Skip to content

P
projet-cdaw
Commit e66ffa47 authored by Zohten's avatar Zohten
Browse files
Options

prettier fix

parent 9e409e23
Show whitespace changes
Inline Side-by-side
Showing with 395 additions and 329 deletions
BackEnd/TPs/tp4/controller/UserController.class.php
View file @ e66ffa47
......@@ -4,9 +4,11 @@ include_once __ROOT_DIR . '/libs/php-jwt/src/ExpiredException.php';
include_once __ROOT_DIR . '/libs/php-jwt/src/SignatureInvalidException.php';
include_once __ROOT_DIR . '/libs/php-jwt/src/JWT.php';
use \Firebase\JWT\JWT;
class UserController extends Controller {
public function __construct($name, $request) {
class UserController extends Controller
{
public function __construct($name, $request)
{
parent::__construct($name, $request);
}
......@@ -18,14 +20,16 @@ class UserController extends Controller {
{
switch ($this->request->getHttpMethod()) {
case 'GET':
if ($this->request->getUriParams())
if ($this->request->getUriParams()) {
return $this->getUser($this->request->getUriParams()[0]);
}
return $this->getAllUsers();
break;
case 'PUT':
if ($this->request->getUriParams())
return $this->updateUser(array_merge($this->request->getData(),['id'=>$this->request->getUriParams()[0]]));
if ($this->request->getUriParams()) {
return $this->updateUser(array_merge($this->request->getData(), ['id'=>$this->request->getUriParams()[0]]));
}
break;
}
return Response::errorResponse("unsupported parameters or method in users");
......@@ -40,25 +44,26 @@ class UserController extends Controller {
return $response;
}
protected function getUser($id){
protected function getUser($id)
{
$user = User::getRow($id);
$response = Response::okResponse(json_encode($user));
return $response;
}
protected function updateUser($array){
protected function updateUser($array)
{
try {
//var_dump($array);die;
$jwt_token = $this->request->getJwtToken();
// echo "jwt = $jwt_token";
$decodedJWT = JWT::decode($jwt_token, JWT_BACKEND_KEY, array('HS256'));
if($decodedJWT->data->id != $array['id']){
if ($decodedJWT->data->id != $array['id']) {
throw new Exception("You don't have access to this account.", 1);
}
User::updateUser($array);
} catch (Exception $e){
} catch (Exception $e) {
header('WWW-Authenticate: Bearer realm="'.JWT_ISSUER.'"');
$jsonResult = json_encode(array(
......
BackEnd/src/classes/AutoLoader.class.php
View file @ e66ffa47
<?php
class AutoLoader {
public function __construct() {
spl_autoload_register( array($this, 'load') );
class AutoLoader
{
public function __construct()
{
spl_autoload_register(array($this, 'load'));
// spl_autoload_register(array($this, 'loadComplete'));
}
// This method will be automatically executed by PHP whenever it encounters an unknown class name in the source code
private function load($className) {
if(in_array($className.'.class.php', scandir("model"))){
private function load($className)
{
if (in_array($className.'.class.php', scandir("model"))) {
require_once "model/$className.class.php";
if (is_readable("sql/$className.sql.php"))
if (is_readable("sql/$className.sql.php")) {
require_once "sql/$className.sql.php";
}
}
if (in_array($className.'.class.php', scandir("classes")))
if (in_array($className.'.class.php', scandir("classes"))) {
require_once "classes/$className.class.php";
}
if (in_array($className.'.class.php', scandir("controller")))
if (in_array($className.'.class.php', scandir("controller"))) {
require_once "controller/$className.class.php";
}
// TODO : compute path of the file to load (cf. PHP function is_readable)
// it is in one of these subdirectory '/classes/', '/model/', '/controller/'
// if it is a model, load its sql queries file too in sql/ directory
}
}
......
