Congegni/sintonia
7
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

CC-5701: Airtime File API

Browse source 
Beginnings of fil rest api
index, get, post actions working without authentication
This commit is contained in:
drigato 2014-02-27 17:11:17 -05:00
parent 1715f2187d
commit 64c1dd2c1e
7 changed files with 169 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

145
airtime_mvc/application/modules/rest/controllers/MediaController.php Normal file
View file

@ -0,0 +1,145 @@
<?php
class Rest_MediaController extends Zend_Rest_Controller
{
public function init()
{
$this->view->layout()->disableLayout();
}
public function indexAction()
{
if (!$this->verifyApiKey()) {
return;
}
$this->getResponse()
->setHttpResponseCode(200)
->appendBody(json_encode(CcFilesQuery::create()->find()->toArray()));
}
public function getAction()
{
if (!$this->verifyApiKey()) {
return;
}
$id = $this->getId();
if (!$id) {
return;
}
$file = CcFilesQuery::create()->findPk($id);
if ($file) {
$this->getResponse()
->setHttpResponseCode(200)
->appendBody(json_encode($file->toArray()));
} else {
$this->fileNotFoundResponse();
}
}
public function postAction()
{
if (!$this->verifyApiKey()) {
return;
}
//If we do get an ID on a POST, then that doesn't make any sense
//since POST is only for creating.
if ($id = $this->_getParam('id', false)) {
$resp = $this->getResponse();
$resp->setHttpResponseCode(400);
$resp->appendBody("ERROR: ID should not be specified when using POST. POST is only used for show creation, and an ID will be chosen by Airtime");
return;
}
$file = new CcFiles();
$file->fromArray($this->getRequest()->getPost());
$file->save();
$resp = $this->getResponse();
$resp->setHttpResponseCode(201);
$resp->appendBody(json_encode($file->toArray()));
}
public function putAction()
{
if (!$this->verifyApiKey()) {
return;
}
$id = $this->getId();
if (!$id) {
return;
}
$file = CcFilesQuery::create()->findPk($id);
if ($show)
{
$show->importFrom('JSON', $this->getRequest()->getRawBody());
$show->save();
$this->getResponse()
->appendBody("From putAction() updating the requested show");
} else {
$this->showNotFoundResponse();
}
}
public function deleteAction()
{
if (!$this->verifyApiKey()) {
return;
}
$id = $this->getId();
if (!$id) {
return;
}
$show = CcShowQuery::create()->$query->findPk($id);
if ($show) {
$show->delete();
} else {
$this->showNotFoundResponse();
}
}
private function getId()
{
if (!$id = $this->_getParam('id', false)) {
$resp = $this->getResponse();
$resp->setHttpResponseCode(400);
$resp->appendBody("ERROR: No show ID specified.");
return false;
}
return $id;
}
private function verifyAPIKey()
{
//The API key is passed in via HTTP "basic authentication":
// http://en.wikipedia.org/wiki/Basic_access_authentication
//TODO: Fetch the user's API key from the database to check against
$unencodedStoredApiKey = "foobar";
$encodedStoredApiKey = base64_encode($unencodedStoredApiKey . ":");
//Decode the API key that was passed to us in the HTTP request.
$authHeader = $this->getRequest()->getHeader("Authorization");
$encodedRequestApiKey = substr($authHeader, strlen("Basic "));
//if ($encodedRequestApiKey === $encodedStoredApiKey)
if (true)
{
return true;
}
else
{
$resp = $this->getResponse();
$resp->setHttpResponseCode(401);
$resp->appendBody("ERROR: Incorrect API key.");
return false;
}
}
private function fileNotFoundResponse()
{
$resp = $this->getResponse();
$resp->setHttpResponseCode(404);
$resp->appendBody("ERROR: Show not found.");
}
}