asgardius/restful-demo
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

repo init

Browse source
This commit is contained in:
Page Asgardius 2022-09-30 09:41:40 -07:00
parent 237296214c
commit 1da89502ee
16 changed files with 516 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

92
class/Items.php Normal file
View file

@ -0,0 +1,92 @@
<?php
class Items{
private $itemsTable = "items";
public $id;
public $name;
public $description;
public $price;
public $category_id;
public $created;
public $modified;
private $conn;
public function __construct($db){
$this->conn = $db;
}
function read(){
if($this->id) {
$stmt = $this->conn->prepare("SELECT * FROM ".$this->itemsTable." WHERE id = ?");
$stmt->bind_param("i", $this->id);
} else {
$stmt = $this->conn->prepare("SELECT * FROM ".$this->itemsTable);
}
$stmt->execute();
$result = $stmt->get_result();
return $result;
}
function create(){
$stmt = $this->conn->prepare("
INSERT INTO ".$this->itemsTable."(`name`, `description`, `price`, `category_id`, `created`)
VALUES(?,?,?,?,?)");
$this->name = htmlspecialchars(strip_tags($this->name));
$this->description = htmlspecialchars(strip_tags($this->description));
$this->price = htmlspecialchars(strip_tags($this->price));
$this->category_id = htmlspecialchars(strip_tags($this->category_id));
$this->created = htmlspecialchars(strip_tags($this->created));
$stmt->bind_param("ssiis", $this->name, $this->description, $this->price, $this->category_id, $this->created);
if($stmt->execute()){
return true;
}
return false;
}
function update(){
$stmt = $this->conn->prepare("
UPDATE ".$this->itemsTable."
SET name= ?, description = ?, price = ?, category_id = ?, created = ?
WHERE id = ?");
$this->id = htmlspecialchars(strip_tags($this->id));
$this->name = htmlspecialchars(strip_tags($this->name));
$this->description = htmlspecialchars(strip_tags($this->description));
$this->price = htmlspecialchars(strip_tags($this->price));
$this->category_id = htmlspecialchars(strip_tags($this->category_id));
$this->created = htmlspecialchars(strip_tags($this->created));
$stmt->bind_param("ssiisi", $this->name, $this->description, $this->price, $this->category_id, $this->created, $this->id);
if($stmt->execute()){
return true;
}
return false;
}
function delete(){
$stmt = $this->conn->prepare("
DELETE FROM ".$this->itemsTable."
WHERE id = ?");
$this->id = htmlspecialchars(strip_tags($this->id));
$stmt->bind_param("i", $this->id);
if($stmt->execute()){
return true;
}
return false;
}
}
?>

122
class/Users.php Normal file
View file

@ -0,0 +1,122 @@
<?php
class Users{
private $itemsTable = "users";
public $id;
public $firstname;
public $lastname;
public $email;
public $password;
public $country;
public $birthdate;
public $name;
public $description;
public $price;
public $category_id;
public $created;
public $modified;
private $conn;
public function __construct($db){
$this->conn = $db;
}
function read(){
$stmt = $this->conn->prepare("SELECT * FROM ".$this->itemsTable." WHERE id = ?");
$stmt->bind_param("s", $this->id);
$stmt->execute();
$result = $stmt->get_result();
return $result;
}
function rcheck(){
$stmt = $this->conn->prepare("SELECT id, password FROM ".$this->itemsTable." WHERE id=? AND password=?");
$stmt->bind_param("ss", $this->id, $this->password);
$stmt->execute();
$result = $stmt->get_result();
return $result;
}
function create(){
$stmt = $this->conn->prepare("
INSERT INTO ".$this->itemsTable."(`id`, `firstname`, `lastname`, `email`, `password`, `country`, `birthdate`)
VALUES(?,?,?,?,?,?,?)");
$this->id = htmlspecialchars(strip_tags($this->id));
$this->firstname = htmlspecialchars(strip_tags($this->firstname));
$this->lastname = htmlspecialchars(strip_tags($this->lastname));
$this->email = htmlspecialchars(strip_tags($this->email));
$this->password = htmlspecialchars(strip_tags($this->password));
$this->country = htmlspecialchars(strip_tags($this->country));
$this->birthdate = htmlspecialchars(strip_tags($this->birthdate));
$stmt->bind_param("sssssss", $this->id, $this->firstname, $this->lastname, $this->email, $this->password, $this->country, $this->birthdate);
if($stmt->execute()){
return true;
}
return false;
}
function check(){
$stmt = $this->conn->prepare("
SELECT id, password FROM ".$this->itemsTable." WHERE id=? AND password=?");
$this->id = htmlspecialchars(strip_tags($this->id));
$this->password = htmlspecialchars(strip_tags($this->password));
$stmt->bind_param("ss", $this->id, $this->password);
if($stmt->execute()){
return true;
}
return false;
}
function update(){
$stmt = $this->conn->prepare("
UPDATE ".$this->itemsTable."
SET name= ?, description = ?, price = ?, category_id = ?, created = ?
WHERE id = ?");
$this->id = htmlspecialchars(strip_tags($this->id));
$this->name = htmlspecialchars(strip_tags($this->name));
$this->description = htmlspecialchars(strip_tags($this->description));
$this->price = htmlspecialchars(strip_tags($this->price));
$this->category_id = htmlspecialchars(strip_tags($this->category_id));
$this->created = htmlspecialchars(strip_tags($this->created));
$stmt->bind_param("ssiisi", $this->name, $this->description, $this->price, $this->category_id, $this->created, $this->id);
if($stmt->execute()){
return true;
}
return false;
}
function delete(){
$stmt = $this->conn->prepare("
DELETE FROM ".$this->itemsTable."
WHERE id = ?");
$this->id = htmlspecialchars(strip_tags($this->id));
$stmt->bind_param("s", $this->id);
if($stmt->execute()){
return true;
}
return false;
}
}
?>

