Implement file upload

Author: mevdschee

api.php

@@ -3182,6 +3182,32 @@ public function handle(Request $request): Response
     }
 }
 
+// file: src/Tqdev/PhpCrudApi/Middleware/FileUploadMiddleware.php
+
+class FileUploadMiddleware extends Middleware
+{
+    public function handle(Request $request): Response
+    {
+        $files = $request->getUploadedFiles();
+        if (!empty($files)) {
+            $body = $request->getBody();
+            foreach ($files as $fieldName => $file) {
+                if (isset($file['error'])) {
+                    return $this->responder->error(ErrorCode::FILE_UPLOAD_FAILED, $fieldName);
+                }
+                foreach ($file as $key => $value) {
+                    if ($key == 'tmp_nam') {
+                        $value = base64_encode(file_get_contents($value));
+                    }
+                    $body[$fieldName . '_' . $key] = $value;
+                }
+            }
+            $request->setBody($body);
+        }
+        return $this->next->handle($request);
+    }
+}
+
 // file: src/Tqdev/PhpCrudApi/Middleware/FirewallMiddleware.php
 
 class FirewallMiddleware extends Middleware
@@ -4244,6 +4270,7 @@ class ErrorCode
     const TEMPORARY_OR_PERMANENTLY_BLOCKED = 1016;
     const BAD_OR_MISSING_XSRF_TOKEN = 1017;
     const ONLY_AJAX_REQUESTS_ALLOWED = 1018;
+    const FILE_UPLOAD_FAILED = 1019;
 
     private $values = [
         9999 => ["%s", Response::INTERNAL_SERVER_ERROR],
@@ -4266,6 +4293,7 @@ class ErrorCode
         1016 => ["Temporary or permanently blocked", Response::FORBIDDEN],
         1017 => ["Bad or missing XSRF token", Response::FORBIDDEN],
         1018 => ["Only AJAX requests allowed for '%s'", Response::FORBIDDEN],
+        1019 => ["File upload failed for '%s'", Response::UNPROCESSABLE_ENTITY],
     ];
 
     public function __construct(int $code)

examples/clients/auth0/vanilla.html

@@ -2,14 +2,16 @@
 <head>
 <meta charset="utf-8" /> 
 <script>
-var domain = ''; // hostname ending in '.auth0.com'
-var clientId = ''; // client id as defined in auth0
-var audience = ''; // api audience as defined in auth0
+//var domain = ''; // hostname ending in '.auth0.com'
+//var authUrl = 'https://'+domain+'/authorize';
+var authUrl = 'http://127.0.0.2/authorize.php'
+var clientId = 'default'; // client id as defined in auth0
+var audience = 'http://127.0.0.3/api.php'; // api audience as defined in auth0
 window.onload = function () {
     var match = RegExp('[#&]access_token=([^&]*)').exec(window.location.hash);
     var accessToken = match && decodeURIComponent(match[1].replace(/\+/g, ' '));
     if (!accessToken) {
-        document.location = 'https://'+domain+'/authorize?audience='+audience+'&response_type=token&client_id='+clientId+'&redirect_uri='+document.location.href;
+        document.location = authUrl+'?audience='+audience+'&response_type=token&client_id='+clientId+'&redirect_uri='+document.location.href;
     } else {
         document.location.hash = '';
         var req = new XMLHttpRequest();
@@ -19,7 +21,7 @@
                 document.getElementById('output').innerHTML = JSON.stringify(JSON.parse(req.responseText), undefined, 4);
             }
         }
-        url = '/api.php/records/posts?join=categories&join=tags&join=comments&filter=id,eq,1';
+        url = 'http://127.0.0.3/api.php/records/posts?join=categories&join=tags&join=comments&filter=id,eq,1';
         req.open("GET", url, true);
         req.setRequestHeader('X-Authorization', 'Bearer '+accessToken);
         req.send();

src/Tqdev/PhpCrudApi/Middleware/FileUploadMiddleware.php

@@ -0,0 +1,30 @@
+<?php
+namespace Tqdev\PhpCrudApi\Middleware;
+
+use Tqdev\PhpCrudApi\Middleware\Base\Middleware;
+use Tqdev\PhpCrudApi\Request;
+use Tqdev\PhpCrudApi\Response;
+
+class FileUploadMiddleware extends Middleware
+{
+    public function handle(Request $request): Response
+    {
+        $files = $request->getUploadedFiles();
+        if (!empty($files)) {
+            $body = $request->getBody();
+            foreach ($files as $fieldName => $file) {
+                if (isset($file['error'])) {
+                    return $this->responder->error(ErrorCode::FILE_UPLOAD_FAILED, $fieldName);
+                }
+                foreach ($file as $key => $value) {
+                    if ($key == 'tmp_nam') {
+                        $value = base64_encode(file_get_contents($value));
+                    }
+                    $body[$fieldName . '_' . $key] = $value;
+                }
+            }
+            $request->setBody($body);
+        }
+        return $this->next->handle($request);
+    }
+}

src/Tqdev/PhpCrudApi/Record/ErrorCode.php

@@ -30,6 +30,7 @@ class ErrorCode
     const TEMPORARY_OR_PERMANENTLY_BLOCKED = 1016;
     const BAD_OR_MISSING_XSRF_TOKEN = 1017;
     const ONLY_AJAX_REQUESTS_ALLOWED = 1018;
+    const FILE_UPLOAD_FAILED = 1019;
 
     private $values = [
         9999 => ["%s", Response::INTERNAL_SERVER_ERROR],
@@ -52,6 +53,7 @@ class ErrorCode
         1016 => ["Temporary or permanently blocked", Response::FORBIDDEN],
         1017 => ["Bad or missing XSRF token", Response::FORBIDDEN],
         1018 => ["Only AJAX requests allowed for '%s'", Response::FORBIDDEN],
+        1019 => ["File upload failed for '%s'", Response::UNPROCESSABLE_ENTITY],
     ];
 
     public function __construct(int $code)