Home Explore Help
Sign In
Medowar
/
feuerwehr-getraenkeautomat-status
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: af7211d2c6
Branches Tags
feuerwehr-getra...
/
api
/
v1
/
readings.php

readings.php 1.7 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. <?php
    2. 

  2. 

  3. declare(strict_types=1);
    4. 

  4. 

  5. require_once dirname(__DIR__, 2) . '/src/bootstrap.php';
    6. 

  6. 

  7. header('Access-Control-Allow-Methods: POST, OPTIONS');
    8. 

  8. header('Access-Control-Allow-Headers: Authorization, Content-Type');
    9. 

  9. 

  10. if ($_SERVER['REQUEST_METHOD'] === 'OPTIONS') {
    11. 

  11.     http_response_code(204);
    12. 

  12.     exit;
    13. 

  13. }
    14. 

  14. 

  15. if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
    16. 

  16.     app_json_response([
    17. 

  17.         'ok' => false,
    18. 

  18.         'error' => 'Nur POST ist erlaubt.',
    19. 

  19.     ], 405);
    20. 

  20. }
    21. 

  21. 

  22. $config = app_config_repository()->getConfig();
    23. 

  23. $expectedToken = (string) ($config['api']['bearer_token'] ?? '');
    24. 

  24. $authHeader = $_SERVER['HTTP_AUTHORIZATION']
    25. 

  25.     ?? $_SERVER['REDIRECT_HTTP_AUTHORIZATION']
    26. 

  26.     ?? '';
    27. 

  27. 

  28. if ($authHeader === '' && function_exists('getallheaders')) {
    29. 

  29.     $headers = getallheaders();
    30. 

  30.     $authHeader = $headers['Authorization'] ?? $headers['authorization'] ?? '';
    31. 

  31. }
    32. 

  32. 

  33. if (preg_match('/Bearer\s+(.+)/i', $authHeader, $matches) !== 1 || !hash_equals($expectedToken, trim($matches[1]))) {
    34. 

  34.     app_json_response([
    35. 

  35.         'ok' => false,
    36. 

  36.         'error' => 'Nicht autorisiert.',
    37. 

  37.     ], 401);
    38. 

  38. }
    39. 

  39. 

  40. try {
    41. 

  41.     $payload = app_read_json_body();
    42. 

  42.     $result = app_monitor_service()->processReading($payload);
    43. 

  43.     app_json_response($result);
    44. 

  44. } catch (InvalidArgumentException $exception) {
    45. 

  45.     $message = $exception->getMessage();
    46. 

  46.     $status = $message === 'Unbekannter Automat oder Sensor.' ? 404 : 422;
    47. 

  47.     app_json_response([
    48. 

  48.         'ok' => false,
    49. 

  49.         'error' => $message,
    50. 

  50.     ], $status);
    51. 

  51. } catch (RuntimeException $exception) {
    52. 

  52.     app_json_response([
    53. 

  53.         'ok' => false,
    54. 

  54.         'error' => $exception->getMessage(),
    55. 

  55.     ], 400);
    56. 

  56. } catch (Throwable $exception) {
    57. 

  57.     app_json_response([
    58. 

  58.         'ok' => false,
    59. 

  59.         'error' => 'Interner Fehler.',
    60. 

  60.     ], 500);
    61. 

  61. }
    62.