maket/MaketRandevu
1
1
Fork 0
Code Issues 15 Pull requests Projects Releases 4 Packages Wiki Activity
MaketRandevu/application/libraries/Api.php

268 lines
6.2 KiB
PHP
Raw Normal View History

Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
<?php defined('BASEPATH') or exit('No direct script access allowed');
/* ----------------------------------------------------------------------------
Update the project subtitle.
2022-01-18 15:05:42 +03:00
* Easy!Appointments - Online Appointment Scheduler
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
*
* @package EasyAppointments
* @author A.Tselegidis <alextselegidis@gmail.com>
Updated the file banner info
2021-12-18 19:43:45 +03:00
* @copyright Copyright (c) Alex Tselegidis
* @license https://opensource.org/licenses/GPL-3.0 - GPLv3
* @link https://easyappointments.org
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
* @since v1.5.0
* ---------------------------------------------------------------------------- */
/**
* Api library.
*
* Handles API related functionality.
*
* @package Libraries
*/
class Api {
/**
* @var EA_Controller
*/
protected $CI;
/**
* @var int
*/
The API library can correctly sort and set the CORS headers
2021-11-03 10:21:30 +03:00
protected $default_length = 20;
/**
* @var EA_Model
*/
protected $model;
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
/**
* Api constructor.
*/
public function __construct()
{
$this->CI =& get_instance();
$this->CI->load->library('accounts');
}
The API library can correctly sort and set the CORS headers
2021-11-03 10:21:30 +03:00
/**
* Load and use the provided model class.
*
* @param string $model
*/
public function model(string $model)
{
$this->CI->load->model($model);
$this->model = $this->CI->{$model};
}
/**
* Authorize the API request (Basic Auth or Bearer Token supported).
*/
public function auth()
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
{
try
{
// Bearer token.
$api_token = setting('api_token');
if ( ! empty($api_token) && $api_token === $this->get_bearer_token())
{
return;
}
// Basic auth.
$username = $_SERVER['PHP_AUTH_USER'];
$password = $_SERVER['PHP_AUTH_PW'];
if ( ! $this->CI->accounts->check_login($username, $password))
{
throw new RuntimeException('The provided credentials do not match any admin user!', 401, 'Unauthorized');
}
}
catch (Throwable $e)
{
$this->request_authentication();
}
}
/**
* Returns the bearer token value.
*
* @return string
*/
protected function get_bearer_token(): ?string
{
$headers = $this->get_authorization_header();
// HEADER: Get the access token from the header
if ( ! empty($headers))
{
if (preg_match('/Bearer\s(\S+)/', $headers, $matches))
{
return $matches[1];
}
}
return NULL;
}
/**
* Returns the authorization header.
*
* @return string|null
*/
protected function get_authorization_header(): ?string
{
$headers = NULL;
if (isset($_SERVER['Authorization']))
{
$headers = trim($_SERVER['Authorization']);
}
else
{
if (isset($_SERVER['HTTP_AUTHORIZATION']))
{
// Nginx or fast CGI
$headers = trim($_SERVER['HTTP_AUTHORIZATION']);
}
elseif (function_exists('apache_request_headers'))
{
$requestHeaders = apache_request_headers();
// Server-side fix for bug in old Android versions (a nice side effect of this fix means we don't care
// about capitalization for Authorization).
$requestHeaders = array_combine(array_map('ucwords', array_keys($requestHeaders)), array_values($requestHeaders));
if (isset($requestHeaders['Authorization']))
{
$headers = trim($requestHeaders['Authorization']);
}
}
}
return $headers;
}
/**
* Sets request authentication headers.
*/
public function request_authentication()
{
header('WWW-Authenticate: Basic realm="Easy!Appointments"');
header('HTTP/1.0 401 Unauthorized');
exit('You are not authorized to use the API.');
}
/**
* Get the search keyword value of the current request.
*
* @return string|null
*/
public function request_keyword(): ?string
{
return request('q');
}
/**
* Get the limit value of the current request.
*
* @return int|null
*/
public function request_limit(): ?int
{
return request('length', $this->default_length);
}
/**
* Get the limit value of the current request.
*
* @return int|null
*/
public function request_offset(): ?int
{
$page = request('page', 1);
$length = request('length', $this->default_length);
return ($page - 1) * $length;
}
/**
* Get the order by value of the current request.
*
* @return string|null
*/
public function request_order_by(): ?string
{
$sort = request('sort');
if ( ! $sort)
{
return NULL;
}
The API library can correctly sort and set the CORS headers
2021-11-03 10:21:30 +03:00
$sort_tokens = array_map('trim', explode(',', $sort));
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
$order_by = [];
foreach ($sort_tokens as $sort_token)
{
The API library can correctly sort and set the CORS headers
2021-11-03 10:21:30 +03:00
$api_field = substr($sort_token, 1);
$db_field = $this->model->db_field($api_field);
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
Added validation to the sort direction value
2021-11-06 15:30:12 +03:00
$direction_operator = substr($sort_token, 0, 1);
if ( ! in_array($direction_operator, ['-', '+']))
{
throw new InvalidArgumentException('Invalid sort direction operator provided (expected "-" or "+"): ' . $direction_operator);
}
$direction = $direction_operator === '-' ? 'DESC' : 'ASC';
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
The API library can correctly sort and set the CORS headers
2021-11-03 10:21:30 +03:00
$order_by[] = $db_field . ' ' . $direction;
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
}
return implode(', ', $order_by);
}
/**
Added support for the "attach" query parameter to all API controllers
2021-11-06 17:34:54 +03:00
* Get the chosen "fields" array of the current request.
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
*
* @return array|null
*/
public function request_fields(): ?array
{
$fields = request('fields');
if ( ! $fields)
{
return NULL;
}
The API library can correctly sort and set the CORS headers
2021-11-03 10:21:30 +03:00
return array_map('trim', explode(',', $fields));
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
}
Added support for the "attach" query parameter to all API controllers
2021-11-06 17:34:54 +03:00
/**
Renamed the attach query paramter of API controllers to with
2021-11-06 17:41:11 +03:00
* Get the provided "with" array of the current request.
Added support for the "attach" query parameter to all API controllers
2021-11-06 17:34:54 +03:00
*
* @return array|null
*/
Renamed the attach query paramter of API controllers to with
2021-11-06 17:41:11 +03:00
public function request_with(): ?array
Added support for the "attach" query parameter to all API controllers
2021-11-06 17:34:54 +03:00
{
Renamed the attach query paramter of API controllers to with
2021-11-06 17:41:11 +03:00
$with = request('with');
Added support for the "attach" query parameter to all API controllers
2021-11-06 17:34:54 +03:00
Renamed the attach query paramter of API controllers to with
2021-11-06 17:41:11 +03:00
if ( ! $with)
Added support for the "attach" query parameter to all API controllers
2021-11-06 17:34:54 +03:00
{
return NULL;
}
Renamed the attach query paramter of API controllers to with
2021-11-06 17:41:11 +03:00
return array_map('trim', explode(',', $with));
Added support for the "attach" query parameter to all API controllers
2021-11-06 17:34:54 +03:00
}
Created new library that handles common API functionality.
2021-11-02 12:44:37 +03:00
}
Reference in a new issue Copy permalink