Notifications

core/Api/ApiKey/Create.class.php

@@ -0,0 +1,44 @@
+<?php
+
+namespace Api\ApiKey;
+
+use \Api\Request;
+class Create extends Request {
+
+  public function __construct($user, $externCall = false) {
+    parent::__construct($user, $externCall, array());
+    $this->apiKeyAllowed = false;
+    $this->loginRequired = true;
+  }
+
+  public function execute($values = array()) {
+
+    if(!parent::execute($values)) {
+      return false;
+    }
+
+    $apiKey = generateRandomString(64);
+    $sql = $this->user->getSQL();
+    $validUntil = (new \DateTime())->modify("+30 DAY");
+
+    $this->success = $sql->insert("ApiKey", array("user_id", "api_key", "valid_until"))
+      ->addRow($this->user->getId(), $apiKey, $validUntil)
+      ->returning("uid")
+      ->execute();
+
+    $this->lastError = $sql->getLastError();
+
+    if ($this->success) {
+      $this->result["api_key"] = array(
+        "api_key" => $apiKey,
+        "valid_until" => $validUntil->getTimestamp(),
+        "uid" => $sql->getLastInsertId(),
+      );
+    } else {
+      $this->result["api_key"] = null;
+    }
+    return $this->success;
+  }
+};
+
+?>

core/Api/ApiKey/Fetch.class.php

@@ -0,0 +1,46 @@
+<?php
+
+namespace Api\ApiKey;
+
+use \Api\Request;
+use \Driver\SQL\Condition\Compare;
+
+class Fetch extends Request {
+
+  public function __construct($user, $externCall = false) {
+    parent::__construct($user, $externCall, array());
+    $this->loginRequired = true;
+  }
+
+  public function execute($values = array()) {
+    if(!parent::execute($values)) {
+      return false;
+    }
+
+    $sql = $this->user->getSQL();
+    $res = $sql->select("uid", "api_key", "valid_until")
+      ->from("ApiKey")
+      ->where(new Compare("user_id", $this->user->getId()))
+      ->where(new Compare("valid_until", $sql->currentTimestamp(), ">"))
+      ->where(new Compare("active", true))
+      ->execute();
+
+    $this->success = ($res !== FALSE);
+    $this->lastError = $sql->getLastError();
+
+    if($this->success) {
+      $this->result["api_keys"] = array();
+      foreach($res as $row) {
+        $this->result["api_keys"][] = array(
+          "uid" => $row["uid"],
+          "api_key" => $row["api_key"],
+          "valid_until" => (new \DateTime($row["valid_until"]))->getTimestamp(),
+        );
+      }
+    }
+
+    return $this->success;
+  }
+};
+
+?>

core/Api/ApiKey/Refresh.class.php

@@ -0,0 +1,67 @@
+<?php
+
+namespace Api\ApiKey;
+
+use \Api\Request;
+use \Api\Parameter\Parameter;
+use \Driver\SQL\Condition\Compare;
+
+class Refresh extends Request {
+
+  public function __construct($user, $externCall = false) {
+    parent::__construct($user, $externCall, array(
+      "id" => new Parameter("id", Parameter::TYPE_INT),
+    ));
+    $this->loginRequired = true;
+  }
+
+  private function apiKeyExists() {
+    $id = $this->getParam("id");
+
+    $sql = $this->user->getSQL();
+    $res = $sql->select($sql->count())
+      ->from("ApiKey")
+      ->where(new Compare("uid", $id))
+      ->where(new Compare("user_id", $this->user->getId()))
+      ->where(new Compare("valid_until", $sql->currentTimestamp(), ">"))
+      ->where(new Compare("active", 1))
+      ->execute();
+
+    $this->success = ($res !== FALSE);
+    $this->lastError = $sql->getLastError();
+
+    if($this->success && $res[0]["count"] === 0) {
+      $this->success = false;
+      $this->lastError = "This API-Key does not exist.";
+    }
+
+    return $this->success;
+  }
+
+  public function execute($values = array()) {
+    if(!parent::execute($values)) {
+      return false;
+    }
+
+    $id = $this->getParam("id");
+    if(!$this->apiKeyExists())
+      return false;
+
+    $validUntil = (new \DateTime)->modify("+30 DAY");
+    $sql = $this->user->getSQL();
+    $this->success = $sql->update("ApiKey")
+      ->set("valid_until", $validUntil)
+      ->where(new Compare("uid", $id))
+      ->where(new Compare("user_id", $this->user->getId()))
+      ->execute();
+    $this->lastError = $sql->getLastError();
+
+    if ($this->success) {
+      $this->result["valid_until"] = $validUntil->getTimestamp();
+    }
+
+    return $this->success;
+  }
+};
+
+?>

core/Api/ApiKey/Revoke.class.php

@@ -0,0 +1,62 @@
+<?php
+
+namespace Api\ApiKey;
+
+use \Api\Request;
+use \Api\Parameter\Parameter;
+use \Driver\SQL\Condition\Compare;
+
+class Revoke extends Request {
+
+  public function __construct($user, $externCall = false) {
+    parent::__construct($user, $externCall, array(
+      "id" => new Parameter("id", Parameter::TYPE_INT),
+    ));
+    $this->loginRequired = true;
+  }
+
+  private function apiKeyExists() {
+    $id = $this->getParam("id");
+
+    $sql = $this->user->getSQL();
+    $res = $sql->select($sql->count())
+      ->from("ApiKey")
+      ->where(new Compare("uid", $id))
+      ->where(new Compare("user_id", $this->user->getId()))
+      ->where(new Compare("valid_until", $sql->currentTimestamp(), ">"))
+      ->where(new Compare("active", 1))
+      ->execute();
+
+    $this->success = ($res !== FALSE);
+    $this->lastError = $sql->getLastError();
+
+    if($this->success && $res[0]["count"] === 0) {
+      $this->success = false;
+      $this->lastError = "This API-Key does not exist.";
+    }
+
+    return $this->success;
+  }
+
+  public function execute($aValues = array()) {
+    if(!parent::execute($aValues)) {
+      return false;
+    }
+
+    $id = $this->getParam("id");
+    if(!$this->apiKeyExists())
+      return false;
+
+    $sql = $this->user->getSQL();
+    $this->success = $sql->update("ApiKey")
+      ->set("active", false)
+      ->where(new Compare("uid", $id))
+      ->where(new Compare("user_id", $this->user->getId()))
+      ->execute();
+    $this->lastError = $sql->getLastError();
+
+    return $this->success;
+  }
+};
+
+?>