Added response field names and small fixes

coffeerunhobby · coffeerunhobby · commit 95dd903e587c · 2014-06-02T12:53:48.000+03:00
diff --git a/application/config/rest.php b/application/config/rest.php
@@ -24,6 +24,30 @@
 */
 $config['rest_default_format'] = 'xml';
 
+/*
+|--------------------------------------------------------------------------
+| REST Status field name
+|--------------------------------------------------------------------------
+|
+| The field name for the status of the response
+|
+|	'status'
+|
+*/
+$config['rest_status_field_name'] = 'status';
+
+/*
+|--------------------------------------------------------------------------
+| REST message field name
+|--------------------------------------------------------------------------
+|
+| The field name for the message inside the response
+|
+|	'error'
+|
+*/
+$config['rest_message_field_name'] = 'error';
+
 /*
 |--------------------------------------------------------------------------
 | Enable emulate request
diff --git a/application/libraries/REST_Controller.php b/application/libraries/REST_Controller.php
@@ -270,9 +270,6 @@ public function __construct()
         // Developers can extend this class and add a check in here
         $this->early_checks();
 
-        // Check if there is a specific auth type for the current class/method
-        $this->auth_override    = $this->_auth_override_check();
-
         $this->rest             = new StdClass();
 
         // Load DB if its enabled
@@ -285,14 +282,18 @@ public function __construct()
             $this->rest->db     = $this->db;
         }
 
+        // Check if there is a specific auth type for the current class/method
+        // _auth_override_check could exit so we need $this->rest->db initialized before
+        $this->auth_override    = $this->_auth_override_check();
+        
         // Checking for keys? GET TO WorK!
         if (config_item('rest_enable_keys')) {
             $this->_allow = $this->_detect_api_key();
         }
 
         // only allow ajax requests
         if (!$this->input->is_ajax_request() and config_item('rest_ajax_only')) {
-            $response = array('status' => false, 'error' => 'Only AJAX requests are accepted.');
+            $response = array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'Only AJAX requests are accepted.');
             $this->response($response, 406); // Set status to 406 NOT ACCEPTABLE
         }
 
@@ -345,11 +346,11 @@ public function _remap($object_called, $arguments)
     {
         // Should we answer if not over SSL?
         if (config_item('force_https') and !$this->_detect_ssl()) {
-            $this->response(array('status' => false, 'error' => 'Unsupported protocol'), 403);
+            $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'Unsupported protocol'), 403);
         }
 
         $pattern = '/^(.*)\.('.implode('|', array_keys($this->_supported_formats)).')$/';
-
+        $matches = array();
         if (preg_match($pattern, $object_called, $matches)) {
             $object_called = $matches[1];
         }
@@ -367,8 +368,8 @@ public function _remap($object_called, $arguments)
             if (config_item('rest_enable_logging') and $log_method) {
                 $this->_log_request();
             }
-
-            $this->response(array('status' => false, 'error' => 'Invalid API Key.'), 403);
+            
+            $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'Invalid API Key '.$this->rest->key), 403);
         }
 
         // Check to see if this key has access to the requested controller.
@@ -377,19 +378,19 @@ public function _remap($object_called, $arguments)
                 $this->_log_request();
             }
 
-            $this->response(array('status' => false, 'error' => 'This API key does not have access to the requested controller.'), 401);
+            $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'This API key does not have access to the requested controller.'), 401);
         }
 
         // Sure it exists, but can they do anything with it?
         if ( ! method_exists($this, $controller_method)) {
-            $this->response(array('status' => false, 'error' => 'Unknown method.'), 404);
+            $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'Unknown method.'), 404);
         }
 
         // Doing key related stuff? Can only do it if they have a key right?
         if (config_item('rest_enable_keys') and !empty($this->rest->key)) {
             // Check the limit
             if (config_item('rest_enable_limits') and !$this->_check_limit($controller_method)) {
-                $response = array('status' => false, 'error' => 'This API key has reached the hourly limit for this method.');
+                $response = array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'This API key has reached the hourly limit for this method.');
                 $this->response($response, 401);
             }
 
@@ -405,7 +406,7 @@ public function _remap($object_called, $arguments)
             }
 
             // They don't have good enough perms
-            $response = array('status' => false, 'error' => 'This API key does not have enough permissions.');
+            $response = array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'This API key does not have enough permissions.');
             $authorized or $this->response($response, 401);
         }
 
