation if not meticulously secured at every field level.

Consider a system like Stripe. Its API is not merely a collection of CRUD operations on database tables like payments or customers. Instead, it exposes higher-level concepts like charges, subscriptions, and refunds, which encapsulate complex financial workflows and business rules. This domain-centric approach simplifies client integration and provides a stable, intuitive interface.

The Chatty API Anti-Pattern

A chatty API requires numerous round trips between the client and server to complete a single logical operation. This often stems from an over-granular resource design where related data is spread across many distinct endpoints.

Why this approach fails at scale:

  • High Latency: Each network request incurs overhead. For operations requiring multiple calls, the cumulative latency can significantly degrade user experience, especially for mobile clients or clients far from the server.
  • Increased Network Overhead: More requests mean more data transmitted, consuming more bandwidth and server resources for connection management.
  • Complex Client Logic: Clients must orchestrate multiple API calls, manage their state, and handle potential partial failures, significantly increasing client-side complexity.
  • N+1 Query Problems: On the server side, a chatty API often translates to inefficient data retrieval, leading to many small database queries instead of fewer, more optimized ones.

Imagine a product catalog API where fetching a product's details requires one call to /products/{id}, another to /products/{id}/reviews, and yet another to /products/{id}/related-products. While seemingly RESTful, this forces clients to make three separate requests for a common use case, resulting in slower page loads and higher resource consumption.

The Monolithic API Surface Anti-Pattern

This pattern describes a single, large API that attempts to expose all functionality of a complex system. While it might start simply, as the system grows, this single API becomes a bottleneck.

Why this approach fails at scale:

  • Development Bottlenecks: All teams contributing to the system must coordinate changes to the same API codebase, leading to merge conflicts, slow development cycles, and increased risk of introducing regressions.
  • Deployment Challenges: A single change, however small, might require redeploying the entire API, increasing downtime risk and reducing deployment frequency.
  • Ownership and Accountability Issues: With many teams touching the same API, clear ownership of specific API surfaces or functionalities becomes blurred, leading to inconsistent design and maintenance.
  • Difficulty Scaling Components Independently: If one part of the API experiences high load, the entire monolithic API might need to scale, even if other parts are idle, leading to inefficient resource utilization.

Comparative Analysis: Flawed vs. Principles-First API Design

Let us compare these flawed approaches with a more principles-first, domain-driven API design using a structured table based on critical architectural criteria.

Architectural CriterionAnemic/Chatty/Monolithic API DesignPrinciples-First API Design
ScalabilityPoor. Leads to N+1 queries, high latency, inefficient resource use, difficult to scale independently.Good. Designed with aggregation, batching, and clear boundaries. Supports independent scaling of services.
Fault ToleranceLow. Cascading failures more likely due to tight coupling. Client-side complexity for error recovery.High. Clear service boundaries, idempotency, consistent error handling, circuit breakers.
Operational CostHigh. Debugging complex client-server interactions is difficult. Inefficient resource usage.Moderate. Better observability, clear error reporting, efficient resource use.
Developer ExperiencePoor. Clients need to understand internal models, orchestrate many calls, handle complex errors.Excellent. Intuitive, well-documented, self-describing, minimal client-side orchestration.
Data ConsistencyChallenging to maintain. Distributed transactions often complex.Manageable with clear domain boundaries, often relying on eventual consistency patterns where appropriate.
EvolvabilityVery Low. Breaking changes are frequent, difficult to manage.High. Designed for backward compatibility, clear versioning, domain-centric changes.

Case Study: Netflix's API Gateway Evolution

Netflix provides a compelling real-world example of how API design evolves under extreme scale and diverse client needs. In its early days, Netflix operated with a relatively monolithic API, where a single backend service handled most client requests. This worked for a time, but as the company grew, the API became a bottleneck. The core challenges included:

  • Diverse Client Needs: Different devices (smart TVs, mobile phones, web browsers) had varying bandwidth, display capabilities, and data requirements. A "one size fits all" API led to over-fetching (sending too much data) or under-fetching (requiring multiple calls).
  • Backend Service Proliferation: As Netflix adopted microservices, the number of backend services grew exponentially. Clients could not directly call hundreds of services.
  • Cross-Cutting Concerns: Authentication, authorization, rate limiting, logging, and monitoring needed to be applied consistently across all API interactions.

To address these issues, Netflix pioneered the API Gateway pattern with its open-source project, Zuul. Zuul acted as a single entry point for all client requests, abstracting the complexity of the backend microservices.

