#22 Add Asset API endpoint to upload a file from a URL or request body.

Author: joselfonseca

app/Entities/Assets/Asset.php

@@ -0,0 +1,21 @@
+<?php
+
+namespace App\Entities\Assets;
+
+use App\Support\UuidScopeTrait;
+use Illuminate\Database\Eloquent\Model;
+
+/**
+ * Class Asset
+ *
+ * @package App\Entities\Assets
+ */
+class Asset extends Model
+{
+    use UuidScopeTrait;
+
+    /**
+     * @var array
+     */
+    protected $guarded = ['id'];
+}

app/Events/AssetWasCreated.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace App\Events;
+
+use App\Entities\Assets\Asset;
+
+/**
+ * Class AssetWasCreated
+ *
+ * @package App\Events
+ */
+class AssetWasCreated
+{
+    /**
+     * @var \App\Entities\Assets\Asset
+     */
+    public $asset;
+
+    /**
+     * AssetWasCreated constructor.
+     *
+     * @param \App\Entities\Assets\Asset $asset
+     */
+    public function __construct(Asset $asset)
+    {
+        $this->asset = $asset;
+    }
+}

app/Exceptions/BodyTooLargeException.php

@@ -0,0 +1,15 @@
+<?php
+
+namespace App\Exceptions;
+
+use Exception;
+
+/**
+ * Class BodyTooLargeException
+ *
+ * @package App\Exceptions
+ */
+class BodyTooLargeException extends Exception
+{
+
+}

app/Http/Controllers/Api/Assets/UploadFileController.php

@@ -0,0 +1,197 @@
+<?php
+
+namespace App\Http\Controllers\Api\Assets;
+
+use GuzzleHttp\Client;
+use Illuminate\Http\Request;
+use App\Entities\Assets\Asset;
+use Dingo\Api\Routing\Helpers;
+use App\Events\AssetWasCreated;
+use App\Http\Controllers\Controller;
+use Illuminate\Support\Facades\Storage;
+use App\Exceptions\BodyTooLargeException;
+use GuzzleHttp\Exception\TransferException;
+use App\Transformers\Assets\AssetTransformer;
+use Dingo\Api\Exception\StoreResourceFailedException;
+
+/**
+ * Class UploadFileController
+ *
+ * @package App\Http\Controllers\Api\Assets
+ */
+class UploadFileController extends Controller
+{
+    use Helpers;
+
+    /**
+     * @var array
+     */
+    protected $validMimes = [
+        'image/jpeg' => [
+            'type' => 'image',
+            'extension' => 'jpeg',
+        ],
+        'image/jpg' => [
+            'type' => 'image',
+            'extension' => 'jpg',
+        ],
+        'image/png' => [
+            'type' => 'image',
+            'extension' => 'png',
+        ],
+    ];
+
+    /**
+     * @var \GuzzleHttp\Client
+     */
+    protected $client;
+
+    /**
+     * @var \App\Entities\Assets\Asset
+     */
+    protected $model;
+
+    /**
+     * UploadFileController constructor.
+     *
+     * @param \GuzzleHttp\Client $client
+     * @param \App\Entities\Assets\Asset $model
+     */
+    public function __construct(Client $client, Asset $model)
+    {
+        $this->client = $client;
+        $this->model = $model;
+    }
+
+    /**
+     * @param \Illuminate\Http\Request $request
+     * @return $this
+     */
+    public function store(Request $request)
+    {
+        if ($request->isJson()) {
+            $asset = $this->uploadFromUrl([
+                'url' => $request->get('url'),
+                'user' => $request->user(),
+            ]);
+        } else {
+            $body = ! (base64_decode($request->getContent())) ? $request->getContent() : base64_decode($request->getContent());
+            $asset = $this->uploadFromDirectFile([
+                'mime' => $request->header('Content-Type'),
+                'content' => $body,
+                'Content-Length' => $request->header('Content-Length'),
+                'user' => $request->user(),
+            ]);
+        }
+
+        event(new AssetWasCreated($asset));
+
+        return $this->response->item($asset, new AssetTransformer())->setStatusCode(201);
+    }
+
+    /**
+     * @param array $attributes
+     * @return mixed
+     */
+    protected function uploadFromDirectFile($attributes = [])
+    {
+        $this->validateMime($attributes['mime']);
+        $this->validateBodySize($attributes['Content-Length'], $attributes['content']);
+        $path = $this->storeInFileSystem($attributes);
+
+        return $this->storeInDatabase($attributes, $path);
+    }
+
+    /**
+     * @param array $attributes
+     * @return mixed
+     */
+    protected function uploadFromUrl($attributes = [])
+    {
+        $response = $this->callFileUrl($attributes['url']);
+        $attributes['mime'] = $response->getHeader('content-type')[0];
+        $this->validateMime($attributes['mime']);
+        $attributes['content'] = $response->getBody();
+        $path = $this->storeInFileSystem($attributes);
+
+        return $this->storeInDatabase($attributes, $path);
+    }
+
+    /**
+     * @param array $attributes
+     * @param $path
+     * @return mixed
+     */
+    protected function storeInDatabase(array $attributes, $path)
+    {
+        $file = $this->model->create([
+            'type' => $this->validMimes[$attributes['mime']]['type'],
+            'path' => $path,
+            'mime' => $attributes['mime'],
+            'user_id' => ! empty($attributes['user']) ? $attributes['user']->id : null,
+        ]);
+
+        return $file;
+    }
+
+    /**
+     * @param array $attributes
+     * @return string
+     */
+    protected function storeInFileSystem(array $attributes)
+    {
+        $path = md5(str_random(16).date('U')).'.'.$this->validMimes[$attributes['mime']]['extension'];
+        Storage::put($path, $attributes['content']);
+
+        return $path;
+    }
+
+    /**
+     * @param $url
+     * @return \Psr\Http\Message\ResponseInterface
+     */
+    protected function callFileUrl($url)
+    {
+        try {
+            $response = $this->client->get($url);
+            if ($response->getStatusCode() != 200) {
+                throw new StoreResourceFailedException("Validation Error", [
+                    'url' => "The url seems unreachable",
+                ]);
+            }
+
+            return $response;
+        } catch (TransferException $e) {
+            throw new StoreResourceFailedException("Validation Error", [
+                'url' => 'The url seems to be unreachable: '.$e->getCode(),
+            ]);
+        }
+    }
+
+    /**
+     * @param $mime
+     */
+    protected function validateMime($mime)
+    {
+        if (! array_key_exists($mime, $this->validMimes)) {
+            throw new StoreResourceFailedException("Validation Error", [
+                'Content-Type' => 'The Content Type sent is not valid',
+            ]);
+        }
+    }
+
+    /**
+     * @param $contentLength
+     * @param $content
+     * @throws \App\Exceptions\BodyTooLargeException
+     */
+    protected function validateBodySize($contentLength, $content)
+    {
+        if ($contentLength > config('files.maxsize', 1000000)) {
+            throw new BodyTooLargeException();
+        }
+        if (mb_strlen($content) > config('files.maxsize', 1000000)) {
+            throw new BodyTooLargeException();
+        }
+    }
+}