18
config/Database.php Normal file
View file

@ -0,0 +1,18 @@
<?php
class Database{
private $host = 'hostname';
private $user = 'user';
private $password = "password";
private $database = "database";
public function getConnection(){
$conn = new mysqli($this->host, $this->user, $this->password, $this->database);
if($conn->connect_error){
die("Error failed to connect to MySQL: " . $conn->connect_error);
} else {
return $conn;
}
}
}
?>

4
docs/check-example.txt Normal file
View file

@ -0,0 +1,4 @@
{
"id": "hackergirl",
"password": "test"
}

9
docs/create-example.txt Normal file
View file

@ -0,0 +1,9 @@
{
"id": "hackergirl",
"firstname": "Emily",
"lastname":"Asgardius",
"email":"hackergirl@asgardius.company",
"password": "test",
"country":"asteroid",
"birthdate": "1994-02-19"
}

3
docs/delete-example.txt Normal file
View file

@ -0,0 +1,3 @@
{
"id": "hackergirl"
}

4
docs/endpoints.txt Normal file
View file

@ -0,0 +1,4 @@
items/create.php
items/check.php
items/delete.php
items/read.php

3
docs/read-example.txt Normal file
View file

@ -0,0 +1,3 @@
{
"id": "hackergirl"
}

40
items.sql Normal file
View file

@ -0,0 +1,40 @@
CREATE TABLE `items` (
`id` int(11) NOT NULL,
`name` varchar(256) NOT NULL,
`description` text NOT NULL,
`price` int(255) NOT NULL,
`category_id` int(11) NOT NULL,
`created` datetime NOT NULL,
`modified` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP
) ENGINE=MyISAM DEFAULT CHARSET=utf8;
INSERT INTO `items` (`id`, `name`, `description`, `price`, `category_id`, `created`, `modified`) VALUES
(1, 'LG P880 4X HD', 'My first awesome phone!', 336, 3, '2014-06-01 01:12:26', '2014-05-31 17:42:26'),
(2, 'Google Nexus 4', 'The most awesome phone of 2013!', 299, 2, '2014-06-01 01:12:26', '2014-05-31 17:42:26'),
(3, 'Samsung Galaxy S4', 'How about no?', 600, 3, '2014-06-01 01:12:26', '2014-05-31 17:42:26'),
(6, 'Bench Shirt', 'The best shirt!', 29, 1, '2014-06-01 01:12:26', '2014-05-31 02:42:21'),
(7, 'Lenovo Laptop', 'My business partner.', 399, 2, '2014-06-01 01:13:45', '2014-05-31 02:43:39'),
(8, 'Samsung Galaxy Tab 10.1', 'Good tablet.', 259, 2, '2014-06-01 01:14:13', '2014-05-31 02:44:08'),
(9, 'Spalding Watch', 'My sports watch.', 199, 1, '2014-06-01 01:18:36', '2014-05-31 02:48:31'),
(10, 'Sony Smart Watch', 'The coolest smart watch!', 300, 2, '2014-06-06 17:10:01', '2014-06-05 18:39:51'),
(11, 'Huawei Y300', 'For testing purposes.', 100, 2, '2014-06-06 17:11:04', '2014-06-05 18:40:54'),
(12, 'Abercrombie Lake Arnold Shirt', 'Perfect as gift!', 60, 1, '2014-06-06 17:12:21', '2014-06-05 18:42:11'),