BackEnd/src/classes/DatabasePDO.class.php
View file @ e66ffa47
<?php
class DatabasePDO extends PDO {
class DatabasePDO extends PDO
{
protected static $singleton = null;
protected static $singleton = NULL;
public static function singleton(){
if(is_null(static::$singleton))
public static function singleton()
{
if (is_null(static::$singleton)) {
static::$singleton = new static();
}
return static::$singleton;
}
public function __construct() {
public function __construct()
{
// $db = new PDO("sqlite::memory");
$connectionString = "mysql:host=". DB_HOST;
if(defined('DB_PORT'))
if (defined('DB_PORT')) {
$connectionString .= ";port=". DB_PORT;
}
$connectionString .= ";dbname=" . DB_DATABASE;
$connectionString .= ";charset=utf8";
parent::__construct($connectionString,DB_USERNAME,DB_PASSWORD);
parent::__construct($connectionString, DB_USERNAME, DB_PASSWORD);
$this->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
}
}
BackEnd/src/classes/Dispatcher.class.php
View file @ e66ffa47
......@@ -4,17 +4,20 @@
* Analyses a request, created the right Controller passing it the request
*/
class Dispatcher {
public static function dispatch($request) {
return static::dispatchToController($request->getControllerName(),$request);
class Dispatcher
{
public static function dispatch($request)
{
return static::dispatchToController($request->getControllerName(), $request);
}
public static function dispatchToController($controllerName, $request) {
public static function dispatchToController($controllerName, $request)
{
$controllerClassName = ucfirst($controllerName) . 'Controller';
if(!class_exists($controllerClassName))
if (!class_exists($controllerClassName)) {
throw(new Exception("Class $controllerName does not exist"));
}
return new $controllerClassName($controllerName, $request);
}
......
BackEnd/src/classes/Request.class.php
View file @ e66ffa47
<?php
class Request {
class Request
{
protected $controllerName;
protected $uriParameters;
protected $data;
protected static $_instance;
public static function getCurrentRequest(){
if(is_null(self::$_instance)) {
public static function getCurrentRequest()
{
if (is_null(self::$_instance)) {
self::$_instance = new Request();
}
return self::$_instance;
}
public function __construct() {
public function __construct()
{
$this->initBaseURI();
$this->initControllerAndParametersFromURI();
$this->initData();
......@@ -23,7 +25,8 @@ class Request {
// intialise baseURI
// e.g. http://eden.imt-lille-douai.fr/~luc.fabresse/api.php => __BASE_URI = /~luc.fabresse
// e.g. http://localhost/CDAW/api.php => __BASE_URI = /CDAW
protected function initBaseURI() {
protected function initBaseURI()
{
$this->baseURI = parse_url($_SERVER['REQUEST_URI'], PHP_URL_QUERY);
}
......@@ -36,15 +39,17 @@ class Request {
// e.g. http://eden.imt-lille-douai.fr/~luc.fabresse/api.php/user/1
// => controllerName == 'user'
// uriParameters == [ 1 ]
protected function initControllerAndParametersFromURI(){
protected function initControllerAndParametersFromURI()
{
$prefix = $_SERVER['SCRIPT_NAME'];
$uriParameters = parse_url($_SERVER['REQUEST_URI'], PHP_URL_PATH);
$i=0;
while($i<strlen($prefix) && $i<strlen($uriParameters))
if($prefix[$i]===$uriParameters[$i])
while ($i<strlen($prefix) && $i<strlen($uriParameters)) {
if ($prefix[$i]===$uriParameters[$i]) {
$i++;
}
}
$uriParameters = substr($uriParameters, $i);
......@@ -60,45 +65,48 @@ class Request {
// ==============
// retourne le name du controleur qui doit traiter la requête courante
public function getControllerName() {
public function getControllerName()
{
return $this->controllerName;
}
public function getUriParams() {
public function getUriParams()
{
return $this->uriParameters;
}
public function initData() {
if ($this->getHttpMethod() === 'PUT' || $this->getHttpMethod() === 'POST'){
public function initData()
{
if ($this->getHttpMethod() === 'PUT' || $this->getHttpMethod() === 'POST') {
$jsondata=file_get_contents("php://input");
$this->data = json_decode($jsondata, true);
}
}
// retourne la méthode HTTP utilisée dans la requête courante
public function getHttpMethod() {
public function getHttpMethod()
{
return $_SERVER["REQUEST_METHOD"];
}
public function getData() {
public function getData()
{
return $this->data;
}
// returns JWT token in Authorization header or throw an exception
public function getJwtToken() {
public function getJwtToken()
{
$headers = getallheaders();
$autorization = $headers['Authorization'];
$arr = explode(" ", $autorization);
if(count($arr)<2)
if (count($arr)<2) {
throw new Exception("Missing JWT token");
}
$jwt_token = $arr[1];
return $jwt_token;
}
}
BackEnd/src/classes/Response.class.php
View file @ e66ffa47
<?php
class Response {
class Response
{
protected $code;
protected $body;
public function __construct($code = 404, $msg = "") {
public function __construct($code = 404, $msg = "")
{
$this->code = $code;
$this->body = $msg;
}
public static function errorResponse($message = "") {
return new Response(400,$message);
public static function errorResponse($message = "")
{
return new Response(400, $message);
}
public static function serverErrorResponse($message = "")
{
return new Response(500,$message);
return new Response(500, $message);
}
public static function okResponse($message = "")
{
return new Response(200,$message);
return new Response(200, $message);
}
public static function notFoundResponse($message = "")
{
return new Response(404,$message);
return new Response(404, $message);
}
public static function errorInParametersResponse($message = "")
{
return new Response(400,$message);
return new Response(400, $message);
}
public static function unauthorizedResponse($message = "")
{
return new Response(401,$message);
return new Response(401, $message);
}
public static function interceptEchos() {
public static function interceptEchos()
{
ob_start();
}
public static function getEchos() {
public static function getEchos()
{
return ob_get_clean();
}
public function send() {
public function send()
{
// https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin
header("Access-Control-Allow-Origin: *");
......
