jdb/timestamper
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
timestamper/src/ts_api.erl

609 lines
21 KiB
Erlang
Raw Normal View History

Started craeting API dispatch and implementation. Updated api doc.
2011-01-29 10:46:45 -06:00
-module(ts_api).
-compile(export_all).
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
-include("ts_db_records.hrl").
Started craeting API dispatch and implementation. Updated api doc.
2011-01-29 10:46:45 -06:00
-include("yaws_api.hrl").
out(YArg) ->
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
% retreive the session data
Session = ts_api_session:get_session(YArg),
Started craeting API dispatch and implementation. Updated api doc.
2011-01-29 10:46:45 -06:00
%get the app mod data
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
PathString = YArg#arg.appmoddata,
Started craeting API dispatch and implementation. Updated api doc.
2011-01-29 10:46:45 -06:00
% split the path
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
PathElements = case PathString of
Started craeting API dispatch and implementation. Updated api doc.
2011-01-29 10:46:45 -06:00
undefined -> []; %handle no end slash: /ts_api
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
_Any -> string:tokens(PathString, "/")
Started craeting API dispatch and implementation. Updated api doc.
2011-01-29 10:46:45 -06:00
end,
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
% process the request
case catch dispatch_request(YArg, Session, PathElements) of
{'EXIT', Err} ->
% TODO: log error internally
Created timestamper_dev module, logging.
2011-03-11 15:08:18 +00:00
error_logger:error_report("TimeStamper: ~p", [Err]),
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
io:format("Error: ~n~p", [Err]),
Created timestamper_dev module, logging.
2011-03-11 15:08:18 +00:00
make_json_500(YArg, Err);
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
Other -> Other
end.
Started craeting API dispatch and implementation. Updated api doc.
2011-01-29 10:46:45 -06:00
% ================================== %
% ======== DISPATCH METHODS ======== %
% ================================== %
%% Entry point to the TimeStamper API dispatch system
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
dispatch_request(YArg, _Session, []) -> make_json_404(YArg, [{"see_docs", "/ts_api_doc"}]);
Started craeting API dispatch and implementation. Updated api doc.
2011-01-29 10:46:45 -06:00
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
dispatch_request(YArg, Session, [H|T]) ->
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
case {Session, H} of
{_, "login"} -> do_login(YArg);
{_, "logout"} -> do_logout(YArg);
Started craeting API dispatch and implementation. Updated api doc.
2011-01-29 10:46:45 -06:00
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
{not_logged_in, _} -> make_json_401(YArg);
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
{session_expired, _} -> make_json_401(YArg, [{"error", "session expired"}]);
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
{_S, "app"} -> dispatch_app(YArg, Session, T);
{_S, "users"} -> dispatch_user(YArg, Session, T);
{_S, "timelines"} -> dispatch_timeline(YArg, Session, T);
{_S, "entries"} -> dispatch_entry(YArg, Session, T);
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
{_S, _Other} -> make_json_404(YArg, [{"see_docs", "/ts_api_doc/"}])
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
end.
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
% -------- Dispatch for /app -------- %
dispatch_app(YArg, Session, Params) ->
HTTPMethod = (YArg#arg.req)#http_request.method,
case {HTTPMethod, Params} of
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
{'OPTIONS', ["user_summary", _]} -> make_CORS_options(YArg, "GET");
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
{'GET', ["user_summary", UsernameStr]} ->
case {Session#ts_api_session.username,
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
UsernameStr} of
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
{Username, Username} -> get_user_summary(YArg, Username);
_ -> make_json_401(YArg)
end;
{_BadMethod, ["user_summary", _UsernameStr]} ->
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
make_json_405(YArg, [{"see_docs", "/ts_api_docs/app.html"}]);
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
_Other -> make_json_404(YArg, [{"see_docs", "/ts_api_docs/app.html"}])
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
end.
% -------- Dispatch for /user -------- %
Started adding implementation of client-side functionality. - Changed ts_api:dispatch_user/3 to return information for the user currently, authenticated if a valid session id is presented and no username is presented. - Moved the generic styling of form > * elements to be specific to .bar > form. - Added jQuery U 1.8.0. - Created login dialog that will automatically load upon page load if the user is not logged in. - Added styling for jQuery UI login dialog. - Implemented login functionality on the client page. - Implemented functionality to load user and timeline records on the client side.
2011-03-01 08:23:51 -06:00
dispatch_user(YArg, Session, []) ->
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
dispatch_user(YArg, Session, [Session#ts_api_session.username]);
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
dispatch_user(YArg, Session, [Username]) ->
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
HTTPMethod = (YArg#arg.req)#http_request.method,
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
% compare to the logged-in user
case {HTTPMethod, Session#ts_api_session.username} of
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
{'OPTIONS', Username} -> make_CORS_options(YArg, "GET, PUT");
{'GET', Username} -> get_user(YArg, Username);
{'PUT', Username} -> put_user(YArg, Username);
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
{_BadMethod, Username} ->
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
make_json_405(YArg, [{"see_docs", "/ts_api_doc/users.html"}]);
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
_Other -> make_json_401(YArg, [{"see_docs", "/ts_api_doc/users.html"}])
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
end.