@@ -560,6 +561,7 @@ protected function _detect_output_format()
         $pattern = '/\.('.implode('|', array_keys($this->_supported_formats)).')$/';
 
         // Check if a file extension is used when no get arguments provided
+        $matches = array();
         if (!$this->_get_args and preg_match($pattern, $this->uri->uri_string(), $matches)) {
             return $matches[1];
         }
@@ -728,7 +730,6 @@ protected function _detect_lang()
             $langs = explode(',', $lang);
 
             $return_langs = array();
-            $i = 1;
             foreach ($langs as $lang) {
                 // Remove weight and strip space
                 list($lang) = explode(';', $lang);
@@ -1267,7 +1268,7 @@ protected function _check_login($username = '', $password = null)
         }
 
         if ($auth_source == 'library') {
-            log_message('debug', 'performing Library authentication for $username');
+            log_message('debug', 'performing Library authentication for '.$username);
 
             return $this->_perform_library_auth($username, $password);
         }
@@ -1319,7 +1320,7 @@ protected function _prepare_basic_auth()
         // most other servers
         elseif ($this->input->server('HTTP_AUTHENTICATION')) {
             if (strpos(strtolower($this->input->server('HTTP_AUTHENTICATION')), 'basic') === 0) {
-                list($username, $password) = explode(':', base64_decode(substr($this->input->server('HTTP_AUTHorIZATION'), 6)));
+                list($username, $password) = explode(':', base64_decode(substr($this->input->server('HTTP_AUTHORIZATION'), 6)));
             }
         }
 
@@ -1343,8 +1344,8 @@ protected function _prepare_digest_auth()
         // because the PHP ISAPI module in IIS acts different from CGI
         if ($this->input->server('PHP_AUTH_DIGEST')) {
             $digest_string = $this->input->server('PHP_AUTH_DIGEST');
-        } elseif ($this->input->server('HTTP_AUTHorIZATION')) {
-            $digest_string = $this->input->server('HTTP_AUTHorIZATION');
+        } elseif ($this->input->server('HTTP_AUTHORIZATION')) {
+            $digest_string = $this->input->server('HTTP_AUTHORIZATION');
         } else {
             $digest_string = "";
         }
@@ -1356,6 +1357,7 @@ protected function _prepare_digest_auth()
         }
 
         // We need to retrieve authentication informations from the $auth_data variable
+        $matches = array();
         preg_match_all('@(username|nonce|uri|nc|cnonce|qop|response)=[\'"]?([^\'",]+)@', $digest_string, $matches);
         $digest = (empty($matches[1]) || empty($matches[2])) ? array() : array_combine($matches[1], $matches[2]);
 
@@ -1407,7 +1409,7 @@ protected function _check_whitelist_auth()
         }
 
         if ( ! in_array($this->input->ip_address(), $whitelist)) {
-            $this->response(array('status' => false, 'error' => 'Not authorized'), 401);
+            $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'IP not authorized'), 401);
         }
     }
 
@@ -1424,7 +1426,7 @@ protected function _force_login($nonce = '')
             header('WWW-Authenticate: Digest realm="'.$this->config->item('rest_realm').'", qop="auth", nonce="'.$nonce.'", opaque="'.md5($this->config->item('rest_realm')).'"');
         }
 
-        $this->response(array('status' => false, 'error' => 'Not authorized'), 401);
+        $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'Not authorized'), 401);
     }
 
