Understanding RESTful Principles in Web APIs.

In modern web development, RESTful APIs have become the standard for building scalable, stateless, and interoperable web services. At the heart of REST architecture are a set of HTTP methods — namely GET, POST, PUT, and DELETE — which define how clients interact with server resources.

In this article, you'll learn what each of these methods means, how they work, and when to use them with real-world examples using ASP.NET Core Web API.

What is REST?

REST (Representational State Transfer) is an architectural style for designing networked applications. It uses standard HTTP methods to perform CRUD operations (Create, Read, Update, Delete) on resources, which are usually represented as URLs.

A RESTful API is:

• Stateless: Each request contains all the information needed.
• Resource-based: Every piece of data is treated as a resource.
• Uses standard HTTP verbs: GET, POST, PUT, DELETE, etc.

Core RESTful HTTP Methods

Let's break down the four primary HTTP methods used in RESTful APIs:

1. GET — Read Data

Purpose: Retrieve data from the server (read-only)

Safe and idempotent: Does not change server state

Status Code: 200 OK, 404 Not Found if the resource is missing

Example:

Request:

GET /api/products/1

Response:

{
  "id": 1,
  "name": "Laptop",
  "price": 1200
}

GET Request In ASP.NET Core:

[HttpGet("{id}")]
public IActionResult GetProduct(int id)
{
    var product = _repo.GetById(id);
    if (product == null) return NotFound();
    return Ok(product);
}

2. POST — Create New Resource

Purpose: Send data to the server to create a new resource

Not idempotent: Calling multiple times will create multiple resources

Status Code: 201 Created

Example:

Request:

POST /api/products
Content-Type: application/json

{
  "name": "Tablet",
  "price": 500
}

Response:

201 Created
Location: /api/products/3

POST Request in ASP.NET Core:

[HttpPost]
public IActionResult CreateProduct(Product newProduct)
{
    _repo.Add(newProduct);
    return CreatedAtAction(nameof(GetProduct), new { id = newProduct.Id }, newProduct);
}

3. PUT — Update Existing Resource

Purpose: Update an existing resource entirely

Idempotent: The Same request can be repeated with the same result

Status Code: 200 OK, 204 No Content if no body returned

Example:

Request:

PUT /api/products/1
Content-Type: application/json

{
  "id": 1,
  "name": "Updated Laptop",
  "price": 1300
}

Response:

204 No Content

PUT Request in ASP.NET Core.

[HttpPut("{id}")]
public IActionResult UpdateProduct(int id, Product updatedProduct)
{
    if (id != updatedProduct.Id) return BadRequest();
    var existing = _repo.GetById(id);
    if (existing == null) return NotFound();

    _repo.Update(updatedProduct);
    return NoContent();
}

4. DELETE — Remove Resource

Purpose: Delete a resource by its ID

Idempotent: Deleting a non-existent item returns the same result

Status Code: 204 No Content, 404 Not Found

Example:

Request:

DELETE /api/products/1

ss

Response:

204 No Content

DELETE Request in ASP.NET Core:

[HttpDelete("{id}")]
public IActionResult DeleteProduct(int id)
{
    var product = _repo.GetById(id);
    if (product == null) return NotFound();

    _repo.Delete(id);
    return NoContent();
}

What Does Idempotent Mean in REST APIs?

Idempotent refers to an operation that can be repeated multiple times without changing the result beyond the initial application.

In the context of REST APIs and HTTP methods, an idempotent method ensures that:

"No matter how many times a client sends the same request, the result on the server remains the same."

Simple Example:

✅ DELETE /api/products/1

• First request: Deletes product with ID 1 → returns 204 No Content.
• Second request: Product already deleted → returns 404 Not Found.

💡 But the server state hasn’t changed after the second call, so DELETE is idempotent.

Understanding GET, POST, PUT, and DELETE is essential when working with RESTful APIs in ASP.NET Core or any modern backend framework. Each HTTP method serves a specific purpose and follows well-defined rules, making your API clean, maintainable, and developer-friendly.

HTTP Status Code: 101 Switching Protocols.

When interacting with the web, we often come across common HTTP status codes like 200 OK, 404 Not Found, or 500 Internal Server Error. But there are many lesser-known yet important codes, such as HTTP Status Code 101 – Switching Protocols. In this article, we’ll explore what this status code means, when it's used, and why it's important in modern web applications.

What is the 101 HTTP Status Code?

The HTTP status code 101 Switching Protocols is part of the 1xx series, indicating an informational response from the server. It is utilized when the server agrees to upgrade its protocol and is ready to switch to a different protocol specified in the client's request. This status code is commonly associated with the WebSocket protocol, which allows for full-duplex communication channels over a single TCP connection.

Conditions for Receiving 101 Switching Protocols.

The HTTP status code 101 Switching Protocols is received under specific conditions when a client sends a request with the intention of switching to a different protocol. Here are the conditions for receiving the 101 Switching Protocols status:

• Upgrade Request Header: The client sends a request with an Upgrade header, indicating the desire to switch protocols. This header specifies the protocol the client wants to switch to.
• Server Agreement: The server supports the requested protocol and is willing to switch. The server includes the Upgrade header in its response to acknowledge the protocol switch.

How to Handle 101 Switching Protocols?

Client's Upgrade Request: The client sends an initial request to the server, specifying the desired protocol in the Upgrade header.