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
% -------- Dispatch for /timeline -------- %
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
dispatch_timeline(YArg, _Session, []) ->
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
make_json_404(YArg, [{"see_docs", "/ts_api_doc/timelines.html"}]);
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
dispatch_timeline(YArg, Session, [Username|_T] = PathElements) ->
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
case Session#ts_api_session.username of
Username -> dispatch_timeline(YArg, PathElements);
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
_Other -> make_json_404(YArg, [{"see_docs", "/ts_api_doc/users.html"}])
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
end.
% just username, list timelines
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
dispatch_timeline(YArg, [Username]) ->
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
HTTPMethod = (YArg#arg.req)#http_request.method,
Small addition to ts_api.
2011-01-29 13:40:31 -06:00
case HTTPMethod of
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
'OPTIONS' -> make_CORS_options(YArg, "GET");
'GET' -> list_timelines(YArg, Username);
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
_Other -> make_json_405(YArg, [{"see_docs", "/ts_api_doc/timelines.html"}])
Small addition to ts_api.
2011-01-29 13:40:31 -06:00
end;
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
dispatch_timeline(YArg, [Username, TimelineId]) ->
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
HTTPMethod = (YArg#arg.req)#http_request.method,
Small addition to ts_api.
2011-01-29 13:40:31 -06:00
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
case HTTPMethod of
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
'OPTIONS'-> make_CORS_options(YArg, "GET, PUT, DELETE");
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
'GET' -> get_timeline(YArg, Username, TimelineId);
'PUT' -> put_timeline(YArg, Username, TimelineId);
'DELETE' -> delete_timeline(YArg, Username, TimelineId);
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
_Other -> make_json_405(YArg, [{"see_docs", "/ts_api_doc/timelines.html"}])
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
end;
Small addition to ts_api.
2011-01-29 13:40:31 -06:00
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
dispatch_timeline(YArg, _Other) ->
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
make_json_404(YArg, [{"see_docs", "/ts_api_doc/timelines.html"}]).
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
% -------- Dispatch for /entry -------- %
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
dispatch_entry(YArg, _Session, []) ->
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
make_json_404(YArg, [{"see_docs", "/ts_aip_doc/entries.html"}]);
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
dispatch_entry(YArg, Session, [Username|_T] = PathElements) ->
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
case Session#ts_api_session.username of
Username -> dispatch_entry(YArg, PathElements);
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
_Other -> make_json_404(YArg, [{"see_docs", "/ts_api_doc/entries.html"}])
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
end.
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
dispatch_entry(YArg, [Username, TimelineId]) ->
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
HTTPMethod = (YArg#arg.req)#http_request.method,
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
case HTTPMethod of
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
'OPTIONS' -> make_CORS_options(YArg, "GET, POST");
'GET' -> list_entries(YArg, Username, TimelineId);
'POST' -> post_entry(YArg, Username, TimelineId);
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
_Other -> make_json_405(YArg, [{"see_docs", "/ts_api_doc/entries.html"}])
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
end;
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
dispatch_entry(YArg, [Username, TimelineId, UrlEntryId]) ->
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
EntryId = list_to_integer(UrlEntryId), % TODO: catch non-numbers
HTTPMethod = (YArg#arg.req)#http_request.method,
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
case HTTPMethod of
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
'OPTIONS'-> make_CORS_options(YArg, "GET, PUT, DELETE");
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
'GET' -> get_entry(YArg, Username, TimelineId, EntryId);
Switched usage of POST and PUT verbs. - POST and PUT were being used counter to typical usage, POST updating existing records and PUT creating new ones. Changed to PUT updating existing records and POST creating records.
2011-04-15 13:53:24 -05:00
'PUT' -> put_entry(YArg, Username, TimelineId, EntryId);
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
'DELETE' -> delete_entry(YArg, Username, TimelineId, EntryId);
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
_Other -> make_json_405(YArg, [{"see_docs", "/ts_api_doc/entries.html"}])
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
end;
dispatch_entry(YArg, _Other) ->
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
make_json_404(YArg, [{"see_docs", "/ts_api_doc/entries.html"}]).
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
Small addition to ts_api.
2011-01-29 13:40:31 -06:00
% ============================== %
% ======== IMPLEMENTATION ====== %
% ============================== %
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
do_login(YArg) ->
EJSON = parse_json_body(YArg),
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
{struct, Fields} = EJSON,
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
case {lists:keyfind(username, 1, Fields),
lists:keyfind(password, 1, Fields)} of
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
Started adding implementation of client-side functionality. - Changed ts_api:dispatch_user/3 to return information for the user currently, authenticated if a valid session id is presented and no username is presented. - Moved the generic styling of form > * elements to be specific to .bar > form. - Added jQuery U 1.8.0. - Created login dialog that will automatically load upon page load if the user is not logged in. - Added styling for jQuery UI login dialog. - Implemented login functionality on the client page. - Implemented functionality to load user and timeline records on the client side.