app/Providers/ErrorHandlerServiceProvider.php

@@ -4,6 +4,7 @@
 
 use Dingo\Api\Routing\Helpers;
 use Illuminate\Support\ServiceProvider;
+use App\Exceptions\BodyTooLargeException;
 use Illuminate\Auth\AuthenticationException;
 use Illuminate\Database\Eloquent\ModelNotFoundException;
 
@@ -35,5 +36,8 @@ public function register()
         app('Dingo\Api\Exception\Handler')->register(function (ModelNotFoundException $exception) {
             return $this->response->errorNotFound('404 Not Found');
         });
+        app('Dingo\Api\Exception\Handler')->register(function (BodyTooLargeException $exception) {
+            return $this->response->error("The body is too large", 413);
+        });
     }
 }

app/Transformers/Assets/AssetTransformer.php

@@ -0,0 +1,31 @@
+<?php
+
+namespace App\Transformers\Assets;
+
+use App\Entities\Assets\Asset;
+use League\Fractal\TransformerAbstract;
+
+/**
+ * Class AssetTransformer
+ *
+ * @package App\Transformers\Assets
+ */
+class AssetTransformer extends TransformerAbstract
+{
+    /**
+     * @param \App\Entities\Assets\Asset $model
+     * @return array
+     */
+    public function transform(Asset $model)
+    {
+        return [
+            'id' => $model->uuid,
+            'type' => $model->type,
+            'path' => $model->path,
+            'mime' => $model->mime,
+            'created_at' => $model->created_at->toIso8601String(),
+        ];
+    }
+
+
+}

database/migrations/2017_08_08_193843_create_assets_table.php

@@ -0,0 +1,38 @@
+<?php
+
+use Illuminate\Support\Facades\Schema;
+use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Database\Migrations\Migration;
+
+class CreateAssetsTable extends Migration
+{
+    /**
+     * Run the migrations.
+     *
+     * @return void
+     */
+    public function up()
+    {
+        Schema::create('assets', function (Blueprint $table) {
+            $table->increments('id');
+            $table->integer('user_id')->unsigned()->nullable();
+            $table->uuid('uuid');
+            $table->string('type', 45)->nullable();
+            $table->string('path', 45)->nullable();
+            $table->string('mime', 45)->nullable();
+            $table->timestamps();
+            $table->softDeletes();
+            $table->foreign('user_id')->references('id')->on('users');
+        });
+    }
+
+    /**
+     * Reverse the migrations.
+     *
+     * @return void
+     */
+    public function down()
+    {
+        Schema::dropIfExists('assets');
+    }
+}

docs/api/blueprint/apidocs.apib

@@ -45,5 +45,7 @@ The API uses conventional HTTP response codes to indicate the success or failure
 <!-- include(dataStructures/users.apib) -->
 <!-- include(dataStructures/roles.apib) -->
 <!-- include(dataStructures/permissions.apib) -->
+<!-- include(dataStructures/assets.apib) -->
 
-<!-- include(routes/users.apib) -->
+<!-- include(routes/users.apib) -->
+<!-- include(routes/assets.apib) -->

docs/api/blueprint/dataStructures/assets.apib

@@ -0,0 +1,7 @@
+### Asset Object (object)
++ id: `08279320-dfc9-11e5-a450-0002a5d5c51b`(string) - The asset ID
++ mime: `image/jpeg` (string) - The asset mime type
++ type: `image` (string) - The asset type
++ path: `12342bh3y3bn3i4i5ii5b43o3n.jpg` (string) - The asset path in the storage
++ created_at : `1997-07-16T19:20:30+01:00` (string) - Date in format iso 8601
+