bakaphp / phalcon-api

library/Bootstrap/Api.php

<?php


declare(strict_types=1);


namespace Gewaer\Bootstrap;


use function Gewaer\Core\appPath;

use Phalcon\Di\FactoryDefault;

use Phalcon\Mvc\Micro;

use Gewaer\Http\Response;

use Phalcon\Http\Request;

use Throwable;

use Dmkit\Phalcon\Auth\Middleware\Micro as AuthMicro;

use Gewaer\Exception\ServerErrorHttpException;

use Gewaer\Constants\Flags;

use Baka\Http\RouterCollection;


/**

 * Class Api

 *

 * @package Gewaer\Bootstrap

 *

 * @property Micro $application

 */

class Api extends AbstractBootstrap

{

    /**

     * Run the application

     *

     * @return mixed

     */

    public function run()

    {

        try {

            $config = $this->container->getConfig()->jwt->toArray();


            //if the router has jwt ignore url we always overwrite the app config

            $routerJwtIgnoreUrl = RouterCollection::getJwtIgnoreRoutes();

The method getJwtIgnoreRoutes() does not exist on Baka\Http\RouterCollection.

            if (!empty($routerJwtIgnoreUrl)) {

                $config['ignoreUri'] = $routerJwtIgnoreUrl;

            }

            elseif (!$this->container->getConfig()->application->jwtSecurity) {

                //ignore token validation if disable

                $config['ignoreUri'] = ['regex: *'];

            }


            //JWT Validation

            $auth = new AuthMicro($this->application, $config);


            return $this->application->handle();

        } catch (Throwable $e) {

            $this->handleException($e)->send();

        }

    }


    /**

     * Handle the exception we throw from our api

     *

     * @param Throwable $e

     * @return Response

     */

    public function handleException(Throwable $e): Response

    {

        $response = new Response();

        $request = new Request();

        $identifier = $request->getServerAddress();

        $config = $this->container->getConfig();


        $httpCode = (method_exists($e, 'getHttpCode')) ? $e->getHttpCode() : 400;

        $httpMessage = (method_exists($e, 'getHttpMessage')) ? $e->getHttpMessage() : 'Bad Request';

        $data = (method_exists($e, 'getData')) ? $e->getData() : [];


        $message = $e->getMessage();

        $response->setHeader('Access-Control-Allow-Origin', '*'); //@todo check why this fales on nginx

        $response->setStatusCode($httpCode, $httpMessage);

        $response->setContentType('application/json');

        $response->setJsonContent([

            'errors' => [

                'type' => $httpMessage,

                'identifier' => $identifier,

                'message' => $e->getMessage(),

                'trace' => strtolower($config->app->env) != Flags::PRODUCTION ? $e->getTraceAsString() : null,

                'data' => $data,

            ],

        ]);


        //only log when server error production is seerver error or dev

        if ($e instanceof ServerErrorHttpException || strtolower($config->app->env) != Flags::PRODUCTION) {

            $this->container->getLog()->error($e);

        }


        return $response;

    }


    /**

     * @return mixed

     */

    public function setup()

    {

        //set the default DI

        $this->container = new FactoryDefault();

        //set all the services

        $this->providers = require appPath('api/config/providers.php');


        //run my parents setup

        parent::setup();

    }

}