2011-03-01 08:23:51 -06:00
% username and password found
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
{{username, Username}, {password, Password}} ->
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
% check the uname, password
case ts_user:check_credentials(Username, Password) of
% they are good
true ->
{CookieVal, _Session} = ts_api_session:new(Username),
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[{header, {set_cookie, io_lib:format(
Bugfixes: session management, new entry creation. * Changed the cookie Path value to allow the cookie to be reused for the domain, not just ths `/ts_api` path. This allows the user to refresh the page and reuse their existing session as long as it is not stale. * Fixed a bug in the `ts_json:ejson_to_record_strict/2` function. It was expecting a record out of `ts_json:ejson_to_record/2` but that function returns a tuple with the record and extended data. Because of the way `ejson_to_record_strict` uses case statements to check for specific values it was still passing the parsed record and data through, but all the checks were being bypassed. * Fixed bugs in the `index.yaws` bootstrap code for the case where the user already has a valid session. * Added `urlRoot` functions to the Backbone model definitions. * Changed the behavior of the new entry creation method. We were trying to fetch just updated attributes from the server for the model we created, but we were pulling all the entries due to the URL backbone was using. This led to the new client-side model having all the previous entry models as attributes. Ideally we would fix the fetch so that only the one model is requested from the server, but we run into a catch-22 because the lookup id is not know by the client as it is generated on the server-side. For now I have changed this behavior so that we still pull all entries, but we pull them into the collection. The collection is then smart enough to update the entries that have changed (namely the new one). The server returns the newly created entry attributes in response to the POST request that the client makes initially, so when I have more time to work on this I plan to do away with the fetch after create, and just pull in the data from the server's response. * Changed formatting.
2013-10-22 15:32:22 +00:00
"ts_api_session=~s; Path=/",
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[CookieVal])}},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Credentials: ", "true"]},
{content, "application/json",
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
json:encode({struct, [{"status", "ok"}]})}];
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
% they are not good
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
false -> make_json_401(YArg, [{"error",
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
"bad username/password combination"}])
end;
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
_Other -> make_json_400(YArg, [{"see_docs", "/ts_api_doc/login.html"}])
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
end.
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
do_logout(YArg) ->
Cookie = (YArg#arg.headers)#headers.cookie,
CookieVal = yaws_api:find_cookie_val("ts_api_session", Cookie),
Started adding implementation of client-side functionality. - Changed ts_api:dispatch_user/3 to return information for the user currently, authenticated if a valid session id is presented and no username is presented. - Moved the generic styling of form > * elements to be specific to .bar > form. - Added jQuery U 1.8.0. - Created login dialog that will automatically load upon page load if the user is not logged in. - Added styling for jQuery UI login dialog. - Implemented login functionality on the client page. - Implemented functionality to load user and timeline records on the client side.
2011-03-01 08:23:51 -06:00
ts_api_session:logout(CookieVal),
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[{status, 200},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Credentials: ", "true"]}].
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
get_user_summary(YArg, Username) ->
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% find user record
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
case ts_user:lookup(Username) of
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% no user record, barf
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
no_record -> make_json_404(YArg);
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% found user record, let us build the return
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
User ->
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% get user extended data properties
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
UserExtData = ts_ext_data:get_properties(User),
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% convert to intermediate JSON form
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
EJSONUser = ts_json:record_to_ejson(User, UserExtData),
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% get the user's timelins
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
Timelines = ts_timeline:list(Username, 0, 100),
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% get each timeline's extended data and convert to EJSON
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
EJSONTimelines = {array,
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
lists:map(
fun(Timeline) ->
ts_json:record_to_ejson(Timeline,
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
ts_ext_data:get_properties(Timeline))
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
end,
Timelines)},
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
% write response out
make_json_200(YArg, {struct,
API now returns just the content in the body. - Instead of returning Meta-Data (status) in the header and the body, we now only return the content in the body, except in error when we return the error message. - JSON entries use the 'id' name for entity ids (instead of 'username', 'timeline_id', and 'entry_id')
2011-04-15 13:51:01 -05:00
[{user, EJSONUser},
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
{timelines, EJSONTimelines}
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
]})
Added user_summary to api. Added ts_api:dispatch_app/3 Added ts_api:get_user_summary/2 Fixed compile errors in ts_user. Added comments.
2011-02-24 07:29:30 -06:00
end.
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
get_user(YArg, Username) ->
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% find the user record
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
case ts_user:lookup(Username) of
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% no such user, barf
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
no_record -> make_json_404(YArg);
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% found, return a 200 with the record
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
User -> make_json_200_record(YArg, User)
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
end.
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
put_user(YArg, Username) ->
% parse the POST data
EJSON = parse_json_body(YArg),
{UR, ExtData} =
Minor fixes needed for last_timeline to work. * Added route back for PUT /ts_api/user/<username> * Fixed typo in ``ts_api:put_user/2``. * Fixed incorrect expected return from ``ts_ext_data:set_property/3``. * Added missing assignment for ``ts_user.email`` in the appropriate ``ts_json:construct_record/3`` clause. * Fixed model attribute assignment in ``ts.js``.
