Change order of appending files

mevdschee · mevdschee · commit 8b50d1e1cbe5 · 2018-05-20T19:02:17.000+02:00
diff --git a/src/Com/Tqdev/CrudApi/Router/SecurityHeaders.php b/src/Com/Tqdev/CrudApi/Router/SecurityHeaders.php
@@ -0,0 +1,57 @@
+<?php
+namespace Com\Tqdev\CrudApi\Router;
+
+use Com\Tqdev\CrudApi\Controller\Responder;
+use Com\Tqdev\CrudApi\Request;
+use Com\Tqdev\CrudApi\Response;
+
+class SecurityHeaders extends Middleware
+{
+    private $allowedOrigins;
+
+    public function __construct(Router $router, Responder $responder, String $allowedOrigins)
+    {
+        $router->load($this);
+        $this->allowedOrigins = $allowedOrigins;
+    }
+
+    private function isOriginAllowed(String $origin, String $allowedOrigins): bool
+    {
+        $found = false;
+        foreach (explode(',', $allowedOrigins) as $allowedOrigin) {
+            $hostname = preg_quote(strtolower(trim($allowedOrigin)));
+            $regex = '/^' . str_replace('\*', '.*', $hostname) . '$/';
+            if (preg_match($regex, $origin)) {
+                $found = true;
+                break;
+            }
+        }
+        return $found;
+    }
+
+    public function handle(Request $request): Response
+    {
+        $origin = $request->getHeader('Origin');
+        if ($origin) {
+            $allowedOrigins = $this->allowedOrigins;
+            if (!$this->isOriginAllowed($origin, $allowedOrigins)) {
+                return $this->responder->error(ErrorCode::ORIGIN_FORBIDDEN, $origin);
+            }
+        }
+        $method = $request->getMethod();
+        if ($method == 'OPTIONS') {
+            $response = new Response(Response::OK, '');
+            $response->addHeader('Access-Control-Allow-Headers', 'Content-Type, X-XSRF-TOKEN');
+            $response->addHeader('Access-Control-Allow-Methods', 'OPTIONS, GET, PUT, POST, DELETE, PATCH');
+            $response->addHeader('Access-Control-Allow-Credentials', 'true');
+            $response->addHeader('Access-Control-Max-Age', '1728000');
+        } else {
+            $response = $this->next->handle($request);
+        }
+        if ($origin) {
+            $response->addHeader('Access-Control-Allow-Credentials', 'true');
+            $response->addHeader('Access-Control-Allow-Origin', $origin);
+        }
+        return $response;
+    }
+}
diff --git a/src/Com/Tqdev/CrudApi/Router/SimpleRouter.php b/src/Com/Tqdev/CrudApi/Router/SimpleRouter.php
@@ -0,0 +1,82 @@
+<?php
+namespace Com\Tqdev\CrudApi\Router;
+
+use Com\Tqdev\CrudApi\Data\ErrorCode;
+use Com\Tqdev\CrudApi\Data\PathTree;
+use Com\Tqdev\CrudApi\Controller\Responder;
+use Com\Tqdev\CrudApi\Request;
+use Com\Tqdev\CrudApi\Response;
+
+class SimpleRouter implements Router
+{
+    private $responder;
+    private $routes;
+    private $midlewares;
+
+    public function __construct(Responder $responder)
+    {
+        $this->responder = $responder;
+        $this->routes = new PathTree();
+        $this->middlewares = array();
+    }
+
+    public function register(String $method, String $path, array $handler)
+    {
+        $parts = explode('/', trim($path, '/'));
+        array_unshift($parts, $method);
+        $this->routes->put($parts, $handler);
+    }
+
+    public function load(Middleware $middleware)/*: void*/
+    {
+        if (count($this->middlewares) > 0) {
+            $next = $this->middlewares[0];
+        } else {
+            $next = $this;
+        }
+        $middleware->setNext($next);
+        array_unshift($this->middlewares, $middleware);
+    }
+
+    public function route(Request $request): Response
+    {
+        $obj = $this;
+        if (count($this->middlewares) > 0) {
+            $obj = $this->middlewares[0];
+        }
+        return $obj->handle($request);
+    }
+
+    public function handle(Request $request): Response
+    {
+        $method = strtoupper($request->getMethod());
+        $path = explode('/', trim($request->getPath(0), '/'));
+        array_unshift($path, $method);
+
+        $functions = $this->matchPath($path, $this->routes);
+        if (count($functions) == 0) {
+            return $this->responder->error(ErrorCode::ROUTE_NOT_FOUND, $request->getPath());
+        }
+        return call_user_func($functions[0], $request);
+    }
+
+    private function matchPath(array $path, PathTree $tree): array
+    {
+        $values = array();
+        while (count($path) > 0) {
+            $key = array_shift($path);
+            if ($tree->has($key)) {
+                $tree = $tree->get($key);
+            } else if ($tree->has('*')) {
+                $tree = $tree->get('*');
+            } else {
+                $tree = null;
+                break;
+            }
+        }
+        if ($tree !== null) {
+            $values = $tree->getValues();
+        }
+        return $values;
+    }
+}
