Our API Server
Our API Server is a tool for create a REST service interface for our projects. The main objective of the project is the creation of a Standard Tool with supports for many existing projects, including Wordpress, Drupal or annother project. Also does not limit to Mysql data source, it can be widely extended with the use of plugins.Features:
- Creating APIs faster than any other system.
- Modify URL request structure.
- Make requests in any possible format (GET,POST,PUT,DELETE).
- Making and versioning APIs.
- Great graphical stats.
- Logs for each API requests.
- Utilization of plugins to extend server functionalities:
- Four TYPES of plugins (SOURCE, SECURITY, ENCRYPTION, OUTPUT).
- Five OUTPUTS plugins (XML, JSON , YAML, SERIALIZE, SIMPLE) or create your OWN.
- Five ACTION plugins (MYSQL, ODBC, SQLITE, PRINTER, EXECUTE) or create your OWN.
- Two security plugins (MYSQL, MANUAL) or create your OWN.
- Five encryption plugins (MD5, WORDPRESS, PLAIN, DRUPAL, SHA1) or create your OWN.
- Full Cache Support.
- Exhaustive documentation (samples, howtos and tutorials included);
Table of contents
Setup
Requirements
- Apache2
- mod_rewrite
- PHP 5.3.x
- php_sqlite
Installation
Just copy the project to the folder 'www' of Apache2.Configuration
The config of the projects is located onconfig.ini.- ROOT : URL where the project RUN.
- USER : admin user of the Project.
- PASS : pass for the USER.
leave in blank both (USER and PASS) for public access.
User Interface
The user interface is basically an API editor where you can perform the following actions:Add
Add new APIs.Edit
Edit a previously added API.Delete
Delete created APIs.Clone
Make an exact copy of any API.Export
Exports any API.Stats
Logs and graphical stats for the API's requests.Import
Imports a APIs that have been previously exported.How it works
- Mapped all API
- Upon receiving a request, if it matches the url mapped to the path, the class runs.
- It checks whether the mapping coincides with the method defined in the API.
- Security Checks.
- Executes the Action.
- Execute the Output.
Making an API
To create an API must provide certain information to the system, as the name, the description, the route… In short you need to implement a REST service in our web interface.API Basic
In this section we define the basic parameters of the API, which described below:Name
Friendly name of the api that is creatingDescription
Description of the API does (be explicit).Path
Path to access its api. This path is relative to the main path. Important: The path must start with "/"Path Example:
[SERVER_ROOT]/[API_PATH]
* [SERVER_ROOT]/
* [SERVER_ROOT]/simple/*
Cache
Time in seconds that the system cache the result of the API Incomings Request. Can be used to limit the amount of new requests in a time.Example Cache:
If you need that users can only make 60 requests in one hour then you must put the cache in 60 …
Method
Method to be used in the request. The system supports all methods although you can specify whether to connect via GET, POST, PUT, DELETE.Ouput
Output to be used to print the data. By default the server comes with four output plugins JSON, XML, YAML y SERIALIZE.Arguments
List of dynamic parameters that must be provided by the user order to obtain an output.Example Login:
If you add the parameter user_login as an argument, the route to be provide the user to access the service would be as follows:[SERVER_ROOT]/[API_PATH]?user_login=[USER_SUPPLIED_VALUE]
API Source
In this section we define the source from which the data were taken. The type of data source is pluggeable and by default the server has 4 types of sources:MySQL
To access data from a server must meet the parameters Mysql Connection:- host: Server path
- port: Server port (usually 3306 for mysql server)
- dbname: The database to which the connection will be established.
- user, pass: The credentials to connect to server.
Sqlite
The configuration to connect to a sqlite database is simpler, only requires a parameter:- dbname: Address of the database to which the connection will be established.
ODBC
To connect to an ODBC resource you need to set the following parameters:- dsn: ODBC Resource.
- user, pass: The credentials to use the resource, if necessary.
Printer
The printer does not need additional configuration. Just print the text in the Action option.Execute
Operative System Sentence for Execute.API Action
The action is executed on the server to provide an output in the selected format.For Example if you want to run a simple mysql action:
SELECT * FROM `wp_terms` LIMIT 30
SELECT user_login,user_nicename,user_email,user_registered
FROM `wp_users` WHERE user_login = :user_login LIMIT 30
The action Printer printed in the output the data used in the field action in the selected format.
For Example if in the action field is written Test printer the result to the output in JSON format would:
[ "Test printer" ]
API Security
You can also add security to your REST Service. By default, the server includes three plugins for applying security:Manual
The data source for credentials manually defined, to provide a simple authentication.Example Route:
If in the field user is writtenuser1 and pass write 1234 all users in the request MUST provide values user1 and 1234 and would be as follows in the API (this example for GET Method):[SERVER_ROOT]/[API_PATH]?user_login=[USER_SUPPLIED_VALUE]&__user=user1&__pass=1234
Mysql
The data source for credentials, is a Mysql database. Of course you have to configure the connection parameters and define actions to execute, to obtain credentials (_user y _pass)Example User and Password:
If you would like to select user_login from table wp_users would be as follows:`
SELECT user_login FROM wp_users WHERE user_login = :user_login
`If you would like to select user_pass from table wp_users would be as follows:
`
SELECT user_pass FROM wp_users WHERE user_login = :user_login
`which would remain in the path of API:
[SERVER_ROOT]/[API_PATH]?user_login=[USER_SUPPLIED_VALUE]&__user=[USER_VALUE]
&__pass=[PASS_VALUE]
None
Without security.Encryptation
The type of encryption complements and extends the security capabilities, the server includes 3 types of encryption MD5, WORDPRESS, PLAIN, DRUPAL, SHA1 and is used to compare the data extracted from the database with user-supplied.Example
To conclude this tutorial we leave this example which is included by default in the server:Basic
- [Name] :
wp_user - [Description] :
Get User Data from WordPress in JSON Format with WordPress Authentication - [Path] :
/wp/user - [Cache] :
0; - [Method] :
GET - [Output] :
JSON - [Arguments] :
user_login
Source
- [Type] :
MYSQL
- host :
[localhost] - port :
[3306] - dbname :
wordpress_db - user :
[wordpress_db_admin] - pass :
[wordpress_db_pass]
- host :
- [Action] :
SELECT user_login,user_nicename,user_email,user_registered FROMwp_usersWHERE user_login = :user_login LIMIT 30
Security
- [Type] :
MYSQL- host :
[localhost] - port :
[3306] - dbname :
wordpress_db - user :
[wordpress_db_admin] - pass :
[wordpress_db_pass]
- host :
- [User] :
SELECT user_login FROMwp_usersWHERE user_login = :user_login - [Password] :
SELECT user_pass FROMwp_usersWHERE user_login = :user_login - [Encryptation] :
WORDPRESS
[SERVER_ROOT]/wp/user&user_login=[VALUE_USER_LOGIN]&__user=[USER_VALUE]
&__pass=[PASS_VALUE]
ChangeLog
Version 1.2- Add methods PUT and DELETE.
- Add Logs for each API 's Request.
- Add Graphical Stats.
- Help for Actions Sentence.
- Refactorizing Store Method.
- Initial release.
Sources and Credits
We user the following files or proyects from 3rdparty:- Restler
- Symfony
- Boostrap-3.0.0
- Jquery
- Wordpress
- Rickshaw
- Fat-Free Framework
No comments:
Post a Comment