BackEnd/src/config/config.php
View file @ e66ffa47
<?php
define('DB_HOST','127.0.0.1');
define('DB_PORT',3306);
define('DB_DATABASE','dbtest');
define('DB_USERNAME','root');
define('DB_PASSWORD','');
define('DB_HOST', '127.0.0.1');
define('DB_PORT', 3306);
define('DB_DATABASE', 'dbtest');
define('DB_USERNAME', 'root');
define('DB_PASSWORD', '');
// define('__DEBUG', false);
define('__DEBUG', true);
define( 'JWT_BACKEND_KEY', '6d8HbcZndVGNAbo4Ih1TGaKcuA1y2BKs-I5CmP' );
define( 'JWT_ISSUER', $_SERVER['HTTP_HOST'] . $_SERVER['CONTEXT_PREFIX']);
define('JWT_BACKEND_KEY', '6d8HbcZndVGNAbo4Ih1TGaKcuA1y2BKs-I5CmP');
define('JWT_ISSUER', $_SERVER['HTTP_HOST'] . $_SERVER['CONTEXT_PREFIX']);
// ================================================================================
// Debug utilities
// ================================================================================
if(__DEBUG) {
if (__DEBUG) {
error_reporting(E_ALL);
ini_set("display_errors", E_ALL);
} else {
......@@ -24,14 +24,16 @@ if(__DEBUG) {
ini_set("display_errors", 0);
}
function myLog($msg) {
if(__DEBUG) {
function myLog($msg)
{
if (__DEBUG) {
echo $msg;
}
}
function myDump($var) {
if(__DEBUG) {
function myDump($var)
{
if (__DEBUG) {
var_dump($var);
}
}
BackEnd/src/controller/Controller.class.php
View file @ e66ffa47
......@@ -11,26 +11,26 @@
* - return the response
*/
abstract class Controller {
abstract class Controller
{
protected $name;
protected $request;
public function __construct($name, $request) {
public function __construct($name, $request)
{
$this->request = $request;
$this->name = $name;
}
public abstract function processRequest();
abstract public function processRequest();
public function execute() {
public function execute()
{
$response = $this->processRequest();
if(empty($response)) {
if (empty($response)) {
// $response = Response::serverErrorResponse("error processing request in ". self::class); // Oh my PHP!
$response = Response::serverErrorResponse("error processing request in ". static::class);
}
return $response;
}
}
BackEnd/src/controller/DefaultController.class.php
View file @ e66ffa47
<?php
class DefaultController extends Controller {
public function __construct($name, $request) {
class DefaultController extends Controller
{
public function __construct($name, $request)
{
parent::__construct($name, $request);
}
......@@ -11,8 +12,8 @@ class DefaultController extends Controller {
// Actions
// ==============
public function processRequest() {
return Response::errorResponse('{ "message" : "Unsupported endpoint"}' );
public function processRequest()
{
return Response::errorResponse('{ "message" : "Unsupported endpoint"}');
}
}
BackEnd/src/controller/LoginController.class.php
View file @ e66ffa47
......@@ -5,25 +5,28 @@ include_once __ROOT_DIR . '/libs/php-jwt/src/SignatureInvalidException.php';
include_once __ROOT_DIR . '/libs/php-jwt/src/JWT.php';
use \Firebase\JWT\JWT;
class LoginController extends Controller {
public function __construct($name, $request) {
class LoginController extends Controller
{
public function __construct($name, $request)
{
parent::__construct($name, $request);
}
public function processRequest() {
if($this->request->getHttpMethod() !== 'POST')
return Response::errorResponse('{ "message" : "Unsupported endpoint" }' );
public function processRequest()
{
if ($this->request->getHttpMethod() !== 'POST') {
return Response::errorResponse('{ "message" : "Unsupported endpoint" }');
}
$json = $this->request->getData();
if(!isset($json['login']) || !isset($json['login'])) {
$r = new Response(422,"login and pwd fields are mandatory");
if (!isset($json['login']) || !isset($json['login'])) {
$r = new Response(422, "login and pwd fields are mandatory");
$r->send();
}
$user = User::tryLogin($json['login']);
if(empty($user) || !hash_equals($json['pwd'],$user->password())) {
$r = new Response(422,"wrong credentials");
if (empty($user) || !hash_equals($json['pwd'], $user->password())) {
$r = new Response(422, "wrong credentials");
$r->send();
}
......@@ -43,7 +46,7 @@ class LoginController extends Controller {
)
);
$jwt = JWT::encode( $token, JWT_BACKEND_KEY );
$jwt = JWT::encode($token, JWT_BACKEND_KEY);
$jsonResult = json_encode(
array(
"jwt_token" => $jwt
......
