2018-04-21 19:18:00 +02:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
namespace Grocy\Services;
|
|
|
|
|
|
|
|
|
|
class ApiKeyService extends BaseService
|
|
|
|
|
{
|
2019-03-04 17:44:48 +01:00
|
|
|
const API_KEY_TYPE_DEFAULT = 'default';
|
|
|
|
|
const API_KEY_TYPE_SPECIAL_PURPOSE_CALENDAR_ICAL = 'special-purpose-calendar-ical';
|
|
|
|
|
|
2018-04-21 19:18:00 +02:00
|
|
|
/**
|
|
|
|
|
* @return boolean
|
|
|
|
|
*/
|
2019-03-04 17:44:48 +01:00
|
|
|
public function IsValidApiKey($apiKey, $keyType = self::API_KEY_TYPE_DEFAULT)
|
2018-04-21 19:18:00 +02:00
|
|
|
{
|
|
|
|
|
if ($apiKey === null || empty($apiKey))
|
|
|
|
|
{
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
2019-03-04 17:44:48 +01:00
|
|
|
$apiKeyRow = $this->Database->api_keys()->where('api_key = :1 AND expires > :2 AND key_type = :3', $apiKey, date('Y-m-d H:i:s', time()), $keyType)->fetch();
|
2018-04-21 19:18:00 +02:00
|
|
|
if ($apiKeyRow !== null)
|
|
|
|
|
{
|
2019-09-17 17:54:09 +02:00
|
|
|
// This should not change the database file modification time as this is used
|
2019-09-17 17:49:58 +02:00
|
|
|
// to determine if REALLY something has changed
|
|
|
|
|
$dbModTime = $this->DatabaseService->GetDbChangedTime();
|
2018-04-21 19:18:00 +02:00
|
|
|
$apiKeyRow->update(array(
|
|
|
|
|
'last_used' => date('Y-m-d H:i:s', time())
|
|
|
|
|
));
|
2019-09-17 17:49:58 +02:00
|
|
|
$this->DatabaseService->SetDbChangedTime($dbModTime);
|
|
|
|
|
|
2018-04-21 19:18:00 +02:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @return string
|
|
|
|
|
*/
|
2019-03-04 17:44:48 +01:00
|
|
|
public function CreateApiKey($keyType = self::API_KEY_TYPE_DEFAULT)
|
2018-04-21 19:18:00 +02:00
|
|
|
{
|
|
|
|
|
$newApiKey = $this->GenerateApiKey();
|
|
|
|
|
|
|
|
|
|
$apiKeyRow = $this->Database->api_keys()->createRow(array(
|
|
|
|
|
'api_key' => $newApiKey,
|
2018-07-25 19:28:15 +02:00
|
|
|
'user_id' => GROCY_USER_ID,
|
2019-03-04 17:44:48 +01:00
|
|
|
'expires' => '2999-12-31 23:59:59', // Default is that API keys expire never
|
|
|
|
|
'key_type' => $keyType
|
2018-04-21 19:18:00 +02:00
|
|
|
));
|
|
|
|
|
$apiKeyRow->save();
|
|
|
|
|
|
|
|
|
|
return $newApiKey;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function RemoveApiKey($apiKey)
|
|
|
|
|
{
|
|
|
|
|
$this->Database->api_keys()->where('api_key', $apiKey)->delete();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function GetApiKeyId($apiKey)
|
|
|
|
|
{
|
|
|
|
|
$apiKey = $this->Database->api_keys()->where('api_key', $apiKey)->fetch();
|
|
|
|
|
return $apiKey->id;
|
|
|
|
|
}
|
|
|
|
|
|
2018-07-25 19:28:15 +02:00
|
|
|
public function GetUserByApiKey($apiKey)
|
|
|
|
|
{
|
|
|
|
|
$apiKeyRow = $this->Database->api_keys()->where('api_key', $apiKey)->fetch();
|
|
|
|
|
if ($apiKeyRow !== null)
|
|
|
|
|
{
|
|
|
|
|
return $this->Database->users($apiKeyRow->user_id);
|
|
|
|
|
}
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
2019-03-04 17:44:48 +01:00
|
|
|
// Returns any valid key for $keyType,
|
|
|
|
|
// not allowed for key type "default"
|
|
|
|
|
public function GetOrCreateApiKey($keyType)
|
|
|
|
|
{
|
|
|
|
|
if ($keyType === self::API_KEY_TYPE_DEFAULT)
|
|
|
|
|
{
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
$apiKeyRow = $this->Database->api_keys()->where('key_type = :1 AND expires > :2', $keyType, date('Y-m-d H:i:s', time()))->fetch();
|
|
|
|
|
if ($apiKeyRow !== null)
|
|
|
|
|
{
|
|
|
|
|
return $apiKeyRow->api_key;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
return $this->CreateApiKey($keyType);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-04-21 19:18:00 +02:00
|
|
|
private function GenerateApiKey()
|
|
|
|
|
{
|
|
|
|
|
return RandomString(50);
|
|
|
|
|
}
|
|
|
|
|
}
|