     /**

Original file line number	Diff line number	Diff line change
`@@ -270,9 +270,6 @@ public function __construct()`
`270`	`270`	`// Developers can extend this class and add a check in here`
`271`	`271`	`$this->early_checks();`
`272`	`272`
`273`		`- // Check if there is a specific auth type for the current class/method`
`274`		`- $this->auth_override = $this->_auth_override_check();`
`275`		`-`
`276`	`273`	`$this->rest = new StdClass();`
`277`	`274`
`278`	`275`	`// Load DB if its enabled`
`@@ -285,14 +282,18 @@ public function __construct()`
`285`	`282`	`$this->rest->db = $this->db;`
`286`	`283`	`}`
`287`	`284`
	`285`	`+ // Check if there is a specific auth type for the current class/method`
	`286`	`+ // _auth_override_check could exit so we need $this->rest->db initialized before`
	`287`	`+ $this->auth_override = $this->_auth_override_check();`
	`288`	`+`
`288`	`289`	`// Checking for keys? GET TO WorK!`
`289`	`290`	`if (config_item('rest_enable_keys')) {`
`290`	`291`	`$this->_allow = $this->_detect_api_key();`
`291`	`292`	`}`
`292`	`293`
`293`	`294`	`// only allow ajax requests`
`294`	`295`	`if (!$this->input->is_ajax_request() and config_item('rest_ajax_only')) {`
`295`		`- $response = array('status' => false, 'error' => 'Only AJAX requests are accepted.');`
	`296`	`+ $response = array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'Only AJAX requests are accepted.');`
`296`	`297`	`$this->response($response, 406); // Set status to 406 NOT ACCEPTABLE`
`297`	`298`	`}`
`298`	`299`
`@@ -345,11 +346,11 @@ public function _remap($object_called, $arguments)`
`345`	`346`	`{`
`346`	`347`	`// Should we answer if not over SSL?`
`347`	`348`	`if (config_item('force_https') and !$this->_detect_ssl()) {`
`348`		`- $this->response(array('status' => false, 'error' => 'Unsupported protocol'), 403);`
	`349`	`+ $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'Unsupported protocol'), 403);`
`349`	`350`	`}`
`350`	`351`
`351`	`352`	`$pattern = '/^(.*)\.('.implode('\|', array_keys($this->_supported_formats)).')$/';`
`352`		`-`
	`353`	`+ $matches = array();`
`353`	`354`	`if (preg_match($pattern, $object_called, $matches)) {`
`354`	`355`	`$object_called = $matches[1];`
`355`	`356`	`}`
`@@ -367,8 +368,8 @@ public function _remap($object_called, $arguments)`
`367`	`368`	`if (config_item('rest_enable_logging') and $log_method) {`
`368`	`369`	`$this->_log_request();`
`369`	`370`	`}`
`370`		`-`
`371`		`- $this->response(array('status' => false, 'error' => 'Invalid API Key.'), 403);`
	`371`	`+`
	`372`	`+ $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'Invalid API Key '.$this->rest->key), 403);`
`372`	`373`	`}`
`373`	`374`
`374`	`375`	`// Check to see if this key has access to the requested controller.`
`@@ -377,19 +378,19 @@ public function _remap($object_called, $arguments)`
`377`	`378`	`$this->_log_request();`
`378`	`379`	`}`
`379`	`380`
`380`		`- $this->response(array('status' => false, 'error' => 'This API key does not have access to the requested controller.'), 401);`
	`381`	`+ $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'This API key does not have access to the requested controller.'), 401);`
`381`	`382`	`}`
`382`	`383`
`383`	`384`	`// Sure it exists, but can they do anything with it?`
`384`	`385`	`if ( ! method_exists($this, $controller_method)) {`
`385`		`- $this->response(array('status' => false, 'error' => 'Unknown method.'), 404);`
	`386`	`+ $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'Unknown method.'), 404);`
`386`	`387`	`}`
`387`	`388`
`388`	`389`	`// Doing key related stuff? Can only do it if they have a key right?`
`389`	`390`	`if (config_item('rest_enable_keys') and !empty($this->rest->key)) {`
`390`	`391`	`// Check the limit`
`391`	`392`	`if (config_item('rest_enable_limits') and !$this->_check_limit($controller_method)) {`
`392`		`- $response = array('status' => false, 'error' => 'This API key has reached the hourly limit for this method.');`
	`393`	`+ $response = array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'This API key has reached the hourly limit for this method.');`
`393`	`394`	`$this->response($response, 401);`
`394`	`395`	`}`
`395`	`396`
`@@ -405,7 +406,7 @@ public function _remap($object_called, $arguments)`
`405`	`406`	`}`
`406`	`407`
