Skip to content

Firehed/api

BranchesTags
 
 

Repository files navigation

API Framework

Test Lint Static analysis codecov

Installation

API is available via composer:

composer require firehed/api

Usage

Set up an .apiconfig file, which contains JSON-formatted settings for the framework. See configuration below for additional information.

Generate a default front-controller:

./vendor/bin/generate_front_controller

After creating, modifying, or deleting endpoints, (re-)run the endpoint mapper:

./vendor/bin/generate_endpoint_list

If you have an automated build/deployment process, you should gitignore the generated files and run this script during that process. Otherwise you must run it manually and check in the changes.

Testing

For convenience, a trait is included that includes tests for the description methods of your endpoints. In your test case class (which typically extends PHPUnit\Framework\TestCase, use the trait:

use Firehed\API\Traits\EndpointTestCases

And add a getEndpoint method that returns an instance of the endpoint under test.

Be sure to add a @coversDefaultClass annotation to the test case - @covers annotations are present in all of the trait tests for code coverage reports.

Example

<?php

namespace MyApp\API\Endpoints\User;

use Firehed\API\Traits\EndpointTestCases;

/**
 * @coversDefaultClass MyApp\API\Endpoints\User\GetUserEndpoint
 * @covers ::<protected>
 * @covers ::<private>
 */
class CreateTest extends \PHPUnit\Framework\TestCase
{

    use EndpointTestCases;

    protected function getEndpoint() {
        return new GetUserEndpoint();
    }
}

Configuration

Place a file named .apiconfig in your project root. It uses JSON for the format.

Options

source: required string

The source code directory to scan for API endpoints. Most commonly src.

namespace: required string

A namespace to filter on when searching for endpoints.

webroot: required string

The directory to place a generated front controller. The value should be relative to the project root.

container: optional string

The path to a file which returns a PSR-11-compliant container for config values.

Container

If you set a container value in .apiconfig, the API will be made aware of the container (if you do not use the generated front controller, you may also do this manually). This is how to configure API endpoints at runtime. By convention, if the container has() an endpoint's fully-qualified class name, the dispatcher will get() and use that value when the route is dispatched. If no container is configured, or the container does not have a configuration for the routed endpoint, the routed endpoint will simply be instantiated via new $routedEndpointClassName.

Other auto-detected container entries:

Key Usage Detected
Psr\Log\LoggerInterface Internal logging generated front controller
Firehed\API\Authentication\ProviderInterface Authentication Provider Always if an AuthorizationProvider is set
Firehed\API\Authorization\ProviderInterface Authorization Provider Always if an AuthenticationProvider is set
Firehed\API\Errors\HandlerInterface Error Handler Always

Example

.apiconfig:

{
    "webroot": "public",
    "namespace": "Your\\Application",
    "source": "src",
    "container": "config.php"
}

config.php:

<?php
use Firehed\API;
use Psr\Log\LoggerInterface;
use Your\Application\Endpoints;

$container = new Pimple\Container();
// Endpoint config
$container[Endpoints\UserPost::class] = function ($c) {
    return new Endpoints\UserPost($c['some-dependency']);
};

// Other services
$container[API\Authentication\ProviderInterface::class] = function ($c) {
    // return your provider
};
$container[API\Authorization\ProviderInterface::class] = function ($c) {
    // return your provider
};
$container[LoggerInterface::class] = function ($c) {
    return new Monolog\Logger('your-application');
};

// ...
return new Pimple\Psr11\Container($container);

In this example, when your UserPost endpoint is routed, it will use the endpoint defined in the container - this allows for endpoints with required constructor arguments or other configuration.

If you have e.g. a UserGet endpoint which is not in the container, the dispatcher will automatically attempt to instantiate it with new. If that endpoint has no constructor arguments, this will be fine. However, this means your application will crash at runtime if it does - so any endpoints with required constructors must be configured in the container.

Error Handling

It is strongly discouraged to handle most exceptions that are thrown in an Endpoint's execute() method. Instead, prefer to write services that fail loudly by throwing exceptions and endpoints that expect the success case. This is not an absolute rule, but helps avoid deeply-nested try/catch blocks and other complexity around error handling.

The API framework is responsible for catching all exceptions thrown during an Endpoint's execute() method, and will provide them to dedicated exception handlers.

All endpoints that implement Firehed\API\Interfaces\HandlesOwnErrorsInterface (which is a part of EndpointInterface prior to v4.0.0) will have their handleException() method called with the thrown exception. This method may choose to ignore certain exception classes (by rethrowing them), but must return a PSR ResponseInterface when opting to handle an exception.

Starting in v3.1.0, error handling can be implemented globally by providing a Firehed\API\Errors\HandlerInterface to the Dispatcher via setErrorHandler(). This is functionally identical to HandlesOwnErrorInterface described above, with the addition that the PSR ServerRequestInterface will also be available (primarily so that the response can be formatted appropriately for the request, e.g. based on the Accept header).

Finally, a global fallback handler is configured by default, which will log the exception and return a generic 500 error.

Compatibility

This framework tries to strictly follow the rules of Semantic Versioning. In summary, this means that given a release named X.Y.Z:

  • Breaking changes will only be introduced when X is incremented
  • New features will only be introduced either when Y is incremented or when X is incremented and Y is reset to 0
  • Bugfixes may be introduced in any version increment

The term "breaking changes" should be interpreted to mean:

  • Additional required parameters being added to methods
  • Additional methods being added to interfaces
  • Tightening the typehints of a method or function parameter
  • Loosening the return type of a method or function
  • Deletion of any public method (except on classes marked as internal)
  • Additional system requirements (PHP version, extensions, etc.)
  • Substantial, non-optional behavior changes

Breaking changes DO NOT include:

  • Removal of a dependency (if you are implicitly relying on a dependency of this framework, you should explicitly add it into your own composer.json)
  • Removal of a class or method that is clearly marked internal

Whenever possible, deprecated functionality will be marked as such by trigger_error(string, E_USER_DEPRECATED) (in addition to release notes). Note that depending on your PHP settings, this may result in an ErrorException being thrown. Since that is a configurable behavior, it is NOT considered to be a BC break.

Additionally, the entire Firehed\API namespace should be considered reserved for the purposes of PSR-11 Container auto-detection. That is to say, if you use a key starting with Firehed\API in your container, you should expect that key may be retrieved and used without explicitly opting-in to the behavior it provides.

About

A PHP API toolkit

Topics

api php framework php-framework

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases 11

3.2.2 Latest
Feb 12, 2019
+ 10 releases

Packages

No packages published

Languages