initial plugin commit

Author: skie

Diff for: .editorconfig

@@ -0,0 +1,16 @@
+; This file is for unifying the coding style for different editors and IDEs.
+; More information at http://editorconfig.org
+
+root = false
+
+[*]
+indent_style = space
+indent_size = 4
+charset = "utf-8"
+end_of_line = lf
+insert_final_newline = true
+trim_trailing_whitespace = true
+
+[*.yml]
+indent_style = space
+indent_size = 2

Diff for: .gitignore

@@ -0,0 +1,10 @@
+.idea
+*.pyc
+*.cmd
+docs/_build
+phpunit.xml
+vendor/
+composer.lock
+tmp
+pmip
+webroot/coverage

Diff for: .semver

@@ -0,0 +1,5 @@
+---
+:major: 1
+:minor: 0
+:patch: 0
+:special: ''

Diff for: README.md

@@ -0,0 +1,39 @@
+Api plugin for CakePHP
+======================
+
+[![Bake Status](https://secure.travis-ci.org/CakeDC/cakephp-api.png?branch=master)](http://travis-ci.org/CakeDC/cakephp-api)
+[![Downloads](https://poser.pugx.org/CakeDC/cakephp-api/d/total.png)](https://packagist.org/packages/CakeDC/cakephp-api)
+[![Latest Version](https://poser.pugx.org/CakeDC/cakephp-api/v/stable.png)](https://packagist.org/packages/CakeDC/cakephp-api)
+[![License](https://poser.pugx.org/CakeDC/cakephp-api/license.svg)](https://packagist.org/packages/CakeDC/cakephp-api)
+
+The **CakePHP-API** Plugin allows to easily expose a versioned API in a few lines of code.
+
+Requirements
+------------
+
+* CakePHP 3.2.9+
+* PHP 5.5.9+
+
+Documentation
+-------------
+
+For documentation, as well as tutorials, see the [Docs](docs/home.md) directory of this repository.
+
+Support
+-------
+
+For bugs and feature requests, please use the [issues](https://github.com/CakeDC/api/issues) section of this repository.
+
+Commercial support is also available, [contact us](http://cakedc.com/contact) for more information.
+
+Contributing
+------------
+
+This repository follows the [CakeDC Plugin Standard](http://cakedc.com/plugin-standard). If you'd like to contribute new features, enhancements or bug fixes to the plugin, please read our [Contribution Guidelines](http://cakedc.com/contribution-guidelines) for detailed instructions.
+
+License
+-------
+
+Copyright 2016 Cake Development Corporation (CakeDC). All rights reserved.
+
+Licensed under the [MIT](http://www.opensource.org/licenses/mit-license.php) License. Redistributions of the source code included in this repository must retain the copyright notice found in each file.

Diff for: composer.json

@@ -0,0 +1,25 @@
+{
+    "name": "cakedc/cakephp-api",
+    "description": "Api plugin for CakePHP",
+    "type": "cakephp-plugin",
+    "require": {
+        "php": ">=5.4.16",
+        "cakephp/cakephp": "3.*"
+    },
+    "require-dev": {
+        "cakedc/users": "*" ,
+        "phpunit/phpunit": "*"
+    },
+    "autoload": {
+        "psr-4": {
+            "CakeDC\\Api\\": "src",
+            "CakeDC\\Api\\Test\\Fixture\\": "tests\\Fixture"
+        }
+    },
+    "autoload-dev": {
+        "psr-4": {
+            "CakeDC\\Api\\Test\\": "tests",
+            "Cake\\Test\\": "./vendor/cakephp/cakephp/tests"
+        }
+    }
+}