GET /example HTTP/1.1
Host: example.com
Upgrade: websocket
Connection: Upgrade

Server Acknowledgment (101 Switching Protocols): If the server supports the requested protocol, it responds with a 101 Switching Protocols status.

HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade

Switching Protocols: Both the client and server switch to the agreed-upon protocol. Subsequent communication follows the rules and specifications of the newly established protocol.

In this example, the client requests to upgrade the protocol to WebSocket by including the Upgrade: websocket and Connection: Upgrade headers. The server, supporting WebSocket, responds with a 101 Switching Protocols status, acknowledging the switch. Subsequently, both the client and server switch to the WebSocket protocol for further communication.

Use Cases:

• The most common use case for 101 Switching Protocols is during the establishment of WebSocket connections.
• It can be employed for other scenarios where the client and server agree to switch to a different protocol for enhanced communication.

When You Don't See It

You won’t typically see 101 Switching Protocols in a browser or developer console unless you’re specifically working with protocol upgrades like WebSockets.

It’s a behind-the-scenes part of setting up persistent, real-time connections.

Conclusion.

HTTP status code 101 Switching Protocols serves as an indicator that the server agrees to upgrade its protocol based on the client's request. This is particularly significant in scenarios like WebSocket communication, providing a seamless transition to a different protocol for enhanced and real-time interaction between clients and servers.

HTTP Status Code: 100 Continue

The HTTP status code 100 Continue is part of the 1xx series, which represents informational responses. Specifically, 100 Continue is used to indicate that the initial part of the client's request has been received by the server, and the server is prompting the client to proceed with sending the remainder of the request. This status code is typically utilized in scenarios involving large payloads or in situations where a server wants to confirm that the client can continue before processing the entire request.

Conditions for Receiving 100 Continue.

The HTTP status code 100 Continue is received under specific conditions when a client sends a request with an Expect: 100-continue header. Here are the conditions for receiving the 100 Continue status:

• Expect Header Present: The client includes the Expect: 100-continue header in its initial request. This header serves as a signal to the server that the client expects to receive a 100 Continue response before proceeding to send the full request payload.
• Server Readiness: The server is ready and able to receive the remaining part of the client's request. The server may use this status code to communicate to the client that it can proceed with sending the entire request payload.
• Client's Willingness to Wait: The client is willing to wait for the server's confirmation before sending the full payload. By including the Expect: 100-continue header, the client indicates its intention to wait for the server's acknowledgment before proceeding with the request.

Example: 

Client Request.

POST /upload HTTP/1.1
Host: example.com
Content-Length: 10000
Expect: 100-continue

<... additional headers and payload ...>

Server Response (100 Continue).

HTTP/1.1 100 Continue

In this example, the conditions are met as the client includes the Expect: 100-continue header, signaling its willingness to wait for acknowledgment, and the server responds with a 100 Continue status, indicating readiness to receive the remaining payload.

Use Cases of 100 Continue:

• Large File Uploads: When a client is uploading a large file, it may include the Expect: 100-continue header to ensure the server is ready before sending the entire file.
• Resource-Intensive Requests: In situations where the server needs to perform resource-intensive processing, it can use 100 Continue to signal the client to proceed only if the server is prepared to handle the request.

How To Handle 100 Continue Status Code?

Handling the HTTP status code 100 Continue involves specific actions on both the client and server sides. This status code is utilized in scenarios where the client includes the Expect: 100-continue header in the request, indicating its intention to wait for acknowledgment from the server before sending the full payload. Here's how to handle the 100 Continue status:

• Client's Responsibility: The client should include the Expect: 100-continue header in the initial request if it is willing to wait for the server's confirmation before sending the full payload.
• Wait for Confirmation: Upon receiving a 100 Continue response, the client can proceed to send the rest of the request.
• Handling Delays: If the client doesn't receive a 100 Continue response, it may choose to wait for a reasonable amount of time before deciding whether to proceed or take appropriate action.

Best Practice.

• Use the 100 Continue mechanism in scenarios where it can improve the efficiency of data transmission, especially for large payloads.
• Implement mechanisms to handle situations where the client does not receive a 100 Continue response within a reasonable timeframe.
• Clients may choose to wait for a specific duration and then decide whether to proceed without acknowledgment.
• Both clients and servers should gracefully handle situations where a 100 Continue response is expected but not received, allowing for sensible fallback mechanisms.

Conclusion.

HTTP status code 100 Continue facilitates more efficient communication between clients and servers, especially in scenarios involving substantial data transfers. Clients using the Expect: 100-continue header can ensure that the server is ready to receive the full request payload before committing to the transmission. This status code contributes to the overall optimization of data exchange in the HTTP protocol.

Also Read: HTTP Status Code: 101 Switching Protocols.

HTTP Status Code.

HTTP status codes are three-digit numeric codes that the server sends in response to a client's request made to the server. These codes provide information about the status of the requested resource or the success of the requested operation. When a client, such as a web browser, makes a request to a server, the server responds with an HTTP status code along with additional information in the HTTP headers and, optionally, a response body.

Each HTTP status code falls into one of the five classes, indicating the general category of the response:

1xx: Information.

HTTP 1xx status codes are informational responses indicating that the server has received the request and is continuing to process it. These codes are part of the initial phase of the Hypertext Transfer Protocol (HTTP) communication between a client and a server. 

