/** * N.B.: if the user passed as input is a supporter, the method prefix '1' * to the token, making it 41-character long, rather than 40 * * @param PcApiApp $apiApp * @param int $userId * @return string */ public static function createToken(PcApiApp $apiApp, $userId) { $apiAppId = $apiApp->getId(); // if there is already a token entry for the application and the user, we delete it $c = new Criteria(); $c->add(PcApiTokenPeer::API_APP_ID, $apiAppId); $c->add(PcApiTokenPeer::USER_ID, $userId); PcApiTokenPeer::doDelete($c); $apiTokenEntry = new PcApiToken(); $tokenPrefix = PcUserPeer::retrieveByPK($userId)->isSupporter() ? '1' : ''; // we want to be extra-sure the token is unique $token = ''; $safetyCounter = 0; // to avoid infinite loop under any circumstances do { $token = $tokenPrefix . PcUtils::generate40CharacterRandomHash(); $c = new Criteria(); $c->add(PcApiTokenPeer::TOKEN, $token); $alreadyExisting = PcApiTokenPeer::doSelectOne($c); $safetyCounter++; if ($safetyCounter == 100) { throw new Exception("Detected possible infinite loop while creating API token"); } } while (is_object($alreadyExisting)); $apiTokenEntry->setToken($token)->setApiAppId($apiAppId)->setUserId($userId)->setExpiryTimestamp(time() + sfConfig::get('app_api_tokenValidity') * 3600)->save(); return $token; }
/** * * @param int $userId * @param string $description (='') - the description of the use * @return boolean - false is the user has got a personal api key already, true otherwise */ public static function createPersonalApiApp($userId, $description = '') { $alreadyExisting = is_object(self::retrieveByUserId($userId)); if ($alreadyExisting) { return false; } $apiKey = ''; $safetyCounter = 0; // to avoid infinite loop under any circumstances do { $apiKey = PcUtils::generate40CharacterRandomHash(); $c = new Criteria(); $c->add(PcApiAppPeer::API_KEY, $apiKey); $alreadyExisting = PcApiAppPeer::doSelectOne($c); $safetyCounter++; if ($safetyCounter == 100) { throw new Exception("Detected possible infinite loop while creating API key"); } } while (is_object($alreadyExisting)); $personalApiApp = new PcApiApp(); $personalApiApp->setUserId($userId)->setName('personal')->setApiKey($apiKey)->setApiSecret(PcUtils::generateRandomString(16))->setIsLimited(true)->setDescription($description)->save(); $apiKeyStats = new PcApiAppStats(); $apiKeyStats->setApiAppId($personalApiApp->getId())->setToday(date('Y-m-d'))->setLastHour(date('H'))->save(); $userKey = PcUserKeyPeer::retrieveByPK($userId); if (!is_object($userKey)) { $userKey = new PcUserKey(); $userKey->setUserId($userId)->setKey(PcUtils::generate32CharacterRandomHash())->save(); } return true; }