Diff for: config/api.php

@@ -0,0 +1,71 @@
+<?php
+/**
+ * Copyright 2016, Cake Development Corporation (http://cakedc.com)
+ *
+ * Licensed under The MIT License
+ * Redistributions of files must retain the above copyright notice.
+ *
+ * @copyright Copyright 2016, Cake Development Corporation (http://cakedc.com)
+ * @license MIT License (http://www.opensource.org/licenses/mit-license.php)
+ */
+
+return [
+    'Api' => [
+        // if service class is not defined we use crud fallback service
+        'ServiceFallback' => '\\CakeDC\\Api\\Service\\FallbackService',
+        // response rendered as JSend
+        'renderer' => 'CakeDC/Api.JSend',
+        // Data parse from cakephp request object
+        'parser' => 'CakeDC/Api.Form',
+
+        // version is not used
+        'useVersioning' => false,
+        'versionPrefix' => 'v',
+
+        // auth permission uses require auth strategy
+        'Auth' => [
+            'Crud' => [
+                'default' => 'auth'
+            ],
+        ],
+
+        'Service' => [
+            'default' => [
+                'options' => [],
+                'Action' => [
+                    'default' => [
+                        //auth configuration
+                        'Auth' => [
+                            'authorize' => [
+                                'CakeDC/Api.Crud' => []
+                            ],
+                            'authenticate' => [
+                                'CakeDC/Api.Token' => [
+                                    'require_ssl' => false,
+                                ]
+                            ],
+                        ],
+                        // default app extensions
+                        'Extension' => [
+                            // allow request from other domains
+                            'CakeDC/Api.Cors',
+                            // enable sort
+                            'CakeDC/Api.Sort',
+                            // load Hateoas
+                            'CakeDC/Api.CrudHateoas',
+                            // enable relations
+                            'CakeDC/Api.CrudRelations',
+                        ]
+                    ],
+                    // all index actions configuration
+                    'Index' => [
+                        'Extension' => [
+                            // enable pagination for index actions
+                            'CakeDC/Api.Paginate',
+                        ],
+                    ],
+                ],
+            ],
+        ],
+    ]
+];

Diff for: config/bootstrap.php

@@ -0,0 +1 @@
+<?php/** * Copyright 2016, Cake Development Corporation (http://cakedc.com) * * Licensed under The MIT License * Redistributions of files must retain the above copyright notice. * * @copyright Copyright 2016, Cake Development Corporation (http://cakedc.com) * @license MIT License (http://www.opensource.org/licenses/mit-license.php) */use Cake\Core\Configure;Configure::load('CakeDC/Api.api');collection((array)Configure::read('Api.config'))->each(function ($file) {    Configure::load($file);});

Diff for: config/routes.php

@@ -0,0 +1,53 @@
+<?php
+/**
+ * Copyright 2016, Cake Development Corporation (http://cakedc.com)
+ *
+ * Licensed under The MIT License
+ * Redistributions of files must retain the above copyright notice.
+ *
+ * @copyright Copyright 2016, Cake Development Corporation (http://cakedc.com)
+ * @license MIT License (http://www.opensource.org/licenses/mit-license.php)
+ */
+
+use Cake\Core\Configure;
+use Cake\Routing\Router;
+
+Router::plugin('CakeDC/Api', ['path' => '/api'], function ($routes) {
+    $useVersioning = Configure::read('Api.useVersioning');
+    $versionPrefix = Configure::read('Api.versionPrefix');
+    if (empty($versionPrefix)) {
+        $versionPrefix = 'v';
+    }
+    if ($useVersioning) {
+        $routes->connect('/:version/describe/*', [
+                'plugin' => 'CakeDC/Api',
+                'controller' => 'Api',
+                'action' => 'describe'
+            ], ['version' => $versionPrefix . '\d+', 'pass' => []]);
+        $routes->connect('/:version/list/*', [
+                'plugin' => 'CakeDC/Api',
+                'controller' => 'Api',
+                'action' => 'listing'
+            ], ['version' => $versionPrefix . '\d+', 'pass' => []]);
+        $routes->connect('/:version/:service/*', [
+                'plugin' => 'CakeDC/Api',
+                'controller' => 'Api',
+                'action' => 'process'
+            ], ['version' => $versionPrefix . '\d+', 'pass' => []]);
+    }
+    $routes->connect('/describe/*', [
+            'plugin' => 'CakeDC/Api',
+            'controller' => 'Api',
+            'action' => 'describe'
+        ]);
+    $routes->connect('/list/*', [
+            'plugin' => 'CakeDC/Api',
+            'controller' => 'Api',
+            'action' => 'listing'
+        ]);
+    $routes->connect('/:service/*', [
+            'plugin' => 'CakeDC/Api',
+            'controller' => 'Api',
+            'action' => 'process'
+        ]);
+});

