Page MenuHomeCode

No OneTemporary

diff --git a/api.php b/api.php
index ce5b7b3..26e210f 100644
--- a/api.php
+++ b/api.php
@@ -1,221 +1,307 @@
<?php
/*
* Zed
* (c) 2010, Dereckson, some rights reserved
* Released under BSD license
*
* API entry point
*
*/
//API Preferences
define('URL', 'http://' . $_SERVER['HTTP_HOST'] . '/index.php');
//Pluton library
require_once('includes/core.php');
require_once('includes/config.php');
//API libs
require_once('includes/api/api_helpers.php');
require_once('includes/api/cerbere.php');
//Use our URL controller method if you want to mod_rewrite the API
$url = explode('/', substr($_SERVER['PATH_INFO'], 1));
switch ($module = $url[0]) {
/* -------------------------------------------------------------
Site API
/time
/location
/perso (disabled)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - */
case '':
//Nothing to do
//TODO: offer documentation instead
die();
case 'time':
//Hypership time
api_output(get_hypership_time(), "time");
break;
case 'location':
//Checks creditentials
cerbere();
//Gets location info
require_once("includes/geo/location.php");
$location = new GeoLocation($url[1], $url[2]);
api_output($location, "location");
break;
//case 'perso':
// //Checks creditentials
// cerbere();
// //Gets perso info
// require_once("includes/objects/perso.php");
// $perso = new Perso($url[1]);
// api_output($perso, "perso");
// break;
/* -------------------------------------------------------------
Ship API
/authenticate
/appauthenticate
/appauthenticated
/move
/land
/flyout
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - */
case 'ship':
//Ship API
//Gets ship from Ship API key (distinct of regular API keys)
require_once('includes/objects/ship.php');
$ship = Ship::from_api_key($_REQUEST['key']) or cerbere_die("Invalid ship API key");
switch ($command = $url[1]) {
case '':
//Nothing to do
//TODO: offer documentation instead
die();
case 'authenticate':
//TODO: web authenticate
break;
case 'appauthenticate':
//Allows desktop application to authenticate an user
$tmp_session_id = $url[2] or cerbere_die("/appauthenticate/ must be followed by any session identifier");
if ($_REQUEST['name']) {
//Perso will be offered auth invite at next login.
//Handy for devices like PDA, where it's not easy to auth.
$perso = new Perso($_REQUEST['name']);
if ($perso->lastError) {
cerbere_die($perso->lastError);
}
if (!$ship->is_perso_authenticated($perso->id)) {
$ship->request_perso_authenticate($perso->id);
}
$ship->request_perso_confirm_session($tmp_session_id, $perso->id);
} else {
//Delivers an URL. App have to redirects user to this URL
//launching a browser or printing the link.
$ship_code = $ship->get_code();
registry_set("api.ship.session.$ship_code.$tmp_session_id", -1);
$url = get_server_url() . get_url() . "?action=api.ship.appauthenticate&session_id=" . $tmp_session_id;
api_output($url, "URL");
}
break;
case 'appauthenticated':
//Checks the user authentication
$tmp_session_id = $url[2] or cerbere_die("/appauthenticated/ must be followed by any session identifier you used in /appauthenticate");
$perso_id = $ship->get_perso_from_session($tmp_session_id);
if (!$isPersoAuth = $ship->is_perso_authenticated($perso_id)) {
//Global auth not ok/revoked.
$auth->status = -1;
} else {
$perso = Perso::get($perso_id);
$auth->status = 1;
$auth->perso->id = $perso->id;
$auth->perso->nickname = $perso->nickname;
$auth->perso->name = $perso->name;
//$auth->perso->location = $perso->location;
//Is the perso on board? Yes if its global location is S...
$auth->perso->onBoard = (
$perso->location_global[0] == 'S' &&
substr($perso->location_global, 1, 5) == $ship->id
);
if ($auth->perso->onBoard) {
//If so, give local location
$auth->perso->location_local = $perso->location_local;
}
}
api_output($auth, "auth");
break;
case 'move':
//Moves the ship to a new location, given absolute coordinates
//TODO: handle relative moves
if (count($url) < 2) cerbere_die("/move/ must be followed by a location expression");
//Gets location class
//It's allow: (1) to normalize locations between formats
// (2) to ensure the syntax
//==> if the ship want to communicate free forms coordinates, must be added on GeoLocation a free format
try {
