MaketRandevu/src/application/controllers/api/v1/API_V1_Controller.php

<?php if ( ! defined('BASEPATH')) exit('No direct script access allowed');

/* ----------------------------------------------------------------------------
 * Easy!Appointments - Open Source Web Scheduler
 *
 * @package     EasyAppointments
 * @author      A.Tselegidis <alextselegidis@gmail.com>
 * @copyright   Copyright (c) 2013 - 2016, Alex Tselegidis
 * @license     http://opensource.org/licenses/GPL-3.0 - GPLv3
 * @link        http://easyappointments.org
 * @since       v1.2.0
 * ---------------------------------------------------------------------------- */

use \EA\Engine\Types\NonEmptyAlphanumeric;

/**
 * API V1 Controller 
 *
 * Parent controller class for the API v1 resources. Extend this class instead of the CI_Controller
 * and call the parent constructor.
 *
 * @package Controllers
 * @subpackage API
 */
class API_V1_Controller extends CI_Controller {
    /**
     * Class Constructor 
     *
     * This constructor will handle the common operations of each API call. 
     *
     * Important: Do not forget to call the this constructor from the child classes.
     *
     * Notice: At the time being only the basic authentication is supported. Make sure 
     * that you use the API through SSL/TLS for security.
     */
    public function __construct() {
        if (!isset($_SERVER['PHP_AUTH_USER'])) {
            return $this->_requestAuthentication();
        }

        parent::__construct();

        try {
            $username = new NonEmptyAlphanumeric($_SERVER['PHP_AUTH_USER']);
            $password = new NonEmptyAlphanumeric($_SERVER['PHP_AUTH_PW']);
            $authorization = new \EA\Engine\Api\V1\Authorization($this); 
            $authorization->basic($username, $password); 
        } catch(\Exception $exception) {
            exit($this->_handleException($exception)); 
        }
    }

    /**
     * Sets request authentication headers.
     */
    protected function _requestAuthentication() {
        header('WWW-Authenticate: Basic realm="Easy!Appointments"');
        header('HTTP/1.0 401 Unauthorized');
        exit('You are not authorized to use the API.');
    }

    /**
     * Outputs the required headers and messages for exception handling.
     *
     * Call this method from catch blocks of child controller callbacks.
     * 
     * @param \Exception $exception Thrown exception to be outputed.
     */
    protected function _handleException(\Exception $exception) {
        $error = [
            'code' => $exception->getCode() ?: 500,
            'message'=> $exception->getMessage(), 
        ];   

        $header = $exception instanceof \EA\Engine\Api\V1\Exception 
            ? $exception->getCode() . ' ' . $exception->getHeader() 
            : '500 Internal Server Error';

        header('HTTP/1.0 ' . $header);
        header('Content-Type: application/json');

        echo json_encode($error, JSON_UNESCAPED_SLASHES|JSON_PRETTY_PRINT);
    }

    /**
     * Throw an API exception stating that the requested record was not found. 
     * 
     * @throws \EA\Engine\Api\V1\Exception
     */
    protected function _throwRecordNotFound() {
        throw new \EA\Engine\Api\V1\Exception('The requested record was not found!', 404,  'Not Found');
    }
}

/* End of file API_V1_Controller.php */
/* Location: ./application/controllers/API_V1_Controller.php */
Created parent API controller class. 2016-07-08 22:14:38 +03:00			`<?php if ( ! defined('BASEPATH')) exit('No direct script access allowed');`

			`/* ----------------------------------------------------------------------------`
			`* Easy!Appointments - Open Source Web Scheduler`
			`*`
			`* @package EasyAppointments`
			`* @author A.Tselegidis <alextselegidis@gmail.com>`
			`* @copyright Copyright (c) 2013 - 2016, Alex Tselegidis`
			`* @license http://opensource.org/licenses/GPL-3.0 - GPLv3`
			`* @link http://easyappointments.org`
			`* @since v1.2.0`
			`* ---------------------------------------------------------------------------- */`

