BookStack/app/Http/Controllers/Api/BookApiController.php

<?php

namespace BookStack\Http\Controllers\Api;

use BookStack\Entities\Models\Book;
use BookStack\Entities\Repos\BookRepo;
use Illuminate\Http\Request;
use Illuminate\Validation\ValidationException;

class BookApiController extends ApiController
{
    protected $bookRepo;

    protected $rules = [
        'create' => [
            'name'        => 'required|string|max:255',
            'description' => 'string|max:1000',
            'tags'        => 'array',
        ],
        'update' => [
            'name'        => 'string|min:1|max:255',
            'description' => 'string|max:1000',
            'tags'        => 'array',
        ],
    ];

    public function __construct(BookRepo $bookRepo)
    {
        $this->bookRepo = $bookRepo;
    }

    /**
     * Get a listing of books visible to the user.
     */
    public function list()
    {
        $books = Book::visible();

        return $this->apiListingResponse($books, [
            'id', 'name', 'slug', 'description', 'created_at', 'updated_at', 'created_by', 'updated_by', 'owned_by', 'image_id',
        ]);
    }

    /**
     * Create a new book in the system.
     *
     * @throws ValidationException
     */
    public function create(Request $request)
    {
        $this->checkPermission('book-create-all');
        $requestData = $this->validate($request, $this->rules['create']);

        $book = $this->bookRepo->create($requestData);

        return response()->json($book);
    }

    /**
     * View the details of a single book.
     */
    public function read(string $id)
    {
        $book = Book::visible()->with(['tags', 'cover', 'createdBy', 'updatedBy', 'ownedBy'])->findOrFail($id);

        return response()->json($book);
    }

    /**
     * Update the details of a single book.
     *
     * @throws ValidationException
     */
    public function update(Request $request, string $id)
    {
        $book = Book::visible()->findOrFail($id);
        $this->checkOwnablePermission('book-update', $book);

        $requestData = $this->validate($request, $this->rules['update']);
        $book = $this->bookRepo->update($book, $requestData);

        return response()->json($book);
    }

    /**
     * Delete a single book.
     * This will typically send the book to the recycle bin.
     *
     * @throws \Exception
     */
    public function delete(string $id)
    {
        $book = Book::visible()->findOrFail($id);
        $this->checkOwnablePermission('book-delete', $book);

        $this->bookRepo->destroy($book);

        return response('', 204);
    }
}
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00			`<?php`

			`namespace BookStack\Http\Controllers\Api;`
Started core API route work 2019-12-28 09:58:07 -05:00
Fixed some mis-refactoring and split search service Search service broken into index and runner tools. 2020-11-21 19:17:45 -05:00			`use BookStack\Entities\Models\Book;`
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`use BookStack\Entities\Repos\BookRepo;`
			`use Illuminate\Http\Request;`
Added a view for the API docs 2020-01-15 15:18:02 -05:00			`use Illuminate\Validation\ValidationException;`
Started core API route work 2019-12-28 09:58:07 -05:00
Added chapters to the API 2020-05-22 19:28:41 -04:00			`class BookApiController extends ApiController`
Started core API route work 2019-12-28 09:58:07 -05:00			`{`
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`protected $bookRepo;`

			`protected $rules = [`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`'create' => [`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00			`'name' => 'required\|string\|max:255',`
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`'description' => 'string\|max:1000',`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00			`'tags' => 'array',`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`],`
			`'update' => [`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00			`'name' => 'string\|min:1\|max:255',`
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`'description' => 'string\|max:1000',`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00			`'tags' => 'array',`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`],`
			`];`

Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`public function __construct(BookRepo $bookRepo)`
			`{`
			`$this->bookRepo = $bookRepo;`
			`}`

Started core API route work 2019-12-28 09:58:07 -05:00			`/**`
			`* Get a listing of books visible to the user.`
			`*/`
Added "Getting Started" API docs 2020-01-18 09:03:11 -05:00			`public function list()`
Started core API route work 2019-12-28 09:58:07 -05:00			`{`
			`$books = Book::visible();`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00
Started core API route work 2019-12-28 09:58:07 -05:00			`return $this->apiListingResponse($books, [`
Made fixes/updates during pre-release review - Fixed page editor default focus not working as expected due to misnamed attribute. - Added owned_by to relevant areas of the API including the docs. - Made book relation on page accessible even if deleted since it could cause an issue on views, such as audit trail, when the relation is accessed when the book is deleted. 2021-01-03 17:29:58 -05:00			`'id', 'name', 'slug', 'description', 'created_at', 'updated_at', 'created_by', 'updated_by', 'owned_by', 'image_id',`
Started core API route work 2019-12-28 09:58:07 -05:00			`]);`
			`}`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`/**`
Added a view for the API docs 2020-01-15 15:18:02 -05:00			`* Create a new book in the system.`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00			`*`
Added a view for the API docs 2020-01-15 15:18:02 -05:00			`* @throws ValidationException`
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`*/`
			`public function create(Request $request)`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`{`
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`$this->checkPermission('book-create-all');`
			`$requestData = $this->validate($request, $this->rules['create']);`

			`$book = $this->bookRepo->create($requestData);`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`return response()->json($book);`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`}`

Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`/**`
			`* View the details of a single book.`
			`*/`
			`public function read(string $id)`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`{`
Made fixes/updates during pre-release review - Fixed page editor default focus not working as expected due to misnamed attribute. - Added owned_by to relevant areas of the API including the docs. - Made book relation on page accessible even if deleted since it could cause an issue on views, such as audit trail, when the relation is accessed when the book is deleted. 2021-01-03 17:29:58 -05:00			`$book = Book::visible()->with(['tags', 'cover', 'createdBy', 'updatedBy', 'ownedBy'])->findOrFail($id);`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`return response()->json($book);`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`}`

Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`/**`
			`* Update the details of a single book.`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00			`*`
Added a view for the API docs 2020-01-15 15:18:02 -05:00			`* @throws ValidationException`
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`*/`
			`public function update(Request $request, string $id)`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`{`
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`$book = Book::visible()->findOrFail($id);`
			`$this->checkOwnablePermission('book-update', $book);`

			`$requestData = $this->validate($request, $this->rules['update']);`
			`$book = $this->bookRepo->update($book, $requestData);`

			`return response()->json($book);`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`}`

Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`/**`
Added pages API doc examples Made some tweaks to related content and other examples while there. 2020-11-28 10:21:54 -05:00			`* Delete a single book.`
			`* This will typically send the book to the recycle bin.`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00			`*`
Fixed some mis-refactoring and split search service Search service broken into index and runner tools. 2020-11-21 19:17:45 -05:00			`* @throws \Exception`
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`*/`
			`public function delete(string $id)`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`{`
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`$book = Book::visible()->findOrFail($id);`
			`$this->checkOwnablePermission('book-delete', $book);`

			`$this->bookRepo->destroy($book);`
Apply fixes from StyleCI 2021-06-26 11:23:15 -04:00
Filled out base Book API endpoints, added example responses 2020-01-12 09:45:54 -05:00			`return response('', 204);`
Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4 2020-01-01 11:33:47 -05:00			`}`
Ran phpcbf and updated phpcs.xml 2021-03-07 17:24:05 -05:00			`}`