BackEnd/src/controller/UserController.class.php
View file @ e66ffa47
......@@ -4,9 +4,11 @@ include_once __ROOT_DIR . '/libs/php-jwt/src/ExpiredException.php';
include_once __ROOT_DIR . '/libs/php-jwt/src/SignatureInvalidException.php';
include_once __ROOT_DIR . '/libs/php-jwt/src/JWT.php';
use \Firebase\JWT\JWT;
class UserController extends Controller {
public function __construct($name, $request) {
class UserController extends Controller
{
public function __construct($name, $request)
{
parent::__construct($name, $request);
}
......@@ -18,14 +20,16 @@ class UserController extends Controller {
{
switch ($this->request->getHttpMethod()) {
case 'GET':
if ($this->request->getUriParams())
if ($this->request->getUriParams()) {
return $this->getUser($this->request->getUriParams()[0]);
}
return $this->getAllUsers();
break;
case 'PUT':
if ($this->request->getUriParams())
return $this->updateUser(array_merge($this->request->getData(),['id'=>$this->request->getUriParams()[0]]));
if ($this->request->getUriParams()) {
return $this->updateUser(array_merge($this->request->getData(), ['id'=>$this->request->getUriParams()[0]]));
}
break;
}
return Response::errorResponse("unsupported parameters or method in users");
......@@ -40,25 +44,26 @@ class UserController extends Controller {
return $response;
}
protected function getUser($id){
protected function getUser($id)
{
$user = User::getRow($id);
$response = Response::okResponse(json_encode($user));
return $response;
}
protected function updateUser($array){
protected function updateUser($array)
{
try {
//var_dump($array);die;
$jwt_token = $this->request->getJwtToken();
// echo "jwt = $jwt_token";
$decodedJWT = JWT::decode($jwt_token, JWT_BACKEND_KEY, array('HS256'));
if($decodedJWT->data->id != $array['id']){
if ($decodedJWT->data->id != $array['id']) {
throw new Exception("You don't have access to this account.", 1);
}
User::updateUser($array);
} catch (Exception $e){
} catch (Exception $e) {
header('WWW-Authenticate: Bearer realm="'.JWT_ISSUER.'"');
$jsonResult = json_encode(array(
......
BackEnd/src/controller/ValidateTokenController.class.php
View file @ e66ffa47
......@@ -6,13 +6,15 @@ include_once __ROOT_DIR . '/libs/php-jwt/src/SignatureInvalidException.php';
include_once __ROOT_DIR . '/libs/php-jwt/src/JWT.php';
use \Firebase\JWT\JWT;
class ValidateTokenController extends Controller {
public function __construct($name, $request) {
class ValidateTokenController extends Controller
{
public function __construct($name, $request)
{
parent::__construct($name, $request);
}
public function processRequest() {
public function processRequest()
{
try {
$jwt_token = $this->request->getJwtToken();
// echo "jwt = $jwt_token";
......@@ -21,8 +23,7 @@ class ValidateTokenController extends Controller {
"message" => "Access granted.",
"data" => $decodedJWT
));
} catch (Exception $e){
} catch (Exception $e) {
header('WWW-Authenticate: Bearer realm="'.JWT_ISSUER.'"');
$jsonResult = json_encode(array(
......
BackEnd/src/index.php
View file @ e66ffa47
......@@ -4,7 +4,7 @@
// of the directory that contains this file (index.php)
// e.g. http://eden.imt-lille-douai.fr/~luc.fabresse/index.php => __ROOT_DIR = /home/luc.fabresse/public_html
$rootDirectoryPath = realpath(dirname(__FILE__));
define ('__ROOT_DIR', $rootDirectoryPath );
define('__ROOT_DIR', $rootDirectoryPath);
// Load all application config
require_once(__ROOT_DIR . "/config/config.php");
......
