$response = RouteService::addNewRoute($objRoute); Utils::echoResponse($response); }); $app->put('/routes', function () use($app) { //Check authentication $rs = UserService::checkAuthentication($app->request->headers->get('apiKey')); if ($rs["status"] != SUCCESS) { Utils::echoResponse($rs); return; } //Get a user sent from client and convert it to a json object $jsonRoute = $app->request->getBody(); $objRoute = json_decode($jsonRoute, true); $objRoute['routeDesigner']['designerId'] = $rs['data']->id; //So even with a valid apiKey, the designer can access her own resources only $response = RouteService::updateRoute($objRoute); Utils::echoResponse($response); }); $app->delete('/routes', function () use($app) { //Check authentication $rs = UserService::checkAuthentication($app->request->headers->get('apiKey')); if ($rs["status"] != SUCCESS) { Utils::echoResponse($rs); return; } //Get a user sent from client and convert it to a json object $jsonRoute = $app->request->getBody(); $objRoute = json_decode($jsonRoute, true); $objRoute['routeDesigner']['designerId'] = $rs['data']->id; //So even with a valid apiKey, the designer can access her own resources only $response = RouteService::deleteRoute($objRoute);