○ There is a list of routes, which are variously called 'URLs', 'endpoints' and 'an API'. Strictly an API is a collection of URLs or endpoints which provide some functionality. In this case, the API gives access to our server which is what manages the link to the database. In this way, the database is protected from external attack (you have to sign-in to get in), the logic to handle database actions is controlled and can be changed independently of the PT website. For example, we could switch to a different database and the website would not even know.