This diagram illustrates the core API Gateway pattern, where a Client Application sends requests to an API Gateway. The Gateway centralizes cross-cutting concerns like authentication (delegating to an Authentication Service) and then dynamically routes requests to various backend microservices (User Profile Service, Catalog Service, Recommendation Service). These services, in turn, interact with their respective data stores. The Gateway then aggregates and forwards the responses back to the client. This pattern significantly simplifies client architecture and centralizes operational concerns.

The API Gateway allowed Netflix to:

  • Decouple Clients from Microservices: Clients only knew about the Gateway, not the dozens or hundreds of backend services.
  • Centralize Cross-Cutting Concerns: Authentication, SSL termination, rate limiting, and monitoring were handled once at the Gateway, ensuring consistency and reducing boilerplate in individual services.
  • Enable Service Evolution: Backend services could be refactored, scaled, or replaced without impacting client applications, as long as the Gateway's routing and aggregation logic adapted.
  • Optimize for Client Needs: The Gateway could be customized to aggregate data from multiple services into a single response, reducing chattiness for specific client UIs.

More recently, Netflix has explored federated GraphQL solutions to further empower client developers to fetch precisely the data they need, demonstrating a continuous evolution of API design to meet ever-changing demands. This journey underscores that API design is not a static artifact but a living contract that must adapt to system growth, technological shifts, and evolving consumer requirements.

The Blueprint for Implementation: A Principles-First Approach

Designing an API for a system design interview, or for a real-world product, requires a set of guiding principles that prioritize robustness, evolvability, and developer experience.

Guiding Principles for Robust API Design

  1. Domain-Centricity:

    • Principle: APIs should expose business capabilities and concepts, not merely data models. They should speak the language of the business domain.
    • Application: Instead of /users and /orders as separate entities, consider a Customer resource that might encapsulate user data, order history, and preferences, or a ShoppingCart resource that manages items, quantities, and checkout processes. This provides a richer, more cohesive interface.

  2. Resource Modeling (RESTful Principles):

    • Principle: Treat data and functionality as "resources" that can be identified by URIs. Use standard HTTP methods (GET, POST, PUT, PATCH, DELETE) to perform operations on these resources.
    • Application:
      • GET /products to retrieve a list of products.
      • POST /products to create a new product.
      • GET /products/{id} to retrieve a specific product.
      • PUT /products/{id} to fully update a product.
      • PATCH /products/{id} to partially update a product.
      • DELETE /products/{id} to remove a product.
    • Statelessness: Each request from a client to a server must contain all the information needed to understand the request. The server should not store any client context between requests. This improves scalability and fault tolerance.

  3. Evolvability and Versioning:

    • Principle: APIs must be designed to evolve without breaking existing clients.
    • Application:
      • URI Versioning: api.example.com/v1/products. Simple, highly visible, but pollutes the URI.
      • Header Versioning: Accept: application/vnd.example.v1+json. Cleaner URI, but less visible and might require custom client logic.
      • Media Type Versioning: Similar to header versioning, but uses specific media types.
      • No Versioning (Backward Compatibility): The ideal, though often challenging. Achieved by always adding new fields, making optional existing fields, and never removing fields or changing their semantics in a major way. This is often the most pragmatic approach for minor changes.
    • Considerations: A clear deprecation policy is essential. Announce deprecation, provide a transition period, and then retire old versions.

  4. Idempotency:

    • Principle: An operation is idempotent if it can be applied multiple times without changing the result beyond the initial application.
    • Application: Crucial for distributed systems where network issues or retries are common. POST requests are generally not idempotent, but they can be made so using an Idempotency-Key header.
    • Example: When creating an order, a client sends a unique Idempotency-Key with the POST request. If the client retries the request (e.g., due to a network timeout), the server can use this key to detect a duplicate request and return the original successful response without processing the order again.

  5. Error Handling and Consistency:

    • Principle: API errors should be predictable, informative, and consistent across the entire API surface.
    • Application: Use appropriate HTTP status codes (4xx for client errors, 5xx for server errors). Provide a standardized error response body, often following a format like RFC 7807 Problem Details for HTTP APIs.
    • Example: A 400 Bad Request should include a machine-readable error code, a human-readable message, and potentially specific field errors.