2011-06-15 18:31:53 -05:00
try ts_json:ejson_to_record_strict(#ts_user{username=Username}, EJSON)
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
catch throw:{InputError, StackTrace} ->
error_logger:error_report("Bad input in put_user/2: ~p",
[InputError]),
throw(make_json_400(YArg, [{request_error, InputError}]))
end,
Bugfixes: session management, new entry creation. * Changed the cookie Path value to allow the cookie to be reused for the domain, not just ths `/ts_api` path. This allows the user to refresh the page and reuse their existing session as long as it is not stale. * Fixed a bug in the `ts_json:ejson_to_record_strict/2` function. It was expecting a record out of `ts_json:ejson_to_record/2` but that function returns a tuple with the record and extended data. Because of the way `ejson_to_record_strict` uses case statements to check for specific values it was still passing the parsed record and data through, but all the checks were being bypassed. * Fixed bugs in the `index.yaws` bootstrap code for the case where the user already has a valid session. * Added `urlRoot` functions to the Backbone model definitions. * Changed the behavior of the new entry creation method. We were trying to fetch just updated attributes from the server for the model we created, but we were pulling all the entries due to the URL backbone was using. This led to the new client-side model having all the previous entry models as attributes. Ideally we would fix the fetch so that only the one model is requested from the server, but we run into a catch-22 because the lookup id is not know by the client as it is generated on the server-side. For now I have changed this behavior so that we still pull all entries, but we pull them into the collection. The collection is then smart enough to update the entries that have changed (namely the new one). The server returns the newly created entry attributes in response to the POST request that the client makes initially, so when I have more time to work on this I plan to do away with the fetch after create, and just pull in the data from the server's response. * Changed formatting.
2013-10-22 15:32:22 +00:00
% update the record (we do not support creating users via the API right now)
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
{ok, UpdatedRec} = ts_user:update(UR, ExtData),
% return a 200
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_200_record(YArg, UpdatedRec).
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
list_timelines(YArg, Username) ->
% pull out the POST data
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
QueryData = yaws_api:parse_query(YArg),
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
% read or default the Start
Bugfixes. * ts_api:list_timelines/2 was looking for keys as atoms instead of lists (strings). * Exported the ts_json:decode_datetime/1 function (needed by ts_api module). * Fixed a crash case when trying to check the credentials of a non-existent user.
2013-09-15 00:33:02 +00:00
Start = case lists:keyfind("start", 1, QueryData) of
{"start", StartVal} -> list_to_integer(StartVal);
Implementing API
2011-02-05 08:57:34 -06:00
false -> 0
end,
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
% read or default the Length
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
Length = case lists:keyfind(length, 1, QueryData) of
Bugfixes. * ts_api:list_timelines/2 was looking for keys as atoms instead of lists (strings). * Exported the ts_json:decode_datetime/1 function (needed by ts_api module). * Fixed a crash case when trying to check the credentials of a non-existent user.
2013-09-15 00:33:02 +00:00
{"length", LengthVal} ->
Implementing API
2011-02-05 08:57:34 -06:00
erlang:min(list_to_integer(LengthVal), 50);
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
false -> 50
end,
% list the timelines from the database
Timelines = ts_timeline:list(Username, Start, Length),
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% convert them all to their EJSON form, adding in extended data for each
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
EJSONTimelines = {array, lists:map(
fun (Timeline) ->
ts_json:record_to_ejson(Timeline,
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
ts_ext_data:get_properties(Timeline))
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
end,
Timelines)},
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
% return response
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_200(YArg, EJSONTimelines).
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
Small addition to ts_api.
2011-01-29 13:40:31 -06:00
get_timeline(YArg, Username, TimelineId) ->
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
% look for timeline
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
case ts_timeline:lookup(Username, TimelineId) of
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
% no such timeline, return 404
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
no_record -> make_json_404(YArg, [{"error", "no such timeline"}]);
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
% return the timeline data
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
Timeline -> make_json_200_record(YArg, Timeline)
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
end.
Switched usage of POST and PUT verbs. - POST and PUT were being used counter to typical usage, POST updating existing records and PUT creating new ones. Changed to PUT updating existing records and POST creating records.
2011-04-15 13:53:24 -05:00
put_timeline(YArg, Username, TimelineId) ->
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
% parse the POST data
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
EJSON = parse_json_body(YArg),
%{struct, Fields} = EJSON,
% parse into a timeline record
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
{TR, ExtData} =
try ts_json:ejson_to_record_strict(
Fixed timeline creation, API logical fixes. * Resolved issues: * #0006: Fix timeline menu UI. * #0015: Create new timeline button in timeline menu. * #0017: Implement timeline creation. * Removed ts_api:post_timeline/3, corresponded to `POST` to `/ts_api/timelines/<user-id>`, which makes no sense as there is no way to auto-generate new timeline-ids. * Changed ts_api:put_timeline/3 to use ts_timeline:write. This resolved #0017. * Changed ts_api:put_entry/4 to use ts_entry:write. * Implemented ts_entry:write/1 and ts_timeline:write/1. These functions are simple passthroughs to mnesia:dirty_write/1. * Added clarifing documentation for ts_json:record_to_ejson JSON formats. * Renamed ts_json:ejson_to_record/2 to ts_json:ejson_to_record_strict/2 and added ts_json:ejson_to_record/2 as a lax version of the same. * Updated all ts_api functions to use updated ts_json methods.
2011-06-07 20:47:23 -05:00
#ts_timeline{ref={Username, TimelineId}}, EJSON)
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% we can not parse it, tell the user
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
catch throw:{InputError, _StackTrace} ->
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
error_logger:error_report("Bad input: ~p", [InputError]),
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
throw(make_json_400(YArg, [{request_error, InputError}]))
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
end,
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
Bugfixing, compile-error-sqhashung.
2011-06-15 00:54:58 -05:00
% write the changes.
ts_timeline:write(TR, ExtData),
% return a 200
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_200_record(YArg, TR).
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
delete_timeline(_YArg, _Username, _TimelineId) -> {status, 405}.
Continue to implement the API. Started implementing ts_api:list_entries/3 Implemented ts_api:get_entry_by_id/4
2011-01-31 10:04:01 -06:00
Implementing API
2011-02-05 08:57:34 -06:00
list_entries(YArg, Username, TimelineId) ->
Continue to implement the API. Started implementing ts_api:list_entries/3 Implemented ts_api:get_entry_by_id/4
2011-01-31 10:04:01 -06:00
% pull out the POST data
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
QueryData = yaws_api:parse_query(YArg),
Continue to implement the API. Started implementing ts_api:list_entries/3 Implemented ts_api:get_entry_by_id/4
2011-01-31 10:04:01 -06:00
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
% first determine if we are listing by date
Implementing API
2011-02-05 08:57:34 -06:00
case {ts_timeline:lookup(Username, TimelineId),
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
lists:keyfind("byDate", 1, QueryData)} of
Implementing API
2011-02-05 08:57:34 -06:00
{no_record, _ByDateField} -> make_json_404(
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
[{"error", "no such timeline"},
{"see_docs", "/ts_api_doc/entries.html#LIST"}]);
Implementing API
2011-02-05 08:57:34 -06:00
% listing by date range
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
{Timeline, {"byDate", "true"}} ->
Implementing API
2011-02-05 08:57:34 -06:00
% look for the start date; default to the beginning of the timeline
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
StartDate = case lists:keyfind("startDate", 1, QueryData) of
Implementing API
2011-02-05 08:57:34 -06:00
% TODO: error handling if the date is badly formatted
Bugfixes. * ts_api:list_timelines/2 was looking for keys as atoms instead of lists (strings). * Exported the ts_json:decode_datetime/1 function (needed by ts_api module). * Fixed a crash case when trying to check the credentials of a non-existent user.
2013-09-15 00:33:02 +00:00
{"startDate", StartDateVal} -> ts_json:decode_datetime(StartDateVal);
Implementing API
2011-02-05 08:57:34 -06:00
false -> Timeline#ts_timeline.created
end,
% look for end date; default to right now
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
EndDate = case lists:keyfind("endDate", 1, QueryData) of
Implementing API
2011-02-05 08:57:34 -06:00
% TODO: error handling if the date is badly formatted
Bugfixes. * ts_api:list_timelines/2 was looking for keys as atoms instead of lists (strings). * Exported the ts_json:decode_datetime/1 function (needed by ts_api module). * Fixed a crash case when trying to check the credentials of a non-existent user.
2013-09-15 00:33:02 +00:00
{"endDate", EndDateVal} -> ts_json:decode_datetime(EndDateVal);
Implementing API
2011-02-05 08:57:34 -06:00
false -> calendar:now_to_universal_time(erlang:now())
end,
% read sort order and list entries
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
Entries = case lists:keyfind("order", 1, QueryData) of
Implementing API
2011-02-05 08:57:34 -06:00
% descending sort order
Bugfixes. * ts_api:list_timelines/2 was looking for keys as atoms instead of lists (strings). * Exported the ts_json:decode_datetime/1 function (needed by ts_api module). * Fixed a crash case when trying to check the credentials of a non-existent user.
2013-09-15 00:33:02 +00:00
{"order", "desc"} -> ts_entry:list_desc(
Implementing API
2011-02-05 08:57:34 -06:00
{Username, TimelineId}, StartDate, EndDate);
% ascending order--{other, asc}--and default
_Other -> ts_entry:list_asc(
{Username, TimelineId}, StartDate, EndDate)
end,
EJSONEntries = {array, lists:map(
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
fun (Entry) ->
ts_json:record_to_ejson(Entry,
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
ts_ext_data:get_properties(Entry))
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
end,
Entries)},
Implementing API
2011-02-05 08:57:34 -06:00
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_200(YArg, EJSONEntries);
Implementing API
2011-02-05 08:57:34 -06:00
% listing by table position
_Other ->
% read or default the Start
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
Start = case lists:keyfind("start", 1, QueryData) of
Implemented entry creation, pagination. Some restyling and bugfixes. - Bug fix in ts_api:list_entries/3. Case statement matching on atoms but input is a list (string). - Bug fix in ts_api:put_entry/3. Was expecting the wrong result from ts_entry:new/1. - Bug fix in ts_entry:list/4. Code crashed when the starting offset was greater than the total number of elements. Now returns []. - Fixed ts_json:encode_datetime/1 and ts_json:decode_datetime/1 to handle millisecond values in the datetime string (per ISO standard). - Broke out ``control-links`` style to a top-level class. - Added showdown.js, a JS Markdown processor. Not hooked up to anything yet but intend to display entry notes with Markdown. - Added code for entry pagination. Loads the most recent 20 entries and loads more upon demand in batches of 20. - Fixed bug in login routine that kept the user edit fields from being pre-populated. - Rewrote the loadEntries function to double for new entries and loading more existing entries. - Commented displayEntries. Also refactored into displayNewerEntries, which pushed new entries on to the top of the stack, and displayOlderEntries, which tags them onto the bottom. - Implemented hidden notes field for new entry input. - Implemented new entry creation. - Created a helper function to ISO format a Date object. - Expanded entry template to show control links (edit, show notes, del). - Activated the 'load more entries' button.
2011-03-07 16:43:40 -06:00
{"start", StartVal} -> list_to_integer(StartVal);
Implementing API
2011-02-05 08:57:34 -06:00
false -> 0
end,
% read or default the Length
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
Length = case lists:keyfind("length", 1, QueryData) of
Implemented entry creation, pagination. Some restyling and bugfixes. - Bug fix in ts_api:list_entries/3. Case statement matching on atoms but input is a list (string). - Bug fix in ts_api:put_entry/3. Was expecting the wrong result from ts_entry:new/1. - Bug fix in ts_entry:list/4. Code crashed when the starting offset was greater than the total number of elements. Now returns []. - Fixed ts_json:encode_datetime/1 and ts_json:decode_datetime/1 to handle millisecond values in the datetime string (per ISO standard). - Broke out ``control-links`` style to a top-level class. - Added showdown.js, a JS Markdown processor. Not hooked up to anything yet but intend to display entry notes with Markdown. - Added code for entry pagination. Loads the most recent 20 entries and loads more upon demand in batches of 20. - Fixed bug in login routine that kept the user edit fields from being pre-populated. - Rewrote the loadEntries function to double for new entries and loading more existing entries. - Commented displayEntries. Also refactored into displayNewerEntries, which pushed new entries on to the top of the stack, and displayOlderEntries, which tags them onto the bottom. - Implemented hidden notes field for new entry input. - Implemented new entry creation. - Created a helper function to ISO format a Date object. - Expanded entry template to show control links (edit, show notes, del). - Activated the 'load more entries' button.
2011-03-07 16:43:40 -06:00
{"length", LengthVal} ->
Implementing API
2011-02-05 08:57:34 -06:00
erlang:min(list_to_integer(LengthVal), 500);
false -> 50
end,
% read sort order and list entries
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
Entries = case lists:keyfind("order", 1, QueryData) of
{"order", "desc"} -> ts_entry:list_desc(
Implementing API
2011-02-05 08:57:34 -06:00
{Username, TimelineId}, Start, Length);
Bugfix and documentation. - Fixed a bug in ts_api:list_timelines/2 and ts_api:list_entries/3, which respond only to GET requests but were looking for POST data. - Added documentation for ts.js.
2011-03-01 18:00:51 -06:00
_UnknownOrder -> ts_entry:list_asc(
Implementing API
2011-02-05 08:57:34 -06:00
{Username, TimelineId}, Start, Length)
end,
EJSONEntries = {array, lists:map(
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
fun (Entry) ->
ts_json:record_to_ejson(Entry,
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
ts_ext_data:get_properties(Entry))
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
end,
Entries)},
Implementing API
2011-02-05 08:57:34 -06:00
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_200(YArg, EJSONEntries)
Implementing API
2011-02-05 08:57:34 -06:00
end.
Continue to implement the API. Started implementing ts_api:list_entries/3 Implemented ts_api:get_entry_by_id/4
2011-01-31 10:04:01 -06:00
Implementing API
2011-02-05 08:57:34 -06:00
get_entry(YArg, Username, TimelineId, EntryId) ->
case ts_entry:lookup(Username, TimelineId, EntryId) of
% no such entry
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
no_record -> make_json_404(YArg, [{"error", "no such entry"}]);
Implementing API
2011-02-05 08:57:34 -06:00
% return the entry data
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
Entry -> make_json_200_record(YArg, Entry)
Implementing API
2011-02-05 08:57:34 -06:00
end.
Continue to implement the API. Started implementing ts_api:list_entries/3 Implemented ts_api:get_entry_by_id/4
2011-01-31 10:04:01 -06:00
Switched usage of POST and PUT verbs. - POST and PUT were being used counter to typical usage, POST updating existing records and PUT creating new ones. Changed to PUT updating existing records and POST creating records.
2011-04-15 13:53:24 -05:00
post_entry(YArg, Username, TimelineId) ->
Implementing API
2011-02-05 08:57:34 -06:00
% parse the request body
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
EJSON = parse_json_body(YArg),
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
Implementing API
2011-02-05 08:57:34 -06:00
% parse into ts_entry record
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
{ER, ExtData} = try ts_json:ejson_to_record_strict(
Fixed timeline creation, API logical fixes. * Resolved issues: * #0006: Fix timeline menu UI. * #0015: Create new timeline button in timeline menu. * #0017: Implement timeline creation. * Removed ts_api:post_timeline/3, corresponded to `POST` to `/ts_api/timelines/<user-id>`, which makes no sense as there is no way to auto-generate new timeline-ids. * Changed ts_api:put_timeline/3 to use ts_timeline:write. This resolved #0017. * Changed ts_api:put_entry/4 to use ts_entry:write. * Implemented ts_entry:write/1 and ts_timeline:write/1. These functions are simple passthroughs to mnesia:dirty_write/1. * Added clarifing documentation for ts_json:record_to_ejson JSON formats. * Renamed ts_json:ejson_to_record/2 to ts_json:ejson_to_record_strict/2 and added ts_json:ejson_to_record/2 as a lax version of the same. * Updated all ts_api functions to use updated ts_json methods.