Here are some common HTTP 1xx status codes:

Status Code	Meaning
100 Continue	The server has received the initial part of the request, and the client can proceed with sending the remainder of the request.
101 Switching Protocols	The server acknowledges the request and indicates that it is changing the protocol being used on the connection. This is often seen in the context of switching to WebSocket communication.
102 Processing	This status code indicates that the server has received and is processing the request, but no response is available yet.
103 Early Hints	The server sends a preliminary response before the final headers, with the intention of providing hints for the client to start preloading resources.

2xx: Success.

HTTP success status codes (2xx) indicate that the server has successfully received, understood, and accepted the client's request. These status codes inform the client that the requested operation or resource has been completed or fulfilled successfully. Success status codes typically fall within the range of 200 to 299. 

Here are some commonly used success status codes and their meanings:

Status Code	Meaning
200 OK	The request was successful, and the server has returned the requested data.
201 Created	The request has been successfully fulfilled, resulting in the creation of a new resource.
202 Accepted	The request has been accepted for processing, but the processing is not yet complete. This is often used for asynchronous operations.
204 No Content	The server successfully processed the request, but there is no additional content to send in the response. It is commonly used for actions that do not return a response body.
205 Reset Content	Similar to 204 No Content, but instructs the client to reset the document view.
206 Partial Content	The server is delivering only part of the resource in the response. This is often used in scenarios where the client requests a specific range of data.

3xx: Redirection.

HTTP redirection status codes (3xx) indicate that further action is needed to fulfill the client's request. These codes instruct the client to take additional steps, such as redirecting to a different URL or making a new request to a different resource. 

Here are common HTTP redirection status codes and their functions:

Status Code	Meaning
300 Multiple Choices	The requested resource corresponds to multiple possibilities, and the server cannot choose which one to follow. The client should select from the alternatives provided.
301 Moved Permanently	The requested resource has been permanently moved to a new location. The client should update its bookmarks or links.
302 Found	The requested resource temporarily resides under a different URL. The client should use the new URL for the current request, but future requests can still use the original URL.
303 See Other	Similar to 302 Found, but the client should always use the new URL for subsequent requests (typically for POST requests).
304 Not Modified	Indicates that the client's cached copy of the resource is still valid, and the server has not modified it. The client can use its cached version.
307 Temporary Redirect	Similar to 302 Found, indicating a temporary redirect. The client should use the new URL for the current request, but future requests can still use the original URL.
308 Permanent Redirect	Similar to 301 Moved Permanently, indicating a permanent redirect. The client should update its bookmarks or links.

4xx: Client Error Status Code.

HTTP client error status codes (4xx) indicate that the client seems to have made an error in the request, and the server cannot or will not process the request. These codes provide information about issues on the client side, such as malformed requests or insufficient permissions. 

Here are common HTTP client error status codes along with their functions:

Status Code	Meaning
400 Bad Request	The server cannot understand the request due to malformed syntax or other client-side errors.
401 Unauthorized	The request lacks proper authentication credentials, and the client needs to provide valid credentials for the server to process the request.
402 Payment Required	Reserved for future use. Originally intended for digital payment scenarios.
403 Forbidden	The server understood the request, but it refuses to authorize it. The client lacks proper permissions to access the resource.
404 Not Found	The server cannot find the requested resource. This is a common response for URLs that do not correspond to any available resource.
405 Method Not Allowed	The method specified in the request (e.g., GET, POST) is not allowed for the requested resource.
406 Not Acceptable	The server cannot produce a response matching the list of acceptable values defined in the request's headers.
407 Proxy Authentication Required	Similar to 401 Unauthorized, but indicates that the client must first authenticate itself with the proxy.
408 Request Timeout	The client did not produce a request within the server's specified timeout period.
409 Conflict	Indicates that the request could not be completed due to a conflict with the current state of the target resource.
410 Gone	The requested resource is no longer available at the server, and no forwarding address is known.
411 Length Required	The server requires the client to specify the length of the request content, but the client has not done so.
412 Precondition Failed	The server does not meet one of the preconditions specified in the request headers.
413 Payload Too Large	The request is larger than the server is willing or able to process.
414 URI Too Long	The URI (Uniform Resource Identifier) provided in the request is too long for the server to process.
415 Unsupported Media Type	The server does not support the media type specified in the request.
416 Range Not Satisfiable	The client has asked for a portion of the file (byte serving), but the server cannot provide that portion.
417 Expectation Failed	The server cannot meet the requirements specified in the Expect request header.
418 I'm a teapot	This code was defined in the April Fools' Day RFC 2324 as an April Fools' joke and is not expected to be implemented.
421 Misdirected Request	The request was directed at a server that is not able to produce a response. This can happen when the connection is reused on a different request.
422 Unprocessable Entity	The server understands the content type of the request entity, and the syntax of the request entity is correct, but it was unable to process the contained instructions.
423 Locked	The resource that is being accessed is locked.
424 Failed Dependency	The request failed because it depended on another request, and that request failed.
426 Upgrade Required	The server refuses to perform the request using the current protocol but might be willing to do so after the client upgrades to a different protocol.
428 Precondition Required	The origin server requires the request to be conditional.
429 Too Many Requests	The user has sent too many requests in a given amount of time.
431 Request Header Fields Too Large	The server is unwilling to process the request because either an individual header field, or all the header fields collectively, are too large.
451 Unavailable For Legal Reasons	The server is denying access to the resource as a consequence of a legal demand.

