[singlow]

Not sure why this author thinks this is all so recent. I hacked my first web API in 1998 and it was exactly like an API for an SPA but they didn't call it REST back then. The content type was multipart/form-data and the results were sent in formatted html, but other than that it was still a series of url endpoints with an authentication header and input document.

Sure, your average static content site didn't use an API in 1998, but WordPress/Drupal sites have exposed poorly secured APIs since the early 2000s even if the standard front-end didn't use them for content display.

[efficax]

XMLHttpRequest wasn't introduced (in IE!) until 1999, and almost nobody was using until after 2000. So how did you do make that work without a client side request mechanism?

[jeroenhd]

ActiveX is from. 1996, and java applets are from 95. I'm not sure if those technologies were capable of much back then, but the web used to be a much more diverse place before traditional plugins got purged and replaced by Javascript; I'd argue that javascript would be the worst way to do any kind of interactive website back in those days, because almost everyone was on Windows and the alternatives were so much more useful.

[listenallyall]

XMLHttpRequest was part of a COM component (or maybe its own?) and was therefore able to be embedded in any Visual Basic program or Access or FoxPro front end. To be able to make calls to the internet invisibly, without a web browser? In one of those classic 90s Windows UIs? It looked and felt like magic.

[mapgrep]

The browser isn’t the only consumer of an api, they are called server to server as well (and this was particularly common when they couldn’t be called directly from the browser). Headlines from other sites, weather, hit counters, all that great late 90s web innovation.

[btbuildem]

Your web API hack may predate this author..