2011-06-07 20:47:23 -05:00
#ts_entry{ref = {Username, TimelineId, undefined}}, EJSON)
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
catch _:InputError ->
error_logger:error_report("Bad input: ~p", [InputError]),
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
throw(make_json_400(YArg, [{request_error, InputError}]))
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
end,
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
Bug fixes and implementation refinement around ``ts_ext_data``. * Transformed the test database to match the new data model. Added ``ts_ext_data`` table and moved ``ts_user.ext_data`` values to it. * Added D0022: cascade delete ``ts_ext_data`` when ``ts_entry`` record is deleted. * Completed refactor of ``ts_api`` functions to account for extended data: * ``post_entry/3`` * ``put_entry/3`` * Created ``ts_entry:write/2`` to write extended data atomically with the entry. * Fixed copy/paste bug in ``ts_ext_data:create_table/1``. * Fixed implementation of ``ts_ext_data:set_property/3`` to be explicit about taking a record, not a reference. It then extracts the reference and passes it to the underlying implementation in ``ts_ext_data:do_set_property/3``. * Refactored ``ts_ext_data:do_set_property/3`` to take a record *reference*, not the record itself. * Refactored the ``ts_ext_data:get_property/2`` and ``ts_ext_data:get_properties/1`` functions to return key value tuple pairs, not ``ts_ext_data{}`` records.
2011-06-15 07:34:41 -05:00
case ts_entry:new(ER, ExtData) of
Implementing API
2011-02-05 08:57:34 -06:00
% record created
Implemented entry creation, pagination. Some restyling and bugfixes. - Bug fix in ts_api:list_entries/3. Case statement matching on atoms but input is a list (string). - Bug fix in ts_api:put_entry/3. Was expecting the wrong result from ts_entry:new/1. - Bug fix in ts_entry:list/4. Code crashed when the starting offset was greater than the total number of elements. Now returns []. - Fixed ts_json:encode_datetime/1 and ts_json:decode_datetime/1 to handle millisecond values in the datetime string (per ISO standard). - Broke out ``control-links`` style to a top-level class. - Added showdown.js, a JS Markdown processor. Not hooked up to anything yet but intend to display entry notes with Markdown. - Added code for entry pagination. Loads the most recent 20 entries and loads more upon demand in batches of 20. - Fixed bug in login routine that kept the user edit fields from being pre-populated. - Rewrote the loadEntries function to double for new entries and loading more existing entries. - Commented displayEntries. Also refactored into displayNewerEntries, which pushed new entries on to the top of the stack, and displayOlderEntries, which tags them onto the bottom. - Implemented hidden notes field for new entry input. - Implemented new entry creation. - Created a helper function to ISO format a Date object. - Expanded entry template to show control links (edit, show notes, del). - Activated the 'load more entries' button.
2011-03-07 16:43:40 -06:00
{ok, CreatedRecord} ->
Changed Data Model ------------------ * Created the extended data table. This is a more generic version of the extended data field that was on ``ts_user``. Instead of arbitrary key-value pairs going in a list on the user record we will have an additional table, a one to many relationship between existing tables and the ``ts_ext_data`` table, each row being an extended value of the corresponding record. * Added support to the ``timestamper:create_tables/1`` and ``timestamper_dev:create_table/1`` functions for the new ``ts_ext_data`` table. Documentation ------------- * Added some general docs about the DB layer code. * Added two new issues, *D0020*: Entry exclusion filters and *D0021*: notes width. API Changes ----------- Necessitated by the change to the data model. * Updated ``ts_api`` data-retrieval functions to use extended data: * ``get_user_summary/2`` * ``list_timelines/2`` * ``list_entries/3`` * Updated ``ts_api:put_timeline/3`` to parse the extended data supplied by the caller. *FIXME* it is not actually saving this data. * TODO: Started updating ``ts_api:post_entry/3`` to handle extended data, need to finish. Database Layer -------------- Changes necessitated by the change to the model. * Added ``ts_common:do_set_ext_data/2`` which iterates through the extended data key-value pairs calling ``ts_ext_data:set_property/3``. It does not provide a transaction context. * Split ``ts_common:new/1`` and ``ts_common:update/1`` functions into multiple functions to prevent code-duplication: * ``do_{new,update}`` contains the code that performs integrity checks and the actual database write function. It does this assuming that it is being called from within the context of an mnesia transaction (uses ``mnesia:read`` and ``mnesia:write``). * ``{new,update}/1`` performs the same function as previously. The implementation changed from using mnesia ``dirty_*`` calls to prociding a transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` expect the record to update/create and the extended data to write atomically with the record. They provide a transaction context, call ``do_{new,update}/1``, then call ``do_set_ext_data/2``. * Similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_entry:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Again similar to the refactoring of ``ts_common:{new,update}/1``, ``ts_user:{new,update}/1`` have been refactored into multiple methods each to support extended data properties: * ``do_{new,update}/1`` perform the actual update assuming we have already established an mnesia transaction. * ``{new,update}/1`` behave the same as they used to, but now do so by creating an mnesia transaction and calling ``do_{new,update}/1``. * ``{new,update}/2`` create an mnesia transaction, call ``do_{new,update}/1``, and then call ``ts_common:do_set_ext_data/2``. * Created the ``ts_ext_data`` module as the interface to the extended data properties introduced in the data model: * ``create_table/1`` performs the same function as it does in the other db layer modules, creates