5xx: Server Error.

HTTP server error status codes (5xx) indicate that the server failed to fulfill a valid request from the client. These codes inform the client that the server encountered an error while processing the request, and the error is not due to any fault on the client's side. 

Here are common HTTP server error status codes along with their functions:

Status Code	Meaning
500 Internal Server Error	A generic error message indicating that an unexpected condition prevented the server from fulfilling the request.
501 Not Implemented	The server does not support the functionality required to fulfill the request. This is typically a server-side issue.
502 Bad Gateway	The server, while acting as a gateway or proxy, received an invalid response from an upstream server it accessed in attempting to fulfill the request.
503 Service Unavailable	The server is not ready to handle the request. Common causes include the server being temporarily overloaded or undergoing maintenance.
504 Gateway Timeout	The server, while acting as a gateway or proxy, did not receive a timely response from an upstream server or some other auxiliary server it needed to access to complete the request.
505 HTTP Version Not Supported	The server does not support the HTTP protocol version that was used in the request.
506 Variant Also Negotiates	The server has an internal configuration error that prevents it from fulfilling the request.
507 Insufficient Storage	The server is unable to store the representation needed to complete the request.
508 Loop Detected	The server detected an infinite loop while processing a request.
510 Not Extended	Further extensions to the request are required for the server to fulfill it.
511 Network Authentication Required	The client needs to authenticate to gain network access. This is similar to 401 Unauthorized but indicates that the client must authenticate itself to get permission.

Conclusion.

Understanding HTTP status codes is crucial for developers and network administrators to diagnose and troubleshoot issues during web communication. The status codes convey valuable information about the outcome of a request, enabling efficient handling of responses in web applications.

Anatomy of an HTTP Response.

In the previous article, we have covered how an HTTP request is sent by a client (web browser) to the server and once we send a request we expect a response from the server. In this article, we will understand how servers send us responses to our requests and how to understand the message sent by our server in the form of an HTTP response.

What is HTTP Response?

An HTTP response is a message sent by a server to a client as a result of an HTTP request. It contains information about the status of the request and may also include data requested by the client. The response typically includes a status code, a header providing additional information, and in some cases, a body containing the requested content. The status code indicates whether the request was successful, encountered an error, or requires further action. 

HTTP responses are a fundamental part of web communication, allowing servers to provide clients with the necessary information to display web pages, images, or other resources.

Components of HTTP Response.

There are several components present in different types of HTTP responses but the three most important components are Status Code, Header, and Body. Let's discuss each of them in detail.

1. Status Line.

The status line is the opening act of an HTTP response, conveying critical information about the success or failure of the request. It comprises the HTTP version, a three-digit status code, and a human-readable status message.

Status Code and Description:

Status Code	Meaning
Informational (1xx)	Informational status codes signify that the server received the request and is continuing to process it. These responses set the stage for the upcoming actions.
Success (2xx)	Success codes indicate that the client's request was successfully received, understood, and accepted. These responses bring a sense of accomplishment to the interaction.
Redirection (3xx)	Redirection codes inform the client that additional action is needed to fulfill the request. They guide clients to a new location or resource.
Client Error (4xx)	Client error codes point to issues on the client side, indicating that the request cannot be fulfilled. These responses offer insights into corrective actions.
Server Error (5xx)	Server error codes highlight issues on the server side, suggesting that the server failed to fulfill a valid request. These responses prompt investigation and resolution.

Example:

HTTP/1.1 200 OK

2. Response Headers.

Headers in an HTTP response carry additional information about the server's response, ranging from content type and length to server information and caching directives. Understanding these headers is essential for efficient communication.

Example:

Content-Type: text/html
Content-Length: 1024
Server: Apache/2.4.29 (Ubuntu)

• Content-Type: The Content-Type header informs the client about the type of data being returned. It can specify whether the content is HTML, JSON, XML, or another format, guiding the client in proper interpretation.
• Content-Length: The Content-Length header indicates the size of the response body in bytes. This crucial information aids clients in efficiently handling and parsing the received content.

3. Response Body.

The HTTP response body is a crucial component of an HTTP response sent by a server to a client after receiving a request. It contains the actual data or content requested by the client. The structure and content of the body depend on the nature of the request and the resource being accessed. This could be HTML content, JSON data, or binary files, depending on the nature of the request.

Example (JSON):

{
  "status": "success",
  "data": {
    "user": "John Doe",
    "role": "Admin"
  }
}

These are the three important components of HTTP response and apart from this we also have other components like Cookies and Rediction.

4. Cookies.

Cookies are small pieces of data sent from the server and stored on the client's side. They play a crucial role in maintaining stateful sessions and user authentication. The "Set-Cookie" header in an HTTP response instructs the client to store a particular cookie, while the "Cookie" header in subsequent requests sends the stored cookies back to the server.

5. Redirection.

HTTP responses often include redirection codes (3xx series) to instruct the client to navigate to a different location. This is commonly used for URL changes or when a resource has been moved permanently or temporarily.

Best Practices and Considerations.

• Content Negotiation: Implementing content negotiation allows clients and servers to agree on the most suitable representation of a resource. This enhances flexibility and improves user experiences.
• Compression: Utilizing compression mechanisms, such as gzip, reduces response size, leading to faster transmission and improved overall performance.
• Cache-Control: Properly configuring cache control headers ensures efficient caching of responses, reducing the need for repeated requests and optimizing resource usage.

