From d37eb6858bb47776d9497336178059fa87963e10 Mon Sep 17 00:00:00 2001 From: Sylvester Johansson Date: Tue, 3 Jun 2008 22:41:54 +0200 Subject: [PATCH] Extended the JSON interface with a query method. --- web/html/rpc.php | 8 +++++- web/lib/aurjson.class.php | 67 +++++++++++++++++++++++++++++++++++++++++---- 2 files changed, 68 insertions(+), 7 deletions(-) diff --git a/web/html/rpc.php b/web/html/rpc.php index 033cba5..8ca0f4b 100644 --- a/web/html/rpc.php +++ b/web/html/rpc.php @@ -19,11 +19,17 @@ if ( $_SERVER['REQUEST_METHOD'] == 'GET' ) { echo '
'; - echo 'Each method requires the following HTTP GET syntax:
'; + echo 'search and info requires the following HTTP GET syntax:
'; echo '   type=methodname&arg=data

'; echo 'Where methodname is the name of an allowed method, and data is the argument to the call.
'; echo '
'; + echo '
'; + echo 'query has the following syntax:
'; + echo 'type=query&arg=<term>&include=<field1>:<field2>:...:<fieldN>
'; + echo 'where fieldN is a field to be included in the result. Allowed fields are:
'; + echo 'ID, Name, Version, Description, URL, URLPath, License, NumVotes and OutOfDate
'; echo 'If you need jsonp type callback specification, you can provide an additional variable callback.
'; echo 'Example URL:
   http://aur-url/rpc.php?type=search&arg=foobar&callback=jsonp1192244621103'; echo ''; diff --git a/web/lib/aurjson.class.php b/web/lib/aurjson.class.php index be92c25..02fe387 100644 --- a/web/lib/aurjson.class.php +++ b/web/lib/aurjson.class.php @@ -1,4 +1,5 @@ exposed_methods) ) { // ugh. this works. I hate you php. - $json = call_user_func_array(array(&$this,$http_data['type']),$http_data['arg']); - // allow rpc callback for XDomainAjax - if ( isset($http_data['callback']) ) { - return $http_data['callback'] . "({$json})"; + if ($http_data['type'] === 'query') { + return $this->query($http_data['arg'],$http_data['include']); } else { - return $json; + $json = call_user_func_array(array(&$this,$http_data['type']),$http_data['arg']); + // allow rpc callback for XDomainAjax + if ( isset($http_data['callback']) ) { + return $http_data['callback'] . "({$json})"; + } + else { + return $json; + } } } else { @@ -137,5 +145,52 @@ class AurJSON { return $this->json_error('No result found'); } } + + /** + * Returns the information of packages. + * @param $term is the term to search for + * $pqdata is a colon separated string with the fields to include in + * result + * @return If $term is found and $pqdata is valid, a json list, else json-error + **/ + + private function query($term,$pqdata) { + $pqdata = explode(":",$pqdata); + $term = mysql_real_escape_string($term); + + if (! $this->parameter_sanity($pqdata)) { + return $this->json_error('Parameter error'); + } + + $base_query = "SELECT " . implode(',',$pqdata) . " FROM Packages WHERE DummyPkg=0 AND " . sprintf("( Name LIKE '%%%s%%' OR Description LIKE '%%%s%%' )",$term,$term); + $result = db_query($base_query,$this->dbh); + if($result && (mysql_num_rows($result)>0)){ + $search_data = array(); + while($row = mysql_fetch_assoc($result)) { + array_push($search_data,$row); + } + mysql_free_result($result); + return $this->json_results('query',$search_data); + } + else { + return $this->json_error('No result found'); + } + + } + + /** + * @param $parameters is a array with parameters that will be compared + * against valid_parameters. + * @return True if the parameters are acceptable, otherwise false + **/ + private function parameter_sanity($parameters) { + foreach($parameters as $param) { + if (!in_array($param, $this->valid_parameters)) { + return false; + } + } + return true; + } } ?> + -- 1.5.5.3