Diff for: docs/Documentation/Renderers/jsend.md

@@ -0,0 +1,50 @@
+Jsend
+=====
+
+How to use?
+-----------
+
+By default we are already using this configuration. Then you don't need to do anything more unless the basic configuration.
+
+
+Response Types
+--------------
+
+**Success:** When an API call is successful, the JSend object is used as a simple envelope for the results, using the data key, as in the following example:
+
+**GET**
+
+When you use this route */api/list* and you have two controllers "Articles" and "Posts" for example you shall get this result.
+
+```
+{
+    "status": "success",
+    "data": [
+        "articles",
+        "posts"
+    ],
+    "links": []
+}
+```
+
+**POST**
+
+When you use this route */api/describe?token=YOUR_AUTH_TOKEN*. It'll describe your service. Here we are show an example using a service of the plugin.
+
+We need to send three fields in the post to do this request.
+
+```
+username: user
+password: password
+service: listing
+```
+
+This will give a response like that:
+```
+{
+    "status": "success",
+    "data": [],
+    "links": []
+}
+```
+

Diff for: docs/Documentation/Renderers/json.md

@@ -0,0 +1,74 @@
+## Authentication and Authorization.
+
+Auth system was inspired from cakephp framework auth component, and follow ideas that put into this system.
+
+
+## Auth Configuration
+
+Auth configuration should be defined as part of current Action configuration module.
+The default strategy for reading Action configuration described in previous step. 
+
+So global Auth configuration one should put into  `Api.Service.default.Action.default.Auth`.
+
+* `allow` - defines list of allowed for current service actions (could be action name, array of names, or ```'*'```).
+* `authorize` - defines what authorizes should be loaded to Authorize access.
+* `authenticate` - defines authentication strategy.
+ 
+ Example: 
+ 
+ ```php
+        'Auth' => [
+            'allow' => '*', //public access
+            'authorize' => [
+                'CakeDC/Api.Crud' => []
+            ],
+            'authenticate' => [
+                'CakeDC/Api.Token' => [
+                    'require_ssl' => false,
+                ]
+            ],
+        ], 
+ ```
+ ### TokenAuthenticate
+ 
+#### Setup
+ 
+ TokenAuthenticate default configuration is
+ ```php
+     protected $_defaultConfig = [
+         //type, can be either querystring or header
+         'type' => self::TYPE_QUERYSTRING,
+         //name to retrieve the api key value from
+        'name' => 'token',
+        //db table where the key is stored
+        'table' => 'users',
+        //db field where the key is stored
+        'field' => 'api_token',
+         //require SSL to pass the token. You should always require SSL to use tokens for Auth
+         'require_ssl' => true,
+     ];
+ ```
+ 
+ We are using query strings for passing the api_token token. And we require SSL by default.
+ Note you can override these options, passing settings in Auth configuration for TokenAuthenticate.
+ 
+ 
+ ### Simple Rbac Authorize.
+ 
+ Simple Rbac Authorize is based on CakeDC Users plugin Simple Rbac Authorize with modification to api structure. 
+ 
+ #### Permission rules syntax
+  
+ * Rules are evaluated top-down, first matching rule will apply
+ * Each rule is defined:
+ ```php
+ [
+     'role' => 'REQUIRED_NAME_OF_THE_ROLE_OR_[]_OR_*',
+     'version' => 'OPTIONAL_VERSION_USED_OR_[]_OR_*_DEFAULT_NULL',
+     'service' => 'REQUIRED_NAME_OF_THE_SERVICE_OR_[]_OR_*'
+     'action' => 'REQUIRED_NAME_OF_ACTION_OR_[]_OR_*',
+     'allowed' => 'OPTIONAL_BOOLEAN_OR_CALLABLE_OR_INSTANCE_OF_RULE_DEFAULT_TRUE'
+ ]
+ ```
+ * If no rule allowed = true is matched for a given user role and url, default return value will be false
+