BackEnd/src/model/Model.class.php
View file @ e66ffa47
<?php
class Model {
protected static function db(){
class Model
{
protected static function db()
{
return DatabasePDO::singleton();
}
// *** Queries in sql/model.sql.php ****
protected static $requests = array();
public static function addSqlQuery($key, $sql){
public static function addSqlQuery($key, $sql)
{
static::$requests[$key] = $sql;
}
public static function sqlQueryNamed($key){
public static function sqlQueryNamed($key)
{
return static::$requests[$key];
}
protected static function query($sql){
protected static function query($sql)
{
$st = static::db()->query($sql) or die("sql query error ! request : " . $sql);
$st->setFetchMode(PDO::FETCH_CLASS | PDO::FETCH_PROPS_LATE, get_called_class());
return $st;
}
protected static function exec($sqlKey,$values=array()){
protected static function exec($sqlKey, $values=array())
{
$sth = static::db()->prepare(static::sqlQueryNamed($sqlKey));
$sth->setFetchMode(PDO::FETCH_CLASS | PDO::FETCH_PROPS_LATE, get_called_class());
$sth->execute($values);
......
BackEnd/src/model/User.class.php
View file @ e66ffa47
<?php
class User extends Model {
class User extends Model
{
// ===========
// = Statics =
......@@ -8,39 +9,46 @@ class User extends Model {
protected static $table_name = 'USER';
// load all users from Db
public static function getList() {
public static function getList()
{
$stm = parent::exec('USER_LIST');
return $stm->fetchAll();
}
public static function getRow($id) {
public static function getRow($id)
{
$stm = parent::exec('USER_GET_WITH_ID', ['id' => $id]);
return $stm->fetchAll();
}
public static function updateUser($array) {
public static function updateUser($array)
{
$stm = parent::exec('USER_UPDATE', $array);
}
public static function tryLogin($login){
public static function tryLogin($login)
{
$stm = parent::exec('USER_GET_WITH_LOGIN', ['login' => $login]);
return $stm->fetchAll(PDO::FETCH_CLASS, 'User')[0];
}
public function password(){
public function password()
{
return trim($this->USER_PWD);
}
public function id(){
public function id()
{
return trim($this->USER_ID);
}
public function firstname(){
public function firstname()
{
return trim($this->USER_NAME);
}
public function lastname(){
public function lastname()
{
return trim($this->USER_SURNAME);
}
public function email(){
public function email()
{
return trim($this->USER_EMAIL);
}
}
BackEnd/src/sql/User.sql.php
View file @ e66ffa47
<?php
User::addSqlQuery('USER_LIST',
'SELECT * FROM USER ORDER BY USER_LOGIN');
User::addSqlQuery(
'USER_LIST',
'SELECT * FROM USER ORDER BY USER_LOGIN'
);
User::addSqlQuery('USER_GET_WITH_LOGIN',
'SELECT * FROM USER WHERE USER_LOGIN=:login');
User::addSqlQuery(
'USER_GET_WITH_LOGIN',
'SELECT * FROM USER WHERE USER_LOGIN=:login'
);
User::addSqlQuery('USER_GET_WITH_ID',
'SELECT * FROM USER WHERE USER_ID=:id');
User::addSqlQuery(
'USER_GET_WITH_ID',
'SELECT * FROM USER WHERE USER_ID=:id'
);
User::addSqlQuery('USER_CREATE',
'INSERT INTO USER (USER_ID, USER_LOGIN, USER_EMAIL, USER_ROLE, USER_PWD, USER_NAME, USER_SURNAME) VALUES (NULL, :login, :email, :role, :pwd, :name, :surname)');
User::addSqlQuery(
'USER_CREATE',
'INSERT INTO USER (USER_ID, USER_LOGIN, USER_EMAIL, USER_ROLE, USER_PWD, USER_NAME, USER_SURNAME) VALUES (NULL, :login, :email, :role, :pwd, :name, :surname)'
);
User::addSqlQuery('USER_CONNECT',
'SELECT * FROM USER WHERE USER_LOGIN=:login and USER_PWD=:password');
User::addSqlQuery(
'USER_CONNECT',
'SELECT * FROM USER WHERE USER_LOGIN=:login and USER_PWD=:password'
);
User::addSqlQuery('USER_UPDATE',
'UPDATE USER SET USER_EMAIL = :email WHERE USER_ID = :id');
\ No newline at end of file
User::addSqlQuery(
'USER_UPDATE',
'UPDATE USER SET USER_EMAIL = :email WHERE USER_ID = :id'
);
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment