Merge pull request #75 from WebDevStudios/feature/CC-87-use-woocommerce-native-API

Use WooCommerce Native API Auth Instead of JWT

Author: ggwicz

.gitignore

@@ -1,3 +1,4 @@
+**/.DS_Store
 /vendor/*
 /node_modules/*
 .nvimrc

composer.lock

@@ -21,9 +21,7 @@
 use WebDevStudios\CCForWoo\AbandonedCarts\CartHandler;
 use WebDevStudios\CCForWoo\AbandonedCarts\CartsTable;
 use WebDevStudios\CCForWoo\AbandonedCarts\CartRecovery;
-use WebDevStudios\CCForWoo\Ajax\GenerateSecretKey;
-use WebDevStudios\CCForWoo\Rest\V1\Registrar as RestRegistrar;
-use WebDevStudios\CCForWoo\Rest\V1\AuthHandler as RestAuthHandler;
+use WebDevStudios\CCForWoo\Rest\Registrar as RestRegistrar;
 
 /**
  * "Core" plugin class.
@@ -79,8 +77,6 @@ final class Plugin extends ServiceRegistrar {
 		CartsTable::class,
 		CartRecovery::class,
 		RestRegistrar::class,
-		RestAuthHandler::class,
-		GenerateSecretKey::class,
 	];
 
 	/**

src/Ajax/GenerateSecretKey.php

@@ -7,17 +7,18 @@
  * @since   2019-10-16
  */
 
-namespace WebDevStudios\CCForWoo\Rest\V1\Endpoints;
+namespace WebDevStudios\CCForWoo\Rest\Endpoints;
 
 use WP_REST_Server;
 use WP_REST_Request;
 use WP_REST_Controller;
 use WP_REST_Response;
+use WP_Error;
 use WC_Product;
 
 use WebDevStudios\CCForWoo\AbandonedCarts\CartsTable;
 use WebDevStudios\CCForWoo\AbandonedCarts\Cart;
-use WebDevStudios\CCForWoo\Rest\V1\Registrar;
+use WebDevStudios\CCForWoo\Rest\Registrar;
 
 /**
  * Class AbandonedCarts
@@ -55,17 +56,33 @@ public function __construct() {
 	 */
 	public function register_routes() {
 		register_rest_route(
-			Registrar::$namespace, '/' . $this->rest_base,
+			Registrar::$namespace,
+			'/' . $this->rest_base,
 			[
 				[
-					'methods'  => WP_REST_Server::READABLE,
-					'callback' => [ $this, 'get_items' ],
+					'methods'             => WP_REST_Server::READABLE,
+					'callback'            => [ $this, 'get_items' ],
+					'permission_callback' => [ $this, 'get_items_permissions_check' ],
 				],
 				'schema' => null,
 			]
 		);
 	}
 
+	/**
+	 * Check whether a given request has permission to show abandoned carts.
+	 *
+	 * @param  WP_REST_Request $request Full details about the request.
+	 * @return WP_Error|boolean
+	 */
+	public function get_items_permissions_check( $request ) {
+		if ( ! wc_rest_check_manager_permissions( 'settings', 'read' ) ) {
+			return new WP_Error( 'cc-woo-rest-not-allowed', esc_html__( 'Sorry, you cannot list resources.', 'cc-woo' ), [ 'status' => rest_authorization_required_code() ] );
+		}
+
+		return true;
+	}
+
 	/**
 	 * Register the Abandoned Carts endpoint.
 	 *
@@ -188,7 +205,7 @@ private function get_cart_data( int $per_page, int $offset, string $date_min, st
 		);
 		// phpcs:enable WordPress.DB.PreparedSQL
 
-		return $this->prepare_cart_data_for_api( $data );
+		return $this->prepare_cart_data_for_api_response( $data );
 	}
 
 	/**
@@ -230,7 +247,7 @@ private function get_dates_where( string $date_min, string $date_max ) : string
 	 * @param array $data The carts whose fields need preparation.
 	 * @return array
 	 */
-	private function prepare_cart_data_for_api( array $data ) {
+	private function prepare_cart_data_for_api_response( array $data ) {
 		foreach ( $data as $cart ) {
 			$cart->cart_contents     = maybe_unserialize( $cart->cart_contents );
 			$cart->cart_contents     = $this->get_additional_product_fields( $cart->cart_contents );

src/Plugin.php

@@ -0,0 +1,74 @@
+<?php
+/**
+ * CCforWoo REST Registrar.
+ *
+ * @author  George Gecewicz <[email protected]>
+ * @package WebDevStudios\CCForWoo\Rest
+ * @since   2019-11-13
+ */
+
+namespace WebDevStudios\CCForWoo\Rest;
+
+use WebDevStudios\OopsWP\Structure\Service;
+
+/**
+ * Class Registrar
+ *
+ * @author  George Gecewicz <[email protected]>
+ * @package WebDevStudios\CCForWoo\Rest
+ * @since   2019-11-13
+ */
+class Registrar extends Service {
+
+    /**
+	 * Namespace for the endpoints this registrar registers.
+	 *
+	 * @since 2019-10-16
+	 *
+	 * @var string
+	 */
+    public static $namespace = 'wc/cc-woo';
+
+	/**
+	 * Register hooks.
+	 *
+	 * @author George Gecewicz <[email protected]>
+	 * @since  2019-11-13
+	 */
+	public function register_hooks() {
+        add_action( 'rest_api_init', [ $this, 'init_rest_endpoints' ] );
+        add_filter( 'woocommerce_rest_is_request_to_rest_api', [ $this, 'register_endpoints_with_woo_auth_handler' ] );
+    }
+
+	/**
+	 * Initialize REST endpoints.
+	 *
+	 * @author George Gecewicz <[email protected]>
+	 * @since  2019-11-13
+	 */
+	public function init_rest_endpoints() {
+		( new Endpoints\AbandonedCarts() )->register_routes();
+    }
+
+    /**
+	 * Register REST endpoints with WooCommerce's REST auth handler.
+	 *
+	 * @author George Gecewicz <[email protected]>
+	 * @since  2019-11-13
+     *
+     * @return bool
+	 */
+    public function register_endpoints_with_woo_auth_handler() {
+        $request_uri = esc_url_raw( wp_unslash( $_SERVER['REQUEST_URI'] ) );
+
+        if ( empty( $request_uri ) ) {
+            return false;
+        }
+
+		$rest_prefix = trailingslashit( rest_get_url_prefix() );
+
+        return false !== strpos( $request_uri, $rest_prefix . self::$namespace );
+    }
+
+}
+