api-design

star 2

API design principles, hierarchical endpoint organization, documentation, and TypedResults patterns for RSSVibe. Use this skill when creating new API endpoints or refactoring existing ones.

jakoss By jakoss schedule Updated 1/17/2026
play_arrow Run Skill in Manus View GitHub

name: api-design description: API design principles, hierarchical endpoint organization, documentation, and TypedResults patterns for RSSVibe. Use this skill when creating new API endpoints or refactoring existing ones.

ASP.NET Core Web API Design

API Design Principles

  • MUST use minimal APIs for endpoints
  • MUST organize minimal API endpoints with one endpoint per file and folder hierarchy mirroring the route structure
  • Endpoints SHOULD be thin wrappers that delegate to services in RSSVibe.Services
  • MUST use TypedResults for all endpoint return types (NOT Results or IResult)
  • MUST implement proper exception handling with ExceptionFilter or middleware for consistent error responses
  • MUST validate inbound requests with FluentValidation and rely on SharpGrip.FluentValidation.AutoValidation.Endpoints to run validators automatically before handlers execute
  • SHOULD apply response caching with cache profiles and ETags for high-traffic endpoints

Hierarchical Endpoint Organization

All API endpoints MUST be organized in a hierarchical group structure for maintainability and shared configuration.

Structure Overview:

/api/v1 (ApiGroup) ← Root API version group
  └── /auth (AuthGroup) ← Feature group
        ├── /register (RegisterEndpoint)
        ├── /login (LoginEndpoint)
        └── /refresh-token (RefreshTokenEndpoint)
  └── /feeds (FeedsGroup) ← Feature group
        ├── /list (ListFeedsEndpoint)
        ├── /{id} (GetFeedEndpoint)
        └── ... more endpoints
  └── /users (UsersGroup) ← Feature group
        └── ... endpoints

Implementation Pattern:

1. Root API Group (Program.cs):

// In Program.cs, register root API group
app.MapApiV1();

// ApiGroup.cs
namespace RSSVibe.ApiService.Endpoints;

public static class ApiGroup
{
    public static IEndpointRouteBuilder MapApiV1(this IEndpointRouteBuilder endpoints)
    {
        var group = endpoints.MapGroup("/api/v1");

        // Register all feature groups
        group.MapAuthGroup();
        group.MapFeedsGroup();
        group.MapUsersGroup();

        return endpoints;
    }
}

2. Feature Group (e.g., AuthGroup.cs):

// In Endpoints/Auth/AuthGroup.cs
namespace RSSVibe.ApiService.Endpoints.Auth;

public static class AuthGroup
{
    public static IEndpointRouteBuilder MapAuthGroup(this IEndpointRouteBuilder endpoints)
    {
        var group = endpoints.MapGroup("/auth")
            .WithTags("Auth");

        // Register all endpoints in this group
        group.MapRegisterEndpoint();
        group.MapLoginEndpoint();
        group.MapRefreshTokenEndpoint();

        return endpoints;
    }
}

3. Individual Endpoint (e.g., RegisterEndpoint.cs):

// In Endpoints/Auth/RegisterEndpoint.cs
namespace RSSVibe.ApiService.Endpoints.Auth;

public static class RegisterEndpoint
{
    /// Parameter type is RouteGroupBuilder for composability
    public static RouteGroupBuilder MapRegisterEndpoint(this RouteGroupBuilder group)
    {
        group.MapPost("/register", HandleAsync)
            .WithName("Register")
            .WithSummary("Register a new user account")
            .WithDescription("""
                Creates a new user account using email and password.
                Disabled in production when root user provisioning is enabled.
                """);

        return group;
    }

    private static async Task<Results<...>> HandleAsync(...)
    {
        // Handler implementation
    }
}

Benefits of Hierarchical Structure:

  • Tree-like organization: Mirrors URL structure in code
  • Shared configuration: Apply validation, authentication, CORS at group level
  • Scalability: Easy to add new feature groups and endpoints
  • Maintainability: Clear ownership of endpoint groups by feature area
  • OpenAPI documentation: Groups automatically organize endpoints in Swagger/OpenAPI

Rules:

  • MUST create one Group class per feature folder (e.g., AuthGroup, FeedsGroup)
  • Group classes MUST extend IEndpointRouteBuilder and take a parameter of same type
  • Individual endpoint methods MUST accept RouteGroupBuilder parameter (not IEndpointRouteBuilder)
  • Individual endpoint methods MUST return RouteGroupBuilder for method chaining
  • Groups MUST be registered in parent group, starting from root ApiGroup

Endpoint Documentation

MUST use WithSummary() and WithDescription() for all endpoints to generate comprehensive OpenAPI documentation.

Pattern:

group.MapPost("/register", HandleAsync)
    .WithName("Register")
    .WithSummary("Register a new user account")
    .WithDescription("""
        Creates a new user account using email and password.
        Disabled in production when root user provisioning is enabled.
        """)
    .Produces<RegisterResponse>()
    .ProducesProblem(StatusCodes.Status409Conflict)
    .ProducesProblem(StatusCodes.Status503ServiceUnavailable);

Guidelines:

  • WithName() - Unique operation name for API documentation (PascalCase, e.g., "Register", "LoginUser")
  • WithSummary() - Short, concise summary (1 sentence max, 50-60 characters)
  • WithDescription() - Detailed explanation of what the endpoint does, parameters, and behavior
  • Produces<T>() - Success response type (use generically typed method for better OpenAPI docs)
  • ProducesProblem() - Expected error responses and their status codes

Why not AddOpenApiOperationTransformer?

  • WithSummary() and WithDescription() are the modern, built-in ASP.NET Core approach
  • More concise and declarative than manual operation transformation
  • Better IntelliSense support and method chaining
  • Produces identical OpenAPI documentation
  • Eliminates unnecessary lambda functions and Task.CompletedTask boilerplate

Example with multiple error responses:

group.MapPost("/login", HandleAsync)
    .WithName("Login")
    .WithSummary("Authenticate user credentials")
    .WithDescription("""
        Authenticates user with email and password.
        Returns JWT access token and refresh token for subsequent API calls.
        Supports 'remember me' to extend refresh token lifetime to 30 days.
        """)
    .Produces<LoginResponse>()
    .ProducesProblem(StatusCodes.Status400BadRequest)
    .ProducesProblem(StatusCodes.Status401Unauthorized)
    .ProducesProblem(StatusCodes.Status423Locked)
    .ProducesProblem(StatusCodes.Status503ServiceUnavailable);

TypedResults Pattern

ALWAYS use TypedResults for type-safe responses and better OpenAPI documentation

// Endpoint signature with explicit return type
private static async Task<Results<Ok<RegisterResponse>, Conflict, ServiceUnavailable, ForbidHttpResult>>
    HandleAsync(...)
{
    // Use TypedResults for all returns
    if (!config.Value.AllowRegistration)
    {
        return TypedResults.Forbid(); // NOT Results.Forbid()
    }

    if (result.Error == RegistrationError.EmailAlreadyExists)
    {
        return TypedResults.Conflict(); // NOT Results.Conflict()
    }

    var response = new RegisterResponse(...);
    return TypedResults.Ok(response); // NOT Results.Ok(response)
}

Benefits:

  • Compile-time type safety for response types
  • Automatic OpenAPI documentation generation
  • IntelliSense support for response types
  • Union types (Results<T1, T2, T3>) document all possible responses
Install via CLI
npx skills add https://github.com/jakoss/RSSVibe --skill api-design
Repository Details
star Stars 2
call_split Forks 0
navigation Branch main
article Path SKILL.md
More from Creator
jakoss
jakoss Explore all skills →