تشغيل أي مهارة في Manus بنقرة واحدة

api-design

Use when designing, building, or reviewing REST/GraphQL APIs — covers endpoint design, error handling, versioning, authentication, and documentation

تشغيل في Manus

نظرة عامة

Use when designing, building, or reviewing REST/GraphQL APIs — covers endpoint design, error handling, versioning, authentication, and documentation

أمر التثبيت

npx skills add https://github.com/Youhai020616/pi-extensions --skill api-design

انسخ والصق هذا الأمر في Claude Code لتثبيت المهارة

المصدر

Youhai020616/pi-extensions

النجوم٠

التفرعات٠

آخر تحديث١٧ مارس ٢٠٢٦ في ٢٢:٣٢

SKILL.md

readonly

name	api-design
description	Use when designing, building, or reviewing REST/GraphQL APIs — covers endpoint design, error handling, versioning, authentication, and documentation

API Design

Overview

Good APIs are consistent, predictable, and hard to misuse.

Core principle: Design the API from the consumer's perspective first, then implement.

RESTful Design Rules

URL Structure

GET    /api/v1/users          # List
POST   /api/v1/users          # Create
GET    /api/v1/users/:id      # Read
PUT    /api/v1/users/:id      # Replace
PATCH  /api/v1/users/:id      # Partial update
DELETE /api/v1/users/:id      # Delete

Rules:

Nouns, not verbs (/users not /getUsers)
Plural resources (/users not /user)
Nested for relationships (/users/:id/posts)
Max 2 levels deep — beyond that, use query params or top-level resource
Lowercase, hyphen-separated (/user-profiles not /userProfiles)

HTTP Methods & Status Codes

Method	Success	Common Errors
GET	`200`	`404` not found
POST	`201` + Location header	`400` validation, `409` conflict
PUT/PATCH	`200`	`400` validation, `404` not found
DELETE	`204` (no body)	`404` not found

Error Response Format

Always use consistent error shape:

{
  "error": {
    "code": "VALIDATION_ERROR",
    "message": "Human-readable description",
    "details": [
      { "field": "email", "message": "Invalid email format" }
    ]
  }
}

Rules:

Machine-readable code (UPPER_SNAKE_CASE)
Human-readable message
details array for field-level errors
Never expose stack traces in production

Pagination

GET /api/v1/users?page=2&limit=20

{
  "data": [...],
  "pagination": {
    "page": 2,
    "limit": 20,
    "total": 156,
    "totalPages": 8
  }
}

For large datasets, prefer cursor-based:

GET /api/v1/events?cursor=abc123&limit=50

Filtering & Sorting

GET /api/v1/users?status=active&role=admin     # Filter
GET /api/v1/users?sort=-created_at,name        # Sort (- = desc)
GET /api/v1/users?fields=id,name,email         # Sparse fields

Versioning

Use URL versioning (/api/v1/) for simplicity:

Explicit and visible
Easy to route
Easy to deprecate

Deprecation flow:

Add Sunset header with date
Return Warning header
Log usage for monitoring
Remove after sunset date

Authentication

Method	When to Use
Bearer Token (JWT)	SPAs, mobile apps
API Key	Server-to-server, third-party integrations
OAuth 2.0	Third-party access delegation
Session Cookie	Traditional web apps

Security checklist:

HTTPS everywhere (no exceptions)
Rate limiting per endpoint
Input validation on all parameters
No sensitive data in URLs (use headers/body)
CORS configured correctly
Auth tokens expire and refresh

Documentation

Every API endpoint needs:

# Example: OpenAPI / Swagger format
paths:
  /users:
    get:
      summary: List users
      parameters:
        - name: status
          in: query
          schema:
            type: string
            enum: [active, inactive]
      responses:
        200:
          description: Success
        401:
          description: Unauthorized

Document:

All parameters with types and constraints
All response codes with examples
Authentication requirements
Rate limits
Breaking changes in changelog

Checklist Before Shipping

المزيد من هذا المستودع

نفس المستودع

docker-deploy

Youhai020616/pi-extensions

Use when containerizing applications, writing Dockerfiles, creating docker-compose configs, or setting up CI/CD deployment pipelines

2026-03-170

finishing-a-development-branch

Youhai020616/pi-extensions

Use when implementation is complete, all tests pass, and you need to decide how to integrate the work - guides completion of development work by presenting structured options for merge, PR, or cleanup

2026-03-170

plan-execution

Youhai020616/pi-extensions

Use when you have an implementation plan to execute, or when facing 2+ independent tasks/bugs — supports sequential execution, parallel dispatch (if available), and single-agent fallback

2026-03-170

security-checklist

Youhai020616/pi-extensions

Use when reviewing code for security issues, handling secrets, setting up authentication, auditing dependencies, or before deploying to production

2026-03-170

verification-before-completion

Youhai020616/pi-extensions

Use when about to claim work is complete, fixed, or passing, before committing or creating PRs - requires running verification commands and confirming output before making any success claims; evidence before assertions always

2026-03-170

brainstorming

Youhai020616/pi-extensions

You MUST use this before any creative work - creating features, building components, adding functionality, or modifying behavior. Explores user intent, requirements and design before implementation.

2026-03-150

المصدر

Youhai020616

Youhai020616/pi-extensions

فتح مستودع GitHub عرض مستودعات المنشئ

أمر التثبيت

تنزيل

تشغيل في Manus

مفيد لـSOC

مطوّرو البرمجياتمهن الحاسوب والرياضيات15-1252L4