API

2021-12-06 22:10:41 -03:00
parent 10b2485cfd
commit 8ef4ab1c7d
41 changed files with 1256 additions and 57 deletions
--- a/api/common/Service/Auth.php
+++ b/api/common/Service/Auth.php
@ -0,0 +1,49 @@
+<?php
+namespace Contabilidad\Common\Service;
+
+use Psr\Http\Message\ServerRequestInterface as Request;
+
+class Auth {
+    protected string $key;
+    public function __construct(string $api_key) {
+        $this->key = $api_key;
+    }
+    public function isValid(Request $request): bool {
+        if ($request->hasHeader('Authorization')) {
+            $sent_key = $this->getAuthKey($request->getHeader('Authorization'));
+            return $this->key == $sent_key;
+        }
+        if (isset($request->getParsedBody()['api_key'])) {
+            $sent_key = $request->getParsedBody()['api_key'];
+            return $this->key == $sent_key;
+        }
+        $post = $request->getParsedBody() ?? json_decode($request->getBody());
+        $sent_key = $this->getArrayKey($post);
+        if ($sent_key !== null) {
+            return $this->key == $sent_key;
+        }
+        $sent_key = $this->getArrayKey($request->getQueryParams());
+        return $this->key == $sent_key;
+    }
+    protected function getAuthKey($auth) {
+        if (is_array($auth)) {
+            $auth = $auth[0];
+        }
+        if (str_contains($auth, 'Bearer')) {
+            $auth = explode(' ', $auth)[1];
+        }
+        return $auth;
+    }
+    protected function getArrayKey($array) {
+        $posible_keys = [
+            'API_KEY',
+            'api_key',
+        ];
+        foreach ($posible_keys as $key) {
+            if (isset($array[$key])) {
+                return $array[$key];
+            }
+        }
+        return null;
+    }
+}