(13, 'Abercrombie Allen Brook Shirt', 'Cool red shirt!', 70, 1, '2014-06-06 17:12:59', '2014-06-05 18:42:49'),
(26, 'Another product', 'Awesome product!', 555, 2, '2014-11-22 19:07:34', '2014-11-21 21:37:34'),
(28, 'Wallet', 'You can absolutely use this one!', 799, 6, '2014-12-04 21:12:03', '2014-12-03 23:42:03'),
(31, 'Amanda Waller Shirt', 'New awesome shirt!', 333, 1, '2014-12-13 00:52:54', '2014-12-12 03:22:54'),
(42, 'Nike Shoes for Men', 'Nike Shoes', 12999, 3, '2015-12-12 06:47:08', '2015-12-12 07:17:08'),
(48, 'Bristol Shoes', 'Awesome shoes.', 999, 5, '2016-01-08 06:36:37', '2016-01-08 07:06:37'),
(60, 'Rolex Watch', 'Luxury watch.', 25000, 1, '2016-01-11 15:46:02', '2016-01-11 16:16:02');
ALTER TABLE `items`
ADD PRIMARY KEY (`id`);
ALTER TABLE `items`
MODIFY `id` int(11) NOT NULL AUTO_INCREMENT, AUTO_INCREMENT=61;

6
items/.htaccess Normal file
View file

@ -0,0 +1,6 @@
RewriteEngine On # Turn on the rewriting engine
RewriteRule ^read$ read.php [NC,L]
RewriteRule ^read/([0-9_-]*)$ read.php?id=$1 [NC,L]
RewriteRule ^create$ create.php [NC,L]
RewriteRule ^update$ update.php [NC,L]
RewriteRule ^delete$ delete.php [NC,L]

56
items/check.php Normal file
View file

@ -0,0 +1,56 @@
<?php
header("Access-Control-Allow-Origin: *");
header("Content-Type: application/json; charset=UTF-8");
header("Access-Control-Allow-Methods: POST");
header("Access-Control-Max-Age: 3600");
header("Access-Control-Allow-Headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With");
include_once '../config/Database.php';
include_once '../class/Users.php';
$database = new Database();
$db = $database->getConnection();
$islogincorrect = false;
$items = new Users($db);
$data = json_decode(file_get_contents("php://input"));
if(!empty($data->id) &&
!empty($data->password)){
$items->id = $data->id;
$items->password = $data->password;
}
//$items->id = (isset($_GET['id']) && $_GET['id']) ? $_GET['id'] : '0';
$result = $items->rcheck();
if($result->num_rows > 0){
$itemRecords=array();
$itemRecords["items"]=array();
while ($item = $result->fetch_assoc()) {
extract($item);
$itemDetails=array(
"id" => $id,
"password" => $password
);
if($data->id == $id && $data->password == $password) {
$islogincorrect = true;
}
array_push($itemRecords["items"], $itemDetails);
}
http_response_code(200);
//echo json_encode($itemRecords);
}
if(!empty($data->id) &&
!empty($data->password) && $islogincorrect){
http_response_code(201);
echo json_encode(array("message" => "Password is correct."));
}else{
http_response_code(403);
echo json_encode(array("message" => "Invalid credentials."));
}
?>

