On Wednesday night, I headed to Google to listen to Yahoo's (no irony there is there?) presentation on JSON, Yahoo web services, and mash-ups. This was a presentation setup by the Sillicon Valey WebGuild. This turned out to be quite good. In particular, Doug Crockford's presentation on JSON. I also, by complete coincidence (it took both of us a bit of discussion to figure out the connection), ran into a colleague from my original days at Adobe (he was one of the Pagemill folks, and I worked on Pagemill and related stuff very briefly when I was first hired).
Here are some of the bits of info I found interesting from the JSON portion (mash-up and web service stuff is below):
- Yahoo uses JSON to bridge C/C++ and JS code in their web apps
- There is a MIME type, which is
application/json. Doug tried to get a
plaintype, but application is all they'd allow.
- There are two ways to parse JSON in JSON, first with eval, and then with parseJSON (see below). One person commented that they've used eval to parse 100MB JSON strings with no problems. The main difference is that eval is not strictly safe, but parseJSON is, and should be used when you don't necessarily trust the source.
- You can use iframes, or the dynamic script tag hack to deal with cross domain and other security issues.
- There is a proposal for a new JSONRequest, which deals with the security/cross-domain issues in a non-hackish way.
- JSON.org/json.js is a JS library that adds JSON parsing and handling methods to strings, arrays, and objects. Use this until they get this stuff into the ECMAScript standard.
- There is a neat template system, that lets you create JS templates, and then substitute into them using JSON. See the supplant method in json.js. Also, going further is the JSONT (JSON transform, vaguely like XSLT) system.
- I liked their mention of the fact that JSON has no version numbers. There are no plans for changes, and it's totally stable. It's not extensible, so basically, it's what it is now, and that's what it'll be "forever".
After the JSON portion, Dan Theurer of Yahoo spoke about their web services and related developer bits and mash-ups. In particular he showed their browser-based authentication system that lets mash-ups have their users authenticate with the Yahoo services that are being mashed in, but without the user ever supplying passwords or account info to the mash-up itself. There was also some discussion including Bill Scott of Yahoo, and some of us in the audience around Yahoo's JS UI toolkit (YUI). Bill is also one of the Rico guys (a competing JS UI lib). Some notes from this portion of the talk:
- Some specific reasons mentioned to do web services: extend the reach of your apps/services; enable people to work with their data in their own ways; etc.
- Driving web service adoption: make it free, support it, get feedback, create a community around it, provide sample apps, good docs and API's, etc.
- The YUI has interesting widgets like a calendar, status/loading, image animation, etc. It is very well documented, but not as extensive as Rico or similar. They will be adding more high level items in the future. There is also the YUI blog.
- There is a gallery of third party apps that use Yahoo web services.
- Yahoo's web services use JSON of course, or at least some do, but also Atom, RSS, serialized PHP, SOAP, REST, yREST, RESTful, and more.