2019-03-21 21:12:45 +00:00
|
|
|
package Travelynx::Controller::Api;
|
|
|
|
use Mojo::Base 'Mojolicious::Controller';
|
|
|
|
|
|
|
|
use Travel::Status::DE::IRIS::Stations;
|
|
|
|
use UUID::Tiny qw(:std);
|
|
|
|
|
|
|
|
sub make_token {
|
|
|
|
return create_uuid_as_string(UUID_V4);
|
|
|
|
}
|
|
|
|
|
|
|
|
sub get_v0 {
|
|
|
|
my ($self) = @_;
|
|
|
|
|
|
|
|
my $api_action = $self->stash('user_action');
|
|
|
|
my $api_token = $self->stash('token');
|
|
|
|
if ( $api_action !~ qr{ ^ (?: status | history | action ) $ }x ) {
|
|
|
|
$self->render(
|
|
|
|
json => {
|
|
|
|
error => 'Invalid action',
|
|
|
|
},
|
|
|
|
);
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
if ( $api_token !~ qr{ ^ (?<id> \d+ ) - (?<token> .* ) $ }x ) {
|
|
|
|
$self->render(
|
|
|
|
json => {
|
|
|
|
error => 'Malformed token',
|
|
|
|
},
|
|
|
|
);
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
my $uid = $+{id};
|
|
|
|
$api_token = $+{token};
|
|
|
|
my $token = $self->get_api_token($uid);
|
|
|
|
if ( $api_token ne $token->{$api_action} ) {
|
|
|
|
$self->render(
|
|
|
|
json => {
|
|
|
|
error => 'Invalid token',
|
|
|
|
},
|
|
|
|
);
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
if ( $api_action eq 'status' ) {
|
|
|
|
my $status = $self->get_user_status($uid);
|
|
|
|
|
|
|
|
my @station_descriptions;
|
|
|
|
my $station_eva = undef;
|
|
|
|
my $station_lon = undef;
|
|
|
|
my $station_lat = undef;
|
|
|
|
|
|
|
|
if ( $status->{station_ds100} ) {
|
|
|
|
@station_descriptions
|
|
|
|
= Travel::Status::DE::IRIS::Stations::get_station(
|
|
|
|
$status->{station_ds100} );
|
|
|
|
}
|
|
|
|
if ( @station_descriptions == 1 ) {
|
|
|
|
( undef, undef, $station_eva, $station_lon, $station_lat )
|
|
|
|
= @{ $station_descriptions[0] };
|
|
|
|
}
|
|
|
|
$self->render(
|
|
|
|
json => {
|
|
|
|
deprecated => \0,
|
|
|
|
checked_in => (
|
|
|
|
$status->{checked_in}
|
|
|
|
or $status->{cancelled}
|
|
|
|
) ? \1 : \0,
|
|
|
|
station => {
|
|
|
|
ds100 => $status->{station_ds100},
|
|
|
|
name => $status->{station_name},
|
|
|
|
uic => $station_eva,
|
|
|
|
longitude => $station_lon,
|
|
|
|
latitude => $station_lat,
|
|
|
|
},
|
|
|
|
train => {
|
|
|
|
type => $status->{train_type},
|
|
|
|
line => $status->{train_line},
|
|
|
|
no => $status->{train_no},
|
|
|
|
},
|
|
|
|
actionTime => $status->{timestamp}->epoch,
|
|
|
|
scheduledTime => $status->{sched_ts}->epoch,
|
|
|
|
realTime => $status->{real_ts}->epoch,
|
|
|
|
},
|
|
|
|
);
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
$self->render(
|
|
|
|
json => {
|
|
|
|
error => 'not implemented',
|
|
|
|
},
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
sub set_token {
|
|
|
|
my ($self) = @_;
|
|
|
|
if ( $self->validation->csrf_protect->has_error('csrf_token') ) {
|
|
|
|
$self->render( 'account', invalid => 'csrf' );
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
my $token = make_token();
|
2019-03-22 15:56:49 +00:00
|
|
|
my $token_id = $self->app->token_type->{ $self->param('token') };
|
2019-03-21 21:12:45 +00:00
|
|
|
|
|
|
|
if ( not $token_id ) {
|
|
|
|
$self->redirect_to('account');
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
if ( $self->param('action') eq 'delete' ) {
|
|
|
|
$self->app->drop_api_token_query->execute( $self->current_user->{id},
|
|
|
|
$token_id );
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
$self->app->set_api_token_query->execute( $self->current_user->{id},
|
|
|
|
$token_id, $token );
|
|
|
|
}
|
|
|
|
$self->redirect_to('account');
|
|
|
|
}
|
|
|
|
|
|
|
|
1;
|