REST vs GraphQL: When to Use Which

REST and GraphQL solve API design differently. Here's how to choose the right approach for your project.

Core Differences#

REST:
- Multiple endpoints (/users, /posts, /comments)
- Fixed data shapes per endpoint
- HTTP methods define operations (GET, POST, PUT, DELETE)
- Stateless request/response

GraphQL:
- Single endpoint (/graphql)
- Client specifies exact data needed
- Query language defines operations
- Strongly typed schema

REST Example#

// Multiple endpoints for related data

// GET /api/users/123
{
  "id": "123",
  "name": "John Doe",
  "email": "john@example.com"
}

// GET /api/users/123/posts
[
  { "id": "1", "title": "First Post", "userId": "123" },
  { "id": "2", "title": "Second Post", "userId": "123" }
]

// GET /api/posts/1/comments
[
  { "id": "1", "content": "Great post!", "postId": "1" }
]

// Server implementation
app.get('/api/users/:id', async (req, res) => {
  const user = await db.user.findUnique({
    where: { id: req.params.id },
  });
  res.json(user);
});

app.get('/api/users/:id/posts', async (req, res) => {
  const posts = await db.post.findMany({
    where: { userId: req.params.id },
  });
  res.json(posts);
});

GraphQL Example#

# Single query for all related data

query GetUserWithPosts($userId: ID!) {
  user(id: $userId) {
    id
    name
    email
    posts {
      id
      title
      comments {
        id
        content
        author {
          name
        }
      }
    }
  }
}

# Response - exactly what was requested
{
  "data": {
    "user": {
      "id": "123",
      "name": "John Doe",
      "email": "john@example.com",
      "posts": [
        {
          "id": "1",
          "title": "First Post",
          "comments": [
            {
              "id": "1",
              "content": "Great post!",
              "author": { "name": "Jane" }
            }
          ]
        }
      ]
    }
  }
}

// Server implementation
const resolvers = {
  Query: {
    user: (_, { id }) => db.user.findUnique({ where: { id } }),
  },
  User: {
    posts: (user) => db.post.findMany({ where: { userId: user.id } }),
  },
  Post: {
    comments: (post) => db.comment.findMany({ where: { postId: post.id } }),
  },
  Comment: {
    author: (comment) => db.user.findUnique({ where: { id: comment.authorId } }),
  },
};

When to Use REST#

// REST excels at:

// 1. Simple CRUD operations
GET    /api/users          // List users
POST   /api/users          // Create user
GET    /api/users/:id      // Get user
PUT    /api/users/:id      // Update user
DELETE /api/users/:id      // Delete user

// 2. File uploads/downloads
POST /api/files            // Upload file
GET  /api/files/:id        // Download file

// 3. Caching with HTTP standards
app.get('/api/products', (req, res) => {
  res.set('Cache-Control', 'public, max-age=3600');
  res.set('ETag', productHash);
  res.json(products);
});

// 4. Public APIs with broad usage
// Simpler to understand and integrate

// 5. Microservices communication
// Direct mapping to resources

When to Use GraphQL#

// GraphQL excels at:

// 1. Complex data requirements
query Dashboard {
  user {
    name
    notifications { unreadCount }
    recentOrders(limit: 5) {
      total
      status
    }
    recommendations {
      product { name, price }
    }
  }
}

// 2. Mobile applications (bandwidth sensitive)
// Request only needed fields
query MobileUserProfile {
  user {
    name
    avatar  // Only these two fields
  }
}

// 3. Rapidly evolving frontends
// Add fields without new endpoints
type User {
  id: ID!
  name: String!
  email: String!
  avatar: String     # Added later
  preferences: JSON  # Added later
}

// 4. Aggregating multiple services
const resolvers = {
  User: {
    orders: (user) => orderService.getByUser(user.id),
    payments: (user) => paymentService.getByUser(user.id),
    notifications: (user) => notificationService.getByUser(user.id),
  },
};

// 5. Real-time subscriptions
subscription OnNewMessage($chatId: ID!) {
  messageAdded(chatId: $chatId) {
    id
    content
    sender { name }
  }
}