Conclusion.

Mastering the intricacies of the HTTP response structure empowers developers to create robust and responsive web applications. By understanding the nuances of status codes, headers, and content, developers can navigate the web response landscape with confidence, delivering optimal user experiences.

In summary, the HTTP response structure encapsulates a wealth of information, and a thorough comprehension of its components is fundamental for any developer aiming to build high-performance and user-friendly web applications.

HTTP Methods.

HTTP methods are like the building blocks of the internet, defining how clients (like your web browser) and servers (the computers hosting websites) communicate with each other. They determine the type of action to be performed on a resource such as retrieving data, submitting information, updating content, or deleting resources.

In this guide, we'll explore the most common HTTP methods and their functions in simple terms, helping you understand how the web works behind the scenes. 

What is HTTP Methods?

HTTP methods, also known as HTTP verbs, are standardized actions that clients can use to communicate with servers over the World Wide Web. These methods define the type of operation the client wants to perform on a specified resource. Each HTTP method has a specific purpose and behavior, contributing to the foundational structure of the HTTP protocol.

Key Features of HTTP Methods.

Here are some key features associated with HTTP methods:

• Idempotence: Idempotence ensures that performing an operation multiple times has the same effect as performing it once.
• Safety: Safety ensures that performing an operation does not have any side effects on the server.
• Statelessness: HTTP is inherently stateless, meaning each request from a client to a server is independent, and the server does not retain any knowledge of the client's previous requests.
• Content Negotiation: Content negotiation involves the client and server agreeing on the most suitable representation of a resource based on factors such as media type, language, or encoding.
• Uniform Interface: The uniform interface constraint in RESTful design emphasizes a consistent and standardized way of interacting with resources.
• Caching: Caching involves storing copies of resources to improve performance and reduce the load on servers.
• Security: Security considerations involve protecting against potential threats, ensuring secure communication, and handling sensitive data appropriately.

List of HTTP Methods.

HTTP (Hypertext Transfer Protocol) methods form the backbone of client-server communication. Here is a list of common HTTP methods along with explanations of their purposes:

HTTP Method	Function
GET	The HTTP GET method is used to retrieve data from a specified resource on the server.
POST	The HTTP POST method is used to submit data to a specified resource, often causing a change in state or side effects on the server.
PUT	The HTTP PUT method is used to update or replace a resource on the server with the provided data payload.
DELETE	The HTTP DELETE method is used to request the removal of a specified resource on the server.
HEAD	The HTTP HEAD method is used to retrieve the headers of response for a specified resource, without the body content, allowing a client to check for for the resource's existence, modification date, or other metadata without downloading the full content.
OPTIONS	The HTTP OPTIONS method is used to request information about the communication options available for a target resource.
PATCH	The HTTP PATCH method allows clients to send a set of changes to be applied to a resource on the server, enabling partial updates without replacing the entire resource.
TRACE	The HTTP TRACE method is used for diagnostic purposes, allowing a client to retrieve the entire request as it travels through intermediaries, useful for throubleshooting or debugging network issues.

GET Method.

The HTTP GET method is used to retrieve data from a specified resource on the server. It is one of the most commonly used HTTP methods and is considered "safe" and "idempotent," meaning that it should not cause any side effects on the server and multiple identical requests should have the same result as a single request.

Use Cases of GET Method:

• Fetching a webpage.
• Retrieving an image or other static resources.
• Retrieving data from an API.

Example:

GET /example/resource HTTP/1.1

In this example, the GET method is used to retrieve user data and the target resource is /api/users/123. The Host header specifies the domain name.

POST Method.

The HTTP POST method is used to submit data to a specified resource on the server, often leading to the creation of a new resource or the processing of data. Unlike the GET method, which retrieves information, POST is designed for actions that may cause side effects on the server. It is a versatile method commonly used for form submissions, file uploads, and other scenarios where data needs to be sent to the server.

Use Cases of POST Method:

• Submitting a web form with user input.
• Uploading files to the server.
• Sending data for processing, such as creating a new resource.

Example:

POST /login HTTP/1.1
Host: www.example.com
Content-Type: application/x-www-form-urlencoded
Content-Length: 27

username=johndoe&password=secure123

In this example, the POST method is used to submit login credentials. The target resource is /login. The Content-Type header specifies that the data is in application/x-www-form-urlencoded format. The message body contains the form data (username=johndoe&password=secure123).

PUT Method.

The HTTP PUT method is used to update a resource on the server or create it if it does not exist. It is designed for actions that modify or replace the entire resource, and it is considered idempotent, meaning that making the same PUT request multiple times should have the same effect as a single request. PUT is commonly used for updating or creating resources on the server, such as updating a user's profile information or uploading a new version of a file.

Use Cases of PUT Method:

• Updating user profile information.
• Uploading a new version of a file to a server.

Example:

PUT /user/profile HTTP/1.1
Host: www.example.com
Content-Type: application/json
Content-Length: 43

{
  "username": "johndoe",
  "email": "john.doe@example.com"
}

In this example, the PUT method is used to update the user's profile. The target resource is /user/profile. The Content-Type header specifies that the data is in JSON format. The message body contains the updated profile information.

DELETE Method.