$location = new GeoLocation($url[2]);
} catch (Exception $ex) {
$reply->success = 0;
$reply->error = $ex->getMessage();
api_output($reply, "move");
break;
}
$ship->location_global = $location->global;
$ship->save_to_database();
$reply->success = 1;
$reply->location = $ship->location;
api_output($reply, "move");
break;
case 'land':
case 'flyin':
//Flies in
try {
$location = new GeoLocation($location);
} catch (Exception $ex) {
$reply->success = 0;
$reply->error = $ex->getMessage();
api_output($reply, "land");
break;
}
break;
case 'flyout':
//Flies out
break;
}
break;
/* -------------------------------------------------------------
Application API
/checkuserkey
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - */
case 'app':
//Application API
require_once("includes/objects/application.php");
$app = Application::from_api_key($_REQUEST['key']) or cerbere_die("Invalid application API key");
switch ($command = $url[1]) {
case '':
//Nothing to do
//TODO: offer documentation instead
die();
case 'checkuserkey':
if (count($url) < 2) cerbere_die("/checkuserkey/ must be followed by an user key");
$reply = (boolean)$app->get_perso_id($url[2]);
api_output($reply, "check");
break;
+
+ case 'pushuserdata':
+ if (count($url) < 3) cerbere_die("/pushuserdata/ must be followed by an user key");
+ $perso_id = $app->get_perso_id($url[2]) or cerbere_die("Invalid application user key");
+ //then, falls to 'pushdata'
+
+ case 'pushdata':
+ $data_id = $_REQUEST['data'] ? $_REQUEST['data'] : new_guid();
+ //Gets data
+ switch ($mode = $_REQUEST['mode']) {
+ case '':
+ cerbere_die("Add in your data posted or in the URL mode=file to read data from the file posted (one file per api call) or mode=request to read data from \$_REQUEST['data'].");
+
+ case 'request':
+ $data = $_REQUEST['data'];
+ $format = "raw";
+ break;
+
+ case 'file':
+ $file = $_FILES['datafile']['tmp_name'] or cerbere_die("File is missing");
+ if (!is_uploaded_file($file)) cerbere_die("Invalid form request");
+ $data = "";
+ if (ereg('\.tar$', $file)) {
+ $format = "tar";
+ $data = file_get_contents($file);
+ } elseif (ereg('\.tar\.bz2$', $file)) {
+ $format = "tar";
+ } elseif (ereg('\.bz2$', $file)) {
+ $format = "raw";
+ } else {
+ $format = "raw";
+ $data = file_get_contents($file);
+ }
+ if ($data === "") {
+ //.bz2
+ $bz = bzopen($file, "r") or cerbere_die("Couldn't open $file");
+ while (!feof($bz)) {
+ $data .= bzread($bz, BUFFER_SIZE);
+ }
+ bzclose($bz);
+ }
+ unlink($file);
+ break;
+
+ default:
+ cerbere_die("Invalid mode. Expected: file, request");
+ }
+
+ //Saves data
+ global $db;
+ $data_id = $db->sql_escape($data_id);
+ $data = $db->sql_escape($data);
+ $perso_id = $perso_id ? $perso_id : 'NULL';
+ $sql = "REPLACE INTO applications_data (application_id, data_id, data_content, data_format, perso_id) VALUES ('$app->id', '$data_id', '$data', '$format', $perso_id)";
+ if (!$db->sql_query($sql))
+ message_die(SQL_ERROR, "Can't save data", '', __LINE__, __FILE__, $sql);
+ //cerbere_die("Can't save data");
+
+ //Returns
+ api_output($data_id);
+ break;
+
+ case 'getuserdata':
+ // /api.php/getuserdata/data_id/perso_key
+ // /api.php/getdata/data_id
+ if (count($url) < 3) cerbere_die("/getuserdata/ must be followed by an user key");
+ $perso_id = $app->get_perso_id($url[2]) or cerbere_die("Invalid application user key");
+ //then, falls to 'getdata'
+
+ case 'getdata':
+ if (count($url) < 2) cerbere_die('/' + $url[0] + '/ must be followed by the data ID');
+ if (!$perso_id) $perso_id = 'NULL';
+ $data_id = $db->sql_escape($url[1]);
+ $sql = "SELECT data_content FROM applications_data WHERE application_id = '$app->id' AND data_id = '$data_id' AND perso_id = $perso_id";
+ if (!$result = $db->sql_query($sql)) {
+ message_die(SQL_ERROR, "Unable to query the table", '', __LINE__, __FILE__, $sql);
+ }
+ while ($row = $db->sql_fetchrow($result)) {
+
+ }
+ break;
+
+ default:
+ echo "Unknown module:";
+ dprint_r($url);
+ break;
}
break;
-
+
default:
echo "Unknown module:";
dprint_r($url);
break;
}
?>
\ No newline at end of file

File Metadata

Mime Type
text/x-diff
Expires
Mon, Nov 4, 00:27 (3 w, 5 d ago)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
20722
Default Alt Text
(12 KB)

Event Timeline