  6. Pagination, Filtering, Sorting:

    • Principle: For collections that can grow large, provide mechanisms for clients to retrieve subsets of data efficiently.
    • Application:
      • Pagination: Cursor-based (next_cursor, previous_cursor) or offset-based (offset, limit). Cursor-based is generally preferred for large, frequently changing datasets as it is more stable.
      • Filtering: Query parameters like ?status=active&category=electronics.
      • Sorting: Query parameters like ?sort_by=price&order=asc.

  7. Security:

    • Principle: APIs must be secure by design, protecting against unauthorized access, data breaches, and common web vulnerabilities.
    • Application:
      • Authentication: Verify the identity of the client (e.g., OAuth 2.0, API Keys, JWTs).
      • Authorization: Determine what an authenticated client is allowed to do (e.g., Role-Based Access Control RBAC, Attribute-Based Access Control ABAC).
      • Input Validation: Sanitize and validate all client inputs to prevent injection attacks and ensure data integrity.
      • Rate Limiting: Protect against abuse and denial-of-service attacks.

  8. Observability:

    • Principle: APIs should be designed to emit metrics, logs, and traces that enable monitoring, debugging, and performance analysis.
    • Application: Standardized request IDs for distributed tracing, clear logging of requests/responses, metrics for latency, error rates, and throughput.

High-Level Blueprint: The API Request Lifecycle

Understanding the journey of a request through the system is crucial for designing a resilient API. The API Gateway often plays a central role in this lifecycle.

This sequence diagram details a typical API request lifecycle for an order placement. The User interacts with a Web Application, which sends a request to the API Gateway with an authentication token and an idempotency key. The Gateway validates the token via an Authentication Service and checks the idempotency key against a Distributed Cache to prevent duplicate processing. It then forwards the request to the Order Service, which orchestrates interactions with Inventory, Payment, and Notification Services before persisting the order in its database. The final success response is returned through the Gateway, which also updates the idempotency cache. This flow highlights critical components like authentication, idempotency, microservice orchestration, and eventual consistency.

Code Snippets: Practical Implementation Details

1. Go Example: Idempotent POST Handler

package main

import (
    "encoding/json"
    "fmt"
    "net/http"
    "sync"
    "time"
)

// Order represents a simplified order structure
type Order struct {
    ID        string    `json:"id"`
    UserID    string    `json:"user_id"`
    Items     []string  `json:"items"`
    Status    string    `json:"status"`
    CreatedAt time.Time `json:"created_at"`
}

// OrderCreationRequest represents the client's request to create an order
type OrderCreationRequest struct {
    Items []string `json:"items"`
}

// In-memory store for idempotency keys and processed responses
var (
    idempotencyStore = make(map[string]Order)
    storeLock        sync.Mutex
)

// createOrderHandler handles POST requests to create an order with idempotency
func createOrderHandler(w http.ResponseWriter, r *http.Request) {
    if r.Method != http.MethodPost {
        http.Error(w, "Method not allowed", http.StatusMethodNotAllowed)
        return
    }

    idempotencyKey := r.Header.Get("Idempotency-Key")
    if idempotencyKey == "" {
        http.Error(w, "Idempotency-Key header is required", http.StatusBadRequest)
        return
    }

    storeLock.Lock()
    defer storeLock.Unlock()

    // Check if this request has already been processed
    if existingOrder, found := idempotencyStore[idempotencyKey]; found {
        w.Header().Set("X-Idempotency-Processed", "true") // Indicate idempotent response
        w.WriteHeader(http.StatusCreated)
        json.NewEncoder(w).Encode(existingOrder)
        fmt.Printf("Idempotent request for key %s returned existing order.\n", idempotencyKey)
        return
    }

    // Simulate order processing
    var req OrderCreationRequest
    if err := json.NewDecoder(r.Body).Decode(&req); err != nil {
        http.Error(w, "Invalid request body", http.StatusBadRequest)
        return
    }

    // In a real system, this would involve database inserts, calling other services, etc.
    newOrder := Order{
        ID:        fmt.Sprintf("order-%d", time.Now().UnixNano()),
        UserID:    "user-123", // Authenticated user ID
        Items:     req.Items,
        Status:    "created",
        CreatedAt: time.Now(),
    }
    time.Sleep(100 * time.Millisecond) // Simulate work

    // Store the result for future idempotent checks
    idempotencyStore[idempotencyKey] = newOrder

    w.WriteHeader(http.StatusCreated)
    json.NewEncoder(w).Encode(newOrder)
    fmt.Printf("New order created for key %s: %s\n", idempotencyKey, newOrder.ID)
}

func main() {
    http.HandleFunc("/orders", createOrderHandler)
    fmt.Println("Server listening on port 8080...")
    http.ListenAndServe(":8080", nil)
}

This Go snippet demonstrates a basic POST /orders handler that implements idempotency. It checks for an Idempotency-Key header. If a request with that key has already been processed and stored, it immediately returns the previously successful response, preventing duplicate order creation. If the key is new, it processes the order, stores the result, and then returns a 201 Created response. This simple pattern, though using an in-memory store here, can be extended with distributed caches like Redis for production use.