Renamed engine type classes for PHP7 compatibility (fixes #204). 2016-10-10 18:46:29 +03:00			`use \EA\Engine\Types\NonEmptyAlphanumeric;`
The API_V1_Controller will request authentication. 2016-07-09 12:17:39 +03:00
			`/**`
			`* API V1 Controller`
			`*`
			`* Parent controller class for the API v1 resources. Extend this class instead of the CI_Controller`
			`* and call the parent constructor.`
			`*`
			`* @package Controllers`
			`* @subpackage API`
			`*/`
Created parent API controller class. 2016-07-08 22:14:38 +03:00			`class API_V1_Controller extends CI_Controller {`
The API_V1_Controller will request authentication. 2016-07-09 12:17:39 +03:00			`/**`
			`* Class Constructor`
			`*`
			`* This constructor will handle the common operations of each API call.`
			`*`
			`* Important: Do not forget to call the this constructor from the child classes.`
			`*`
			`* Notice: At the time being only the basic authentication is supported. Make sure`
			`* that you use the API through SSL/TLS for security.`
			`*/`
			`public function __construct() {`
			`if (!isset($_SERVER['PHP_AUTH_USER'])) {`
			`return $this->_requestAuthentication();`
			`}`

			`parent::__construct();`
Corrected API authorization procedure. 2016-07-09 13:24:52 +03:00
			`try {`
Renamed engine type classes for PHP7 compatibility (fixes #204). 2016-10-10 18:46:29 +03:00			`$username = new NonEmptyAlphanumeric($_SERVER['PHP_AUTH_USER']);`
			`$password = new NonEmptyAlphanumeric($_SERVER['PHP_AUTH_PW']);`
Corrected API authorization procedure. 2016-07-09 13:24:52 +03:00			`$authorization = new \EA\Engine\Api\V1\Authorization($this);`
			`$authorization->basic($username, $password);`
			`} catch(\Exception $exception) {`
Corrected exception handling, the app must stop the execution and through the exception response. 2016-07-09 14:19:07 +03:00			`exit($this->_handleException($exception));`
Corrected API authorization procedure. 2016-07-09 13:24:52 +03:00			`}`
The API_V1_Controller will request authentication. 2016-07-09 12:17:39 +03:00			`}`
Created parent API controller class. 2016-07-08 22:14:38 +03:00
The API_V1_Controller will request authentication. 2016-07-09 12:17:39 +03:00			`/**`
			`* Sets request authentication headers.`
			`*/`
			`protected function _requestAuthentication() {`
			`header('WWW-Authenticate: Basic realm="Easy!Appointments"');`
			`header('HTTP/1.0 401 Unauthorized');`
Corrected exception handling, the app must stop the execution and through the exception response. 2016-07-09 14:19:07 +03:00			`exit('You are not authorized to use the API.');`
The API_V1_Controller will request authentication. 2016-07-09 12:17:39 +03:00			`}`
Corrected API authorization procedure. 2016-07-09 13:24:52 +03:00
			`/**`
			`* Outputs the required headers and messages for exception handling.`
			`*`
			`* Call this method from catch blocks of child controller callbacks.`
			`*`
			`* @param \Exception $exception Thrown exception to be outputed.`
			`*/`
			`protected function _handleException(\Exception $exception) {`
			`$error = [`
			`'code' => $exception->getCode() ?: 500,`
			`'message'=> $exception->getMessage(),`
			`];`

			`$header = $exception instanceof \EA\Engine\Api\V1\Exception`
			`? $exception->getCode() . ' ' . $exception->getHeader()`
			`: '500 Internal Server Error';`

			`header('HTTP/1.0 ' . $header);`
			`header('Content-Type: application/json');`

			`echo json_encode($error, JSON_UNESCAPED_SLASHES\|JSON_PRETTY_PRINT);`
			`}`
Added new method for returning common 404 exceptions. 2016-07-10 13:59:04 +03:00
			`/**`
			`* Throw an API exception stating that the requested record was not found.`
			`*`
			`* @throws \EA\Engine\Api\V1\Exception`
			`*/`
			`protected function _throwRecordNotFound() {`
			`throw new \EA\Engine\Api\V1\Exception('The requested record was not found!', 404, 'Not Found');`
			`}`
Created parent API controller class. 2016-07-08 22:14:38 +03:00			`}`

			`/* End of file API_V1_Controller.php */`
			`/* Location: ./application/controllers/API_V1_Controller.php */`