/**
* N.B.: if the user passed as input is a supporter, the method prefix '1'
* to the token, making it 41-character long, rather than 40
*
* @param PcApiApp $apiApp
* @param int $userId
* @return string
*/
public static function createToken(PcApiApp $apiApp, $userId)
{
$apiAppId = $apiApp->getId();
// if there is already a token entry for the application and the user, we delete it
$c = new Criteria();
$c->add(PcApiTokenPeer::API_APP_ID, $apiAppId);
$c->add(PcApiTokenPeer::USER_ID, $userId);
PcApiTokenPeer::doDelete($c);
$apiTokenEntry = new PcApiToken();
$tokenPrefix = PcUserPeer::retrieveByPK($userId)->isSupporter() ? '1' : '';
// we want to be extra-sure the token is unique
$token = '';
$safetyCounter = 0;
// to avoid infinite loop under any circumstances
do {
$token = $tokenPrefix . PcUtils::generate40CharacterRandomHash();
$c = new Criteria();
$c->add(PcApiTokenPeer::TOKEN, $token);
$alreadyExisting = PcApiTokenPeer::doSelectOne($c);
$safetyCounter++;
if ($safetyCounter == 100) {
throw new Exception("Detected possible infinite loop while creating API token");
}
} while (is_object($alreadyExisting));
$apiTokenEntry->setToken($token)->setApiAppId($apiAppId)->setUserId($userId)->setExpiryTimestamp(time() + sfConfig::get('app_api_tokenValidity') * 3600)->save();
return $token;
}
/**
*
* @param int $userId
* @param string $description (='') - the description of the use
* @return boolean - false is the user has got a personal api key already, true otherwise
*/
public static function createPersonalApiApp($userId, $description = '')
{
$alreadyExisting = is_object(self::retrieveByUserId($userId));
if ($alreadyExisting) {
return false;
}
$apiKey = '';
$safetyCounter = 0;
// to avoid infinite loop under any circumstances
do {
$apiKey = PcUtils::generate40CharacterRandomHash();
$c = new Criteria();
$c->add(PcApiAppPeer::API_KEY, $apiKey);
$alreadyExisting = PcApiAppPeer::doSelectOne($c);
$safetyCounter++;
if ($safetyCounter == 100) {
throw new Exception("Detected possible infinite loop while creating API key");
}
} while (is_object($alreadyExisting));
$personalApiApp = new PcApiApp();
$personalApiApp->setUserId($userId)->setName('personal')->setApiKey($apiKey)->setApiSecret(PcUtils::generateRandomString(16))->setIsLimited(true)->setDescription($description)->save();
$apiKeyStats = new PcApiAppStats();
$apiKeyStats->setApiAppId($personalApiApp->getId())->setToday(date('Y-m-d'))->setLastHour(date('H'))->save();
$userKey = PcUserKeyPeer::retrieveByPK($userId);
if (!is_object($userKey)) {
$userKey = new PcUserKey();
$userKey->setUserId($userId)->setKey(PcUtils::generate32CharacterRandomHash())->save();
}
return true;
}