2. TypeScript Example: Standardized Error Response

// api-error.ts
interface ApiErrorDetail {
    field?: string; // Optional field name for validation errors
    code: string;   // Machine-readable error code (e.g., "INVALID_INPUT", "RESOURCE_NOT_FOUND")
    message: string; // Human-readable message
}

interface ApiErrorResponse {
    type: string;       // A URI that identifies the problem type (e.g., "https://api.example.com/probs/validation-error")
    title: string;      // A short, human-readable summary of the problem type
    status: number;     // The HTTP status code (e.g., 400, 404, 500)
    detail: string;     // A human-readable explanation specific to this occurrence of the problem
    instance?: string;  // An optional URI that identifies the specific occurrence of the problem (e.g., "/orders/123/items" if item not found)
    errors?: ApiErrorDetail[]; // Optional array for multiple specific errors (e.g., validation errors)
}

// Example usage in an Express.js-like handler
function handleCreateOrder(req: any, res: any) {
    // Simulate some validation logic
    if (!req.body.items || req.body.items.length === 0) {
        const errorResponse: ApiErrorResponse = {
            type: "https://api.example.com/probs/validation-error",
            title: "Validation Failed",
            status: 400,
            detail: "Order must contain at least one item.",
            errors: [{
                field: "items",
                code: "EMPTY_ARRAY",
                message: "Items array cannot be empty."
            }]
        };
        return res.status(400).json(errorResponse);
    }

    // Simulate a business logic error (e.g., product out of stock)
    if (req.body.items.includes("out-of-stock-product")) {
        const errorResponse: ApiErrorResponse = {
            type: "https://api.example.com/probs/business-logic-error",
            title: "Order Processing Failed",
            status: 422, // Unprocessable Entity
            detail: "One or more products are out of stock.",
            errors: [{
                code: "INSUFFICIENT_STOCK",
                message: "Product 'out-of-stock-product' is currently unavailable."
            }]
        };
        return res.status(422).json(errorResponse);
    }

    // Simulate success
    res.status(201).json({ orderId: "new-order-123", status: "created" });
}

// To run this example (pseudo-code, requires Express.js setup for real execution):
// const express = require('express');
// const app = express();
// app.use(express.json());
// app.post('/orders', handleCreateOrder);
// app.listen(3000, () => console.log('Server running on port 3000'));

// Example of a 404 Not Found error
function handleGetOrder(req: any, res: any) {
    const orderId = req.params.id;
    if (orderId !== "existing-order-123") {
        const errorResponse: ApiErrorResponse = {
            type: "https://api.example.com/probs/not-found",
            title: "Resource Not Found",
            status: 404,
            detail: `Order with ID '${orderId}' could not be found.`,
            instance: `/orders/${orderId}`
        };
        return res.status(404).json(errorResponse);
    }
    res.status(200).json({ orderId: orderId, status: "completed" });
}

This TypeScript code defines an ApiErrorResponse interface that adheres to the spirit of RFC 7807 Problem Details. It provides a consistent structure for error messages, including a machine-readable type, a human-readable title and detail, the HTTP status code, and an optional errors array for granular details (e.g., for validation failures). This consistency greatly improves the client developer experience and simplifies error handling logic.

Common Implementation Pitfalls

Even with a solid theoretical understanding, practical implementation can introduce subtle but costly errors:

  • Over-reliance on HTTP status codes for business logic errors: While 4xx codes are for client errors, using a 400 for every business rule violation (e.g., "insufficient funds") can be ambiguous. A 422 Unprocessable Entity often communicates business rule violations more clearly, especially when combined with a detailed error body.
  • Inconsistent error response formats: Different endpoints returning different error structures force clients to write complex, brittle parsing logic. Standardization is paramount.
  • Poor or absent versioning strategy: Launching an API without a plan for evolution guarantees future pain and breaking changes for clients.
  • Leaking internal implementation details: Exposing database primary keys, internal service names, or stack traces in API responses creates security vulnerabilities and makes system refactoring difficult.
  • Designing for a single client type: An API designed solely for a web frontend might be chatty for mobile or unsuitable for third-party integrations. Always consider diverse client needs.
  • Premature optimization with complex protocols: Adopting gRPC or GraphQL when a simple RESTful API suffices can introduce unnecessary complexity, operational overhead, and a steeper learning curve for developers. Start simple, scale complexity as needed.
  • Ignoring the "contract" aspect: Treating the API specification (OpenAPI/Swagger) as an afterthought rather than a living document and the source of truth leads to drift between documentation and implementation.