`407`	`408`	`// They don't have good enough perms`
`408`		`- $response = array('status' => false, 'error' => 'This API key does not have enough permissions.');`
	`409`	`+ $response = array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'This API key does not have enough permissions.');`
`409`	`410`	`$authorized or $this->response($response, 401);`
`410`	`411`	`}`
`411`	`412`
`@@ -560,6 +561,7 @@ protected function _detect_output_format()`
`560`	`561`	`$pattern = '/\.('.implode('\|', array_keys($this->_supported_formats)).')$/';`
`561`	`562`
`562`	`563`	`// Check if a file extension is used when no get arguments provided`
	`564`	`+ $matches = array();`
`563`	`565`	`if (!$this->_get_args and preg_match($pattern, $this->uri->uri_string(), $matches)) {`
`564`	`566`	`return $matches[1];`
`565`	`567`	`}`
`@@ -728,7 +730,6 @@ protected function _detect_lang()`
`728`	`730`	`$langs = explode(',', $lang);`
`729`	`731`
`730`	`732`	`$return_langs = array();`
`731`		`- $i = 1;`
`732`	`733`	`foreach ($langs as $lang) {`
`733`	`734`	`// Remove weight and strip space`
`734`	`735`	`list($lang) = explode(';', $lang);`
`@@ -1267,7 +1268,7 @@ protected function _check_login($username = '', $password = null)`
`1267`	`1268`	`}`
`1268`	`1269`
`1269`	`1270`	`if ($auth_source == 'library') {`
`1270`		`- log_message('debug', 'performing Library authentication for $username');`
	`1271`	`+ log_message('debug', 'performing Library authentication for '.$username);`
`1271`	`1272`
`1272`	`1273`	`return $this->_perform_library_auth($username, $password);`
`1273`	`1274`	`}`
`@@ -1319,7 +1320,7 @@ protected function _prepare_basic_auth()`
`1319`	`1320`	`// most other servers`
`1320`	`1321`	`elseif ($this->input->server('HTTP_AUTHENTICATION')) {`
`1321`	`1322`	`if (strpos(strtolower($this->input->server('HTTP_AUTHENTICATION')), 'basic') === 0) {`
`1322`		`- list($username, $password) = explode(':', base64_decode(substr($this->input->server('HTTP_AUTHorIZATION'), 6)));`
	`1323`	`+ list($username, $password) = explode(':', base64_decode(substr($this->input->server('HTTP_AUTHORIZATION'), 6)));`
`1323`	`1324`	`}`
`1324`	`1325`	`}`
`1325`	`1326`
`@@ -1343,8 +1344,8 @@ protected function _prepare_digest_auth()`
`1343`	`1344`	`// because the PHP ISAPI module in IIS acts different from CGI`
`1344`	`1345`	`if ($this->input->server('PHP_AUTH_DIGEST')) {`
`1345`	`1346`	`$digest_string = $this->input->server('PHP_AUTH_DIGEST');`
`1346`		`- } elseif ($this->input->server('HTTP_AUTHorIZATION')) {`
`1347`		`- $digest_string = $this->input->server('HTTP_AUTHorIZATION');`
	`1347`	`+ } elseif ($this->input->server('HTTP_AUTHORIZATION')) {`
	`1348`	`+ $digest_string = $this->input->server('HTTP_AUTHORIZATION');`
`1348`	`1349`	`} else {`
`1349`	`1350`	`$digest_string = "";`
`1350`	`1351`	`}`
`@@ -1356,6 +1357,7 @@ protected function _prepare_digest_auth()`
`1356`	`1357`	`}`
`1357`	`1358`
`1358`	`1359`	`// We need to retrieve authentication informations from the $auth_data variable`
	`1360`	`+ $matches = array();`
`1359`	`1361`	`preg_match_all('@(username\|nonce\|uri\|nc\|cnonce\|qop\|response)=[\'"]?([^\'",]+)@', $digest_string, $matches);`
`1360`	`1362`	`$digest = (empty($matches[1]) \|\| empty($matches[2])) ? array() : array_combine($matches[1], $matches[2]);`
`1361`	`1363`
`@@ -1407,7 +1409,7 @@ protected function _check_whitelist_auth()`
`1407`	`1409`	`}`
`1408`	`1410`
`1409`	`1411`	`if ( ! in_array($this->input->ip_address(), $whitelist)) {`
`1410`		`- $this->response(array('status' => false, 'error' => 'Not authorized'), 401);`
	`1412`	`+ $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'IP not authorized'), 401);`
`1411`	`1413`	`}`
`1412`	`1414`	`}`
`1413`	`1415`
`@@ -1424,7 +1426,7 @@ protected function _force_login($nonce = '')`
`1424`	`1426`	`header('WWW-Authenticate: Digest realm="'.$this->config->item('rest_realm').'", qop="auth", nonce="'.$nonce.'", opaque="'.md5($this->config->item('rest_realm')).'"');`
`1425`	`1427`	`}`
`1426`	`1428`
`1427`		`- $this->response(array('status' => false, 'error' => 'Not authorized'), 401);`
	`1429`	`+ $this->response(array(config_item('rest_status_field_name') => false, config_item('rest_message_field_name') => 'Not authorized'), 401);`
`1428`	`1430`	`}`
`1429`	`1431`
`1430`	`1432`	`/**`