42
items/create.php Normal file
View file

@ -0,0 +1,42 @@
<?php
header("Access-Control-Allow-Origin: *");
header("Content-Type: application/json; charset=UTF-8");
header("Access-Control-Allow-Methods: POST");
header("Access-Control-Max-Age: 3600");
header("Access-Control-Allow-Headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With");
include_once '../config/Database.php';
include_once '../class/Users.php';
$database = new Database();
$db = $database->getConnection();
$items = new Users($db);
$data = json_decode(file_get_contents("php://input"));
if(!empty($data->id) && !empty($data->firstname) &&
!empty($data->lastname) && !empty($data->email) &&
!empty($data->password) && !empty($data->country) &&
!empty($data->birthdate)){
$items->id = $data->id;
$items->firstname = $data->firstname;
$items->lastname = $data->lastname;
$items->email = $data->email;
$items->password = $data->password;
$items->country = $data->country;
$items->birthdate = $data->birthdate;
if($items->create()){
http_response_code(201);
echo json_encode(array("message" => "Item was created."));
} else{
http_response_code(503);
echo json_encode(array("message" => "Unable to create item."));
}
}else{
http_response_code(400);
echo json_encode(array("message" => "Unable to create item. Data is incomplete."));
}
?>

31
items/delete.php Normal file
View file

@ -0,0 +1,31 @@
<?php
header("Access-Control-Allow-Origin: *");
header("Content-Type: application/json; charset=UTF-8");
header("Access-Control-Allow-Methods: POST");
header("Access-Control-Max-Age: 3600");
header("Access-Control-Allow-Headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With");
include_once '../config/Database.php';
include_once '../class/Users.php';
$database = new Database();
$db = $database->getConnection();
$items = new Users($db);
$data = json_decode(file_get_contents("php://input"));
if(!empty($data->id)) {
$items->id = $data->id;
if($items->delete()){
http_response_code(200);
echo json_encode(array("message" => "Item was deleted."));
} else {
http_response_code(503);
echo json_encode(array("message" => "Unable to delete item."));
}
} else {
http_response_code(400);
echo json_encode(array("message" => "Unable to delete items. Data is incomplete."));
}
?>

43
items/read.php Normal file
View file

@ -0,0 +1,43 @@
<?php
header("Access-Control-Allow-Origin: *");
header("Content-Type: application/json; charset=UTF-8");
include_once '../config/Database.php';
include_once '../class/Users.php';
$database = new Database();
$db = $database->getConnection();
$items = new Users($db);
//$items->id = (isset($_GET['id']) && $_GET['id']) ? $_GET['id'] : '0';
$data = json_decode(file_get_contents("php://input"));
if(!empty($data->id)) {
$items->id = $data->id;
}
$result = $items->read();
if($result->num_rows > 0){
$itemRecords=array();
$itemRecords["items"]=array();
while ($item = $result->fetch_assoc()) {
extract($item);
$itemDetails=array(
"id" => $id,
"firstname" => $firstname,
"lastname" => $lastname,
"email" => $email,
"password" => $password,
"country" => $country,
"birthdate" => $birthdate
);
array_push($itemRecords["items"], $itemDetails);
}
http_response_code(200);
echo json_encode($itemRecords);
}else{
http_response_code(404);
echo json_encode(
array("message" => "No item found.")
);
}

42
items/update.php Normal file
View file

@ -0,0 +1,42 @@
<?php
header("Access-Control-Allow-Origin: *");
header("Content-Type: application/json; charset=UTF-8");
header("Access-Control-Allow-Methods: POST");
header("Access-Control-Max-Age: 3600");
header("Access-Control-Allow-Headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With");
include_once '../config/Database.php';
include_once '../class/Items.php';
$database = new Database();
$db = $database->getConnection();
$items = new Items($db);
$data = json_decode(file_get_contents("php://input"));
if(!empty($data->id) && !empty($data->name) &&
!empty($data->description) && !empty($data->price) &&
!empty($data->category_id)){
$items->id = $data->id;
$items->name = $data->name;
$items->description = $data->description;
$items->price = $data->price;
$items->category_id = $data->category_id;
$items->created = date('Y-m-d H:i:s');
if($items->update()){
http_response_code(200);
echo json_encode(array("message" => "Item was updated."));
}else{
http_response_code(503);
echo json_encode(array("message" => "Unable to update items."));
}
} else {
http_response_code(400);
echo json_encode(array("message" => "Unable to update items. Data is incomplete."));
}
?>

1
users.sql Normal file
View file

@ -0,0 +1 @@
CREATE TABLE `users` ( `id` varchar(15) NOT NULL, `firstname` varchar(30) NOT NULL, `lastname` varchar(30) NOT NULL, `email` varchar(30) NOT NULL, `password` varchar(30) NOT NULL, `country` varchar(30) NOT NULL, `birthdate` date NOT NULL, UNIQUE KEY `id` (`id`) );