The HTTP DELETE method is used to request the removal of a resource on the server. It is designed for actions that delete a specified resource, and it is considered idempotent, meaning that making the same DELETE request multiple times should have the same effect as a single request. DELETE is commonly used for scenarios where a client wants to delete or remove a specific resource, such as deleting a user account or removing a file from a server.

Use Cases of DELETE Method:

• Deleting a user account.
• Removing a file or document from a server.

Example:

DELETE /user/account HTTP/1.1
Host: www.example.com

In this example, the DELETE method is used to request the removal of the user's account. The target resource is /user/account. The request headers may include additional information or authentication credentials.

HEAD Method.

The HTTP HEAD method is used to retrieve only the headers of a resource from a server, without fetching the actual data. It is similar to the GET method in that it requests information about a resource, but it does not include the resource's body in the response. HEAD is often used when a client is interested in metadata, such as the last modification timestamp or content type, without needing to download the entire content.

Use Cases of HEAD Method:

• Checking the last modification timestamp of a resource.
• Verifying resource existence without downloading the entire content.

Example:

HEAD /images/logo.png HTTP/1.1
Host: www.example.com

In this example, the HEAD method is used to retrieve only the headers of the image resource. The target resource is /images/logo.png.

OPTIONS Method.

The HTTP OPTIONS method is used to retrieve information about the communication options available for a resource on the server. It allows a client to inquire about the allowed methods, headers, or other capabilities supported by the server for a particular resource. OPTIONS requests are useful for discovering the functionality and permissions associated with a resource before making actual requests, providing a way for clients to understand the server's capabilities.

Use Cases of OPTIONS Method:

• Checking which HTTP methods are supported by a server for a specific resource.
• Discovering allowed headers or authentication methods.

Example:

OPTIONS /api/data HTTP/1.1
Host: www.example.com

In this example, the OPTIONS method is used to retrieve information about the communication options for the resource /api/data.

PATCH Method.

The HTTP PATCH method is used to apply partial modifications to a resource on the server. It allows clients to send a set of changes to be applied to the resource, rather than sending the entire updated representation. PATCH is particularly useful when only specific fields or attributes of a resource need to be modified, providing a more efficient way to update resources compared to PUT.

Use Cases of PATCH Method:

• Updating specific fields in an existing resource.
• Making incremental changes to a document or object.

Example:

PATCH /user/profile HTTP/1.1
Host: www.example.com
Content-Type: application/json
Content-Length: 20

{
  "email": "newemail@example.com"
}

In this example, the PATCH method is used to apply partial modifications to the user's profile. The target resource is /user/profile. The Content-Type header specifies that the data is in JSON format. The message body contains the changes to be applied (updating the email field).

TRACE Method.

The HTTP TRACE method is used for diagnostic purposes and echoes the received request back to the client. It allows clients to see how a request changes as it travels through various intermediaries, such as proxies or gateways. TRACE is not typically used in regular web development but can be helpful in debugging and testing the communication path between a client and a server.

Use Cases of the TRACE Method:

• Debugging and testing the communication path.
• Tracing the transformation of a request through proxies.

Example:

TRACE /api/data HTTP/1.1
Host: www.example.com

In this example, the TRACE method is used to trace the communication path for the resource /api/data. The target resource is /api/data.

So these are the few important HTTP Methods that you should know when you start your web development as it helps to understand that which method you should use in different conditions.

Anatomy of an HTTP Request.

Understanding the structure of an HTTP request is fundamental for developers navigating the intricacies of web development. In this comprehensive guide, we'll explore the components and structure of an HTTP request, accompanied by real-world examples.

What is an HTTP Request?

An HTTP (Hypertext Transfer Protocol) request is a message a client sends to a server, indicating the client's intent to perform a specific action. This action could be requesting a resource, submitting data, or interacting with a web server somehow. HTTP requests are a fundamental part of the client-server communication model on the World Wide Web.

Components of an HTTP Request.

An HTTP request comprises several key components but below three are the most important, each conveying specific information about the client's intent and the nature of the requested operation.

1. Request Line: The Request Line in an HTTP request is the initial line that provides essential information about the client's intended action. It consists of three main components: the HTTP method, the target resource (URI or URL), and the HTTP version.

GET /example/page.html HTTP/1.1

• HTTP Method: Specifies the type of request or action the client wants to perform. Common methods include GET, POST, PUT, DELETE, etc. 
• Target Resource: Identifies the specific resource on the server that the client is requesting. It can be a URI (Uniform Resource Identifier) or a URL (Uniform Resource Locator).
• HTTP Version: Indicates the version of the HTTP protocol being used in the request. Examples include HTTP/1.0, HTTP/1.1, or HTTP/2.

2. Headers: HTTP request headers provide additional information about the client's request and the desired interaction with the server. These headers convey metadata that helps the server understand how to handle the request, what kind of data the client can accept, and various other details. 

Here are some common HTTP request headers:

• Host: Specifies the domain name or IP address of the server.
• User-Agent: Identifies the software and version used by the client (user agent) to make the request.
• Accept: Informs the server about the types of media the client can process, typically used for content negotiation.
• Content-Type: Specifies the format of the data in the request's message body. Common values include application/json or application/x-www-form-urlencoded.
• Content-Length: Indicates the length of the request's message body in bytes.
• Authorization: Contains credentials for authenticating the client with the server.
• Referer: Indicates the URL of the resource from which the request was initiated.
• Cookie: Contains any cookies associated with the domain.

