rbrecruiter/app/Http/Middleware/APIAuthenticationMiddleware...

<?php

namespace App\Http\Middleware;

use App\ApiKey;
use App\Facades\JSON;
use Carbon\Carbon;
use Closure;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Hash;
use Illuminate\Support\Facades\Log;
use Illuminate\Support\Facades\Route;
use Illuminate\Support\Str;

class APIAuthenticationMiddleware
{
    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @return mixed
     */
    public function handle(Request $request, Closure $next)
    {
        $key = $request->bearerToken();

        if (!is_null($key))
        {
            // we have a valid discriminator
            $discriminator = Str::before($key, '.');
            $loneKey = Str::after($key, '.');

            $keyRecord = ApiKey::where('discriminator', $discriminator)->first();

            if ($keyRecord && Hash::check($loneKey, $keyRecord->secret) && $keyRecord->status == 'active')
            {
                $keyRecord->last_used = Carbon::now();
                $keyRecord->save();

                Log::info('Recording API call, see context', [
                    'uri' => $request->url(),
                    'name' => Route::currentRouteName(),
                    'discriminator' => $discriminator,
                    'ip' => $request->ip()
                ]);

                return $next($request);
            }

            return JSON::setResponseType('error')
                ->setStatus('authfail')
                ->setMessage('Invalid / Revoked API key.')
                ->setCode(401)
                ->build();
        }

        return JSON::setResponseType('error')
            ->setStatus('malformed_key')
            ->setMessage('Missing or malformed API key.')
            ->setCode(400)
            ->build();

    }
}
API Resources and first endpoints 2021-03-31 02:55:09 +00:00			`<?php`

			`namespace App\Http\Middleware;`

			`use App\ApiKey;`
			`use App\Facades\JSON;`
			`use Carbon\Carbon;`
			`use Closure;`
			`use Illuminate\Http\Request;`
			`use Illuminate\Support\Facades\Hash;`
			`use Illuminate\Support\Facades\Log;`
Added logging to API calls 2021-03-31 18:53:23 +00:00			`use Illuminate\Support\Facades\Route;`
API Resources and first endpoints 2021-03-31 02:55:09 +00:00			`use Illuminate\Support\Str;`

			`class APIAuthenticationMiddleware`
			`{`
			`/**`
			`* Handle an incoming request.`
			`*`
			`* @param \Illuminate\Http\Request $request`
			`* @param \Closure $next`
			`* @return mixed`
			`*/`
			`public function handle(Request $request, Closure $next)`
			`{`
			`$key = $request->bearerToken();`

			`if (!is_null($key))`
			`{`
			`// we have a valid discriminator`
			`$discriminator = Str::before($key, '.');`
			`$loneKey = Str::after($key, '.');`

			`$keyRecord = ApiKey::where('discriminator', $discriminator)->first();`

			`if ($keyRecord && Hash::check($loneKey, $keyRecord->secret) && $keyRecord->status == 'active')`
			`{`
			`$keyRecord->last_used = Carbon::now();`
			`$keyRecord->save();`

Added logging to API calls 2021-03-31 18:53:23 +00:00			`Log::info('Recording API call, see context', [`
			`'uri' => $request->url(),`
			`'name' => Route::currentRouteName(),`
			`'discriminator' => $discriminator,`
			`'ip' => $request->ip()`
			`]);`

API Resources and first endpoints 2021-03-31 02:55:09 +00:00			`return $next($request);`
			`}`

			`return JSON::setResponseType('error')`
			`->setStatus('authfail')`
			`->setMessage('Invalid / Revoked API key.')`
			`->setCode(401)`
			`->build();`
			`}`

			`return JSON::setResponseType('error')`
			`->setStatus('malformed_key')`
			`->setMessage('Missing or malformed API key.')`
			`->setCode(400)`
			`->build();`

			`}`
			`}`