Strategic Implications: API Design as a Strategic Asset

API design is far more than a technical exercise; it is a strategic decision that impacts an organization's agility, market reach, and developer ecosystem. Approaching it with a principles-first mindset, grounded in real-world constraints, transforms it from a bottleneck into an accelerator.

Strategic Considerations for Your Team

  1. Treat APIs as Products: Just as a product manager champions a user-facing product, someone needs to own the API as a product. This means understanding its consumers (internal and external developers), their use cases, and their pain points. Companies like Stripe exemplify this, with their API considered their primary product.
  2. Invest in API Documentation and Developer Experience: A well-designed API is useless without excellent documentation, clear examples, and SDKs. Invest in tools and processes that make it easy for developers to discover, understand, and integrate with your APIs. This reduces the operational burden on your support teams and accelerates adoption.
  3. Prioritize Backward Compatibility: The cost of breaking changes is immense, requiring all clients to update. Design new features as additions, make existing fields optional before removing them, and use versioning as a last resort for truly breaking changes, not as a blanket solution.
  4. Automate API Testing: Comprehensive automated tests (unit, integration, contract, and end-to-end) are crucial to ensure API stability and prevent regressions, especially when multiple teams contribute.
  5. Foster Cross-Functional Collaboration: API design should not be solely owned by backend engineers. Involve frontend developers, product managers, security experts, and operations teams early in the design process to ensure the API meets diverse requirements and anticipates future needs.

API Evolution Strategy

Managing API evolution is a continuous process that balances the need for innovation with the stability required by consumers. A clear strategy is vital.

This flowchart illustrates a typical API evolution strategy. It begins with an "API Concept" leading to a "Stable" API Version 1.0. Minor, backward-compatible updates introduce Version 1.1. A "Major Refactor / Breaking Change" leads to a new "API Version 2.0." Crucially, when a new major version is introduced, the older version (V1.1) enters a "Deprecated" state. During this period, migration guides are provided, and eventually, after a predefined grace period, the older version is "Retired," meaning it is no longer supported or available. This structured approach manages client transitions and ensures long-term API health.

The future of API design continues to evolve, with increasing adoption of GraphQL for client-driven data fetching, event-driven architectures for asynchronous communication, and stricter adherence to domain boundaries through concepts like Bounded Contexts from Domain-Driven Design. Regardless of the specific technology or pattern, the underlying principles of clarity, evolvability, resilience, and operational efficiency remain constant. Mastering these principles will not only make you excel in system design interviews but also empower you to build truly impactful and sustainable systems in your career.

TL;DR

API design in system design interviews extends far beyond merely listing endpoints. It is a holistic architectural exercise demanding a principles-first approach. Common pitfalls include anemic APIs (exposing raw data models), chatty APIs (requiring excessive round trips), and monolithic API surfaces (leading to bottlenecks). A comparative analysis reveals that principles-first designs offer superior scalability, fault tolerance, developer experience, and evolvability. Netflix's evolution from a monolithic API to a sophisticated API Gateway and federated GraphQL exemplifies real-world adaptation to scale and diverse client needs.

A robust API design blueprint emphasizes domain-centricity, RESTful resource modeling, evolvability through thoughtful versioning, idempotency for reliable operations, consistent error handling, and robust security and observability. The API Gateway pattern centralizes these cross-cutting concerns. Practical implementation must avoid pitfalls like inconsistent error formats, leaking internal details, and premature optimization. Ultimately, treating APIs as products, investing in documentation, prioritizing backward compatibility, and fostering cross-functional collaboration are strategic imperatives for building sustainable, high-impact systems.

#api-design#graphql#interview-prep#rest

System Design

Part 49 of 50
Up next

System Design Interview: Database Selection Criteria

How to choose and defend your choice of database (SQL vs. NoSQL) in a system design interview.

More from this blog

Tech Unfolded

94 posts

System Design: API Design in System Design Interviews