Example:

Host: www.example.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Content-Type: application/x-www-form-urlencoded
Content-Length: 27
Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ==
Referer: https://www.example.com/previous-page
Cookie: session_id=abc123; user_prefs=dark_mode

3. Message Body (Optional): The message body in an HTTP request is an optional component that carries data from the client to the server. It is typically used with certain HTTP methods, such as POST or PUT, where the client needs to send additional information or payload to the server. The structure and content of the message body depend on the Content-Type header specified in the request.

Example:

username=johndoe&password=123

In this example, the message body contains the form data (username=johndoe&password=123).

A Complete Example of HTTP Request.

Let's put it all together in a complete example of an HTTP request:

Example:

POST /submit-form HTTP/1.1
Host: www.example.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Content-Type: application/x-www-form-urlencoded
Content-Length: 27

username=johndoe&password=123

In this example, the client is making a POST request to submit a form to www.example.com. The request includes the request line, headers, and a message body containing form data.

Understanding the structure of an HTTP request is essential for developers, enabling them to create, analyze, and troubleshoot interactions between clients and servers on the web. Whether building web applications or working with APIs, a solid grasp of HTTP requests is a cornerstone of effective web development.

HTTP Messages.

HTTP (Hypertext Transfer Protocol) messages form the backbone of communication on the World Wide Web, facilitating the exchange of information between clients and servers. In this comprehensive guide, we will delve into the intricacies of HTTP messages, exploring their types, structure, and the fundamental role they play in enabling seamless web interactions.

HTTP Messages.

HTTP messages are how clients and servers communicate. They encapsulate requests and responses, conveying information necessary for the exchange of data. HTTP messages adhere to a well-defined structure, consisting of headers and, in the case of message bodies, the payload.

Types of HTTP Messages.

HTTP (Hypertext Transfer Protocol) messages come in two primary types: Request messages and Response messages. Let's understand each each type:

1. HTTP Request Messages.

HTTP request messages are sent by clients to request a specific action or resource from a server. These messages provide information about the desired operation, including the HTTP method, the target resource, headers, and, in some cases, a message body.

Component of HTTP Request Message.

Request Line: The Request Line in HTTP is the initial line of an HTTP request message that provides essential information about the client's intended action. It consists of three components:

• HTTP Method: Specifies the type of request or action the client wants to perform (e.g., GET, POST, PUT).
• Target Resource (URI or URL): Specifies the resource on the server that the client is requesting.
• HTTP Version: Indicates the version of the HTTP protocol being used in the request.

Example:

GET /index.html HTTP/1.1

Headers: Provide additional information about the request, such as the Host, User-Agent, and Accept headers.

Example:

Host: www.example.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8

• Host: Specifies the domain name or IP address of the server.
• User-Agent: Identifies the client software and its version.
• Accept: Informs the server about the types of media that the client can process.

Message Body: Optional and used for sending data with certain HTTP methods like POST or PUT.

Example:

POST /submit-form HTTP/1.1
Host: www.example.com
Content-Type: application/x-www-form-urlencoded
Content-Length: 27

username=johndoe&password=123

2. HTTP Response Messages.

HTTP response messages are sent by servers to provide the outcome of the client's request. These messages include information about the server's response, such as the HTTP version, status code, headers, and an optional message body.

Component of HTTP Response Message.

Status Line: Specifies the HTTP version, a three-digit status code, and a reason phrase.

Note: A status code is a three-digit numeric code returned by a server to indicate the outcome of a client's request. Status codes are an integral part of HTTP responses, providing information about the success, failure, or other circumstances surrounding the request.

Example:

HTTP/1.1 200 OK

Headers: Provide additional information about the response, such as Content-Type, Content-Length, and Server headers.

Example:

Content-Type: text/html
Content-Length: 1234
Server: Apache/2.4.29 (Ubuntu)

Message Body: Contains the actual data being sent in response to the client's request.

Example:

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 5678

<!DOCTYPE html>
<html>
  <head>
    <title>Example Page</title>
  </head>
  <body>
    <h1>Hello, World!</h1>
  </body>
</html>

These two types of HTTP messages, request, and response, form the core of communication in the client-server model of the World Wide Web, enabling the exchange of information and resources across the Internet.

The request-response cycle in HTTP is used for communication where a client sends a request to a server, and the server responds by providing the requested information or performing the specified action. 

Common HTTP Methods.

HTTP messages use various methods (or verbs) to indicate the desired action. Some common methods include:

• GET: Retrieve data from the server. It is a safe and idempotent method, meaning multiple identical requests should have the same effect as a single request.
• POST: Submit data to be processed to a specified resource. It often results in the creation of a new resource on the server.
• PUT: Update a resource on the server or create it if it does not exist. It replaces the entire resource with the submitted data.
• DELETE: Request the removal of a resource on the server.
• HEAD: Retrieve only the headers of a resource without the actual data, useful for checking the resource's metadata.
• OPTIONS: Retrieve information about the communication options available for a resource.
• PATCH: Apply partial modifications to a resource. It is often used to update specific fields in an existing resource.
• TRACE: Echoes the received request, allowing the client to see what changes or additions occurred during its journey to the server.

These methods provide a standardized way for clients to interact with resources on the web, enabling various operations like retrieving, creating, updating, or deleting data.