Performance Comparison#

// REST: N+1 problem on client
async function getUserWithPosts(userId: string) {
  // 1 request
  const user = await fetch(`/api/users/${userId}`);

  // 1 request per user's posts
  const posts = await fetch(`/api/users/${userId}/posts`);

  // N requests for comments
  const comments = await Promise.all(
    posts.map(post => fetch(`/api/posts/${post.id}/comments`))
  );

  // Total: 2 + N requests
}

// GraphQL: N+1 problem on server (solved with DataLoader)
const userLoader = new DataLoader(async (ids) => {
  const users = await db.user.findMany({
    where: { id: { in: ids } },
  });
  return ids.map(id => users.find(u => u.id === id));
});

const resolvers = {
  Comment: {
    author: (comment) => userLoader.load(comment.authorId),
  },
};

Caching Strategies#

// REST: HTTP caching is straightforward
// - Browser cache
// - CDN cache
// - Cache-Control headers
// - ETags

// GraphQL: More complex caching
// 1. Response caching (limited)
// 2. Normalized cache (Apollo Client)
const cache = new InMemoryCache({
  typePolicies: {
    User: {
      keyFields: ['id'],
    },
    Post: {
      keyFields: ['id'],
    },
  },
});

// 3. Persisted queries (performance + caching)
// Client sends query hash instead of full query
POST /graphql
{
  "extensions": {
    "persistedQuery": {
      "sha256Hash": "abc123..."
    }
  },
  "variables": { "id": "123" }
}

Error Handling#

// REST: HTTP status codes
// 200 OK
// 400 Bad Request
// 401 Unauthorized
// 404 Not Found
// 500 Internal Server Error

// GraphQL: Always 200, errors in response
{
  "data": {
    "user": null
  },
  "errors": [
    {
      "message": "User not found",
      "path": ["user"],
      "extensions": {
        "code": "NOT_FOUND"
      }
    }
  ]
}

// Partial success possible in GraphQL
{
  "data": {
    "user": {
      "name": "John",
      "posts": null  // Failed but user succeeded
    }
  },
  "errors": [
    { "message": "Failed to fetch posts", "path": ["user", "posts"] }
  ]
}

Hybrid Approach#

// Use both where appropriate

// REST for:
// - File uploads
// - Webhooks
// - Simple public APIs
// - Health checks

// GraphQL for:
// - Dashboard data
// - Complex queries
// - Mobile apps
// - Internal APIs

// Same server
app.use('/api', restRouter);
app.use('/graphql', graphqlServer);

// REST endpoints can use GraphQL internally
app.get('/api/dashboard', async (req, res) => {
  const result = await graphql({
    schema,
    source: dashboardQuery,
    contextValue: { user: req.user },
  });
  res.json(result.data);
});

Comparison Summary#

| Aspect          | REST                  | GraphQL              |
|-----------------|----------------------|----------------------|
| Endpoints       | Multiple             | Single               |
| Data fetching   | Server decides       | Client decides       |
| Versioning      | URL or header        | Schema evolution     |
| Caching         | HTTP native          | Custom solutions     |
| File upload     | Native support       | Requires setup       |
| Learning curve  | Lower                | Higher               |
| Tooling         | Mature               | Growing rapidly      |
| Over-fetching   | Common               | Solved               |
| Under-fetching  | Common               | Solved               |
| Type safety     | Optional (OpenAPI)   | Built-in             |

Best Practices#

Choose REST when:
✓ Simple CRUD operations
✓ Public APIs
✓ Heavy caching needs
✓ File operations
✓ Team new to APIs

Choose GraphQL when:
✓ Complex data relationships
✓ Multiple clients (mobile, web)
✓ Rapid frontend iteration
✓ Real-time requirements
✓ Internal APIs

Neither REST nor GraphQL is universally better. REST offers simplicity and mature tooling; GraphQL provides flexibility and efficiency for complex data needs. Consider your team's experience, client requirements, and caching needs. Often, a hybrid approach works best.