Implement api with ability to read snips and profile

2025-04-27 21:41:53 +02:00
parent ba00351201
commit f56c78f626
12 changed files with 267 additions and 20 deletions
--- a/src/Controller/Api/AbstractApiController.php
+++ b/src/Controller/Api/AbstractApiController.php
@ -0,0 +1,39 @@
+<?php
+
+namespace App\Controller\Api;
+
+use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpFoundation\Response;
+
+class AbstractApiController extends AbstractController
+{
+    private function apiResponse(bool $success, array|NormalizableInterface $data): Response
+    {
+        if ($data instanceof NormalizableInterface) {
+            $data = $data->normalize();
+        }
+        if (is_array($data)) {
+            foreach ($data as $key => $value) {
+                if ($value instanceof NormalizableInterface) {
+                    $data[$key] = $value->normalize();
+                }
+            }
+        }
+
+        return new JsonResponse([
+            'success' => $success,
+            'data' => $data,
+        ]);
+    }
+
+    final protected function errorResponse(string $message): Response
+    {
+        return $this->apiResponse(false, ['message' => $message]);
+    }
+
+    final protected function successResponse(array|NormalizableInterface $data = []): Response
+    {
+        return $this->apiResponse(true, $data);
+    }
+}
--- a/src/Controller/Api/ApiController.php
+++ b/src/Controller/Api/ApiController.php
@ -0,0 +1,43 @@
+<?php
+
+namespace App\Controller\Api;
+
+use App\Entity\Snip;
+use App\Entity\User;
+use App\Security\Voter\SnipVoter;
+use App\Service\SnipContent\SnipContentService;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Routing\Attribute\Route;
+
+#[Route('/api')]
+class ApiController extends AbstractApiController
+{
+    #[Route('/me')]
+    public function me(): Response
+    {
+        /** @var User $user */
+        $user = $this->getUser();
+
+        return $this->successResponse([
+            'id' => $user->getId(),
+            'name' => $user->getName(),
+            'email' => $user->getEmail(),
+            'apiKey' => $user->getApiKey(),
+        ]);
+    }
+
+    #[Route('/snip/{snip}')]
+    public function getSnip(Snip $snip, SnipContentService $cs): Response
+    {
+        $this->denyAccessUnlessGranted(SnipVoter::VIEW, $snip);
+
+        return $this->successResponse([
+            'id' => $snip->getId(),
+            'content' => $cs->getActiveText($snip),
+            'createdBy' => [
+                'id' => $snip->getCreatedBy()->getId(),
+                'name' => $snip->getCreatedBy()->getName(),
+            ],
+        ]);
+    }
+}
--- a/src/Controller/Api/NormalizableInterface.php
+++ b/src/Controller/Api/NormalizableInterface.php
@ -0,0 +1,8 @@
+<?php
+
+namespace App\Controller\Api;
+
+interface NormalizableInterface
+{
+    public function normalize(): array;
+}
--- a/src/Controller/UserController.php
+++ b/src/Controller/UserController.php
@ -2,8 +2,8 @@

 namespace App\Controller;

+use App\Entity\User;
 use App\Form\ProfileType;
-use App\Form\UserSettingsType;
 use App\Service\LastRelease;
 use Doctrine\ORM\EntityManagerInterface;
 use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
@ -11,6 +11,7 @@ use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
 use Symfony\Component\Routing\Attribute\Route;
+use Symfony\Component\Uid\Uuid;

 #[Route('/user', name: 'user')]
 class UserController extends AbstractController
@ -58,4 +59,20 @@ class UserController extends AbstractController
            'release' => $lastRelease,
        ]);
    }
+
+    #[Route('/apikey/generate', name: '_apikey_generate')]
+    public function apiKeyGenerate(): Response
+    {
+        /** @var User $user */
+        $user = $this->getUser();
+
+        $apiKey = Uuid::v4()->toBase58();
+        $user->setApiKey($apiKey);
+        $this->em->persist($user);
+        $this->em->flush();
+
+        $this->addFlash('success', sprintf('Successfully generated new api key: "%s"', $apiKey));
+
+        return $this->redirectToRoute('user_profile');
+    }
 }
--- a/src/Entity/User.php
+++ b/src/Entity/User.php
@ -34,6 +34,9 @@ class User implements UserInterface, PasswordAuthenticatedUserInterface
    #[ORM\Column(length: 255)]
    private ?string $email = null;

+    #[ORM\Column(length: 255, nullable: true)]
+    private ?string $apiKey = null;
+
    public function __toString(): string
    {
        return $this->name ?? '';
@ -132,4 +135,16 @@ class User implements UserInterface, PasswordAuthenticatedUserInterface

        return $this;
    }
+
+    public function getApiKey(): ?string
+    {
+        return $this->apiKey;
+    }
+
+    public function setApiKey(?string $apiKey): static
+    {
+        $this->apiKey = $apiKey;
+
+        return $this;
+    }
 }
--- a/src/Security/TokenAuthenticator.php
+++ b/src/Security/TokenAuthenticator.php
@ -0,0 +1,68 @@
+<?php
+
+namespace App\Security;
+
+use App\Entity\User;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Exception\AuthenticationException;
+use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
+use Symfony\Component\Security\Http\Authenticator\AbstractAuthenticator;
+use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
+use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
+use Symfony\Component\Security\Http\Authenticator\Passport\SelfValidatingPassport;
+
+class TokenAuthenticator extends AbstractAuthenticator
+{
+    public function __construct(
+        private readonly EntityManagerInterface $em,
+    ) {}
+
+    /**
+     * Called on every request to decide if this authenticator should be
+     * used for the request. Returning false will cause this authenticator
+     * to be skipped.
+     */
+    public function supports(Request $request): ?bool
+    {
+        return $request->headers->has('X-AUTH-TOKEN');
+    }
+
+    public function authenticate(Request $request): Passport
+    {
+        $apiToken = $request->headers->get('X-AUTH-TOKEN');
+        if (empty($apiToken)) {
+            // The token header was empty, authentication fails with HTTP Status
+            // Code 401 "Unauthorized"
+            throw new CustomUserMessageAuthenticationException('No API token provided');
+        }
+
+        return new SelfValidatingPassport(
+            new UserBadge($apiToken, function ($apiToken) {
+                return $this->em->getRepository(User::class)->findOneBy(['apiKey' => $apiToken]);
+            })
+        );
+    }
+
+    public function onAuthenticationSuccess(Request $request, TokenInterface $token, string $firewallName): ?Response
+    {
+        // on success, let the request continue
+        return null;
+    }
+
+    public function onAuthenticationFailure(Request $request, AuthenticationException $exception): ?Response
+    {
+        $data = [
+            // you may want to customize or obfuscate the message first
+            'message' => strtr($exception->getMessageKey(), $exception->getMessageData()),
+
+            // or to translate this message
+            // $this->translator->trans($exception->getMessageKey(), $exception->getMessageData())
+        ];
+
+        return new JsonResponse($data, Response::HTTP_UNAUTHORIZED);
+    }
+}