URL Encoding in HTTP.

URL encoding is a crucial aspect of web communication, ensuring the proper and secure transmission of data over the internet. In the domain of HTTP, URL encoding plays a significant role in handling special characters and spaces within URLs. In this article, we'll explore what URL encoding is, and its importance, and provide a comprehensive list of commonly used URL-encoded characters.

What is URL Encoding?

URL encoding, also known as percent-encoding, is a method used to represent reserved and unsafe characters in URLs by replacing them with a "%" sign followed by two hexadecimal digits. This ensures that the URL remains valid and can be transmitted safely across the web.

Reserved characters, such as ampersand (&), question mark (?), and slash (/), have special meanings in URLs, so encoding them prevents ambiguity. Additionally, non-alphanumeric characters, spaces, and symbols are encoded to prevent issues related to URL parsing and data integrity.

Example of URL Encoding.

Let's consider a simple example to illustrate URL encoding. Suppose you have a URL that includes special characters and spaces. URL encoding would replace these characters with their corresponding percent-encoded values.

Original URL:

https://www.example.com/search?query=web development&category=tech

In this URL, there are spaces in the query parameter value ("web development"). To encode this URL, we replace the spaces with %20.

Encoded URL:

https://www.example.com/search?query=web%20development&category=tech

Importance of URL Encoding in HTTP.

• Character Safety: URL encoding prevents misinterpretation of reserved characters, ensuring that they are treated as literal characters rather than having special meanings in the URL structure.

• Data Integrity: When transmitting data via URLs, encoding is essential to preserve the integrity of the information. Special characters, spaces, and non-alphanumeric symbols can be safely included without disrupting the structure of the URL.

• Compatibility: URL encoding enhances compatibility across different systems and browsers. It standardizes the representation of characters, making URLs universally interpretable.

List of Commonly Used URL-Encoded Characters.

Here is a list of commonly used URL-encoded characters:

Character	URL Encoded Form
Space	%20
!	%21
"	%22
#	%23
$	%24
%	%25
&	%26
'	%27
(	%28
)	%29
*	%2A
+	%2B
,	%2C
/	%2F
:	%3A
;	%3B
<	%3C
=	%3D
>	%3E
?	%3F
@	%40
[	%5B
\	%5C
]	%5D
^	%5E
_	%5F
`	%60
{	%7B
|	%7C
}	%7D
~	%7E

URL encoding is an essential practice in web development and HTTP communication. By ensuring that URLs are properly encoded, developers can prevent issues related to character misinterpretation, data integrity, and compatibility. 

Next Lesson: HTTP Messages.

Difference Between URI and URL.

The terms URI (Uniform Resource Identifier) and URL (Uniform Resource Locator) are often used interchangeably, but they serve distinct purposes in web communication. In this article, we'll understand the key differences between URIs and URLs. 

What is a URI (Uniform Resource Identifier)?

A URI, or Uniform Resource Identifier, is a string of characters that uniquely identifies a particular resource. It serves as a generic term encompassing two subtypes: URLs (Uniform Resource Locators) and URNs (Uniform Resource Names). URIs are used to identify and interact with resources on the internet, providing a standardized way to reference entities, whether for retrieval (URL) or identification (URN).

In essence, a URI is a compact sequence of characters that serves as a digital identifier for resources such as web pages, documents, images, or any other entity accessible on the World Wide Web. URIs are fundamental to the structure of the internet and are employed in various contexts, including web browsers, APIs, and hypermedia systems.

Example:

• URN Example: urn:isbn:0451450523
• URL Example: https://www.example.com/page

In this example, the URI "urn:isbn:0451450523" is a URN identifying a book by its International Standard Book Number (ISBN).

What is a URL (Uniform Resource Locator)?

A URL, or Uniform Resource Locator, is a specific type of Uniform Resource Identifier (URI) that provides the means to locate and retrieve a resource on the internet. URLs specify the protocol used to access the resource, the domain or IP address where the resource is hosted (the host), and the path to the resource on the server. Additionally, URLs may include optional components such as port numbers, query parameters, and fragments.

In simpler terms, a URL is a web address that enables browsers and applications to access and display specific content on the World Wide Web. URLs are widely used in everyday internet navigation and are integral to the structure of the web. 

Examples of URLs: 

• https://www.example.com/page
• ftp://ftp.example.com/files/document.pdf

Difference Between URI and URL.

URI	URL
URI Encompasses both URLs and URNs, serving as a generic term for identifying resources on the internet.	URL is a specific type of URI that includes the information needed to locate and access a resource.
URI is used for both resource identification and retrieval.	URL is specifically used for specifying the location and means of accessing a resource.
URI does not give us any details about protocol specifications.	URL gives us the details about the types of protocol to be used.
Example URI: urn:isbn:0451450523 (URN identifying a book by ISBN)	Example URL: https://www.example.com/page (URL pointing to a webpage)

Understanding the difference between URI and URL is crucial for web developers, architects, and anyone involved in web technologies. While URIs provide a broad framework for identifying resources, URLs offer the means to access those resources by providing the necessary details for retrieval.

In everyday terms, when we type a web address into a browser, we are interacting with a URL that includes the protocol, domain, and path. On the other hand, a URI might be used in contexts where the focus is on uniquely identifying a resource without necessarily accessing it, as in the case of a URN.