the table with the appropriate structure given the more general table options desired (location, storage type, etc.). * ``set_property/3`` takes a record, a property key, and a property value as input and sets the property described by the property key on the record to the given value, assuming this is a valid property for the record to have. For example, currently the ``ts_user`` record can have an associated property, ``last_timeline``, which represents the last timeline the user was working with. Trying to pass this property with a ``ts_entry`` record would result in an exception. This function uses ``ts_ext_data:do_set_property/3`` as its underlying implementation. * ``get_property/2`` takes a record and a property key and returns the value of that property for the given record, or ``not_set`` if the property has not been set on that record. This method creates its own mnesia transaction. * ``get_properties/1`` takes a record and returns a list of key-value tuples representing all of the extended data properties set for the given record. This method creates its own mnesia transaction. * ``do_set_property/3`` takes a record reference (not the whole record), a a property key, and adds the property assignment to the ``ts_ext_data`` table. It creates its own mnesia transaction. * Added ``new/2`` and ``update/2`` to the ``ts_timeline`` module to support extended data properties. They delegate implementation to ``ts_common:{new,update}/2``. JSON Encoding/Decoding ---------------------- Changes necessitated by the change to the data model. The JSON objects now contain a potentially unlimited number of fields, as each extended data property is encoded as a seperate field, and looks no different from any of the required fields on the object. The intended explanation in API documentation is that each object type (``user``, ``timeline``, or ``entry``) now has both *required* fields that *MUST* be present in every message in either direction and *optional* fields that may or may not be present in any communication with the API. There should be a clear distinction between which fields are required and which are optional. It might also be a good idea to provide a suggested default for optional values when they are not present. * Updated documentation about JSON record structures to reflect the fact that there are now potentially many optional attributes in addition to the required attributes for each record. * ``record_to_ejson/1`` refactored to ``record_to_ejson/2`` which also takes the extended data attributes and appends them as additional attributes to the end of the record structure. * Created ``ext_data_to_ejson/{1,2}`` to provide a mechanism for reformatting extended data properties whose internal representations are not immediately translatable into JSON. Currently only the ``entry_exclusions`` property, which is a list of strings, needs to be treated this way (changing from ``[val, val]`` to ``{array, [val, val]}`` as needed by ``json:encode/1``. ``ext_data_to_ejson/1`` acts as a more user-friendly facade to ``ext_data_to_ejson/2``. * Rewrote ``ejson_to_record/{2,3}`` and ``ejson_to_record_strict/{2,3}`` to handle extended data. They now use a common method, ``construct_record/3`` to create the actual record object and extended data key-value list. ``ejson_to_record_strict/{2,3}`` only differs in that it checks for the presence of each required field of the record after the record is constructed. The three-parameter versions of these functions also take in the intended reference for the constructed record, replacing anything that is in the EJSON body as the record reference (useful when the body does not have the record ids). These methods now return a tuple: ``{Record, ExtData}`` instead of just the record. * Created ``construct_record/3`` takes a record and the EJSON fields from the input object. The third parameter is an accumulator for the extended data properties found when constructing the record. This method works by iterating over the list of input fields. It recognizes any required fields and updates the record being built with the value. Any fields it does not recognize it assumes are extended data properties and adds to its list. When all input fields have been visited it returns the record and list it has constructed. * ``ejson_to_ext_data/{1,2}`` is the inverse of ``ext_data_to_ejson/{1,2}``. *TODO*: this method is not actually being used by the ``ejson_to_record*`` methods.
2011-06-14 15:24:57 -05:00
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[{status, 201}, make_json_200_record(YArg, CreatedRecord)];
Implementing API
2011-02-05 08:57:34 -06:00
Implemented entry creation, pagination. Some restyling and bugfixes. - Bug fix in ts_api:list_entries/3. Case statement matching on atoms but input is a list (string). - Bug fix in ts_api:put_entry/3. Was expecting the wrong result from ts_entry:new/1. - Bug fix in ts_entry:list/4. Code crashed when the starting offset was greater than the total number of elements. Now returns []. - Fixed ts_json:encode_datetime/1 and ts_json:decode_datetime/1 to handle millisecond values in the datetime string (per ISO standard). - Broke out ``control-links`` style to a top-level class. - Added showdown.js, a JS Markdown processor. Not hooked up to anything yet but intend to display entry notes with Markdown. - Added code for entry pagination. Loads the most recent 20 entries and loads more upon demand in batches of 20. - Fixed bug in login routine that kept the user edit fields from being pre-populated. - Rewrote the loadEntries function to double for new entries and loading more existing entries. - Commented displayEntries. Also refactored into displayNewerEntries, which pushed new entries on to the top of the stack, and displayOlderEntries, which tags them onto the bottom. - Implemented hidden notes field for new entry input. - Implemented new entry creation. - Created a helper function to ISO format a Date object. - Expanded entry template to show control links (edit, show notes, del). - Activated the 'load more entries' button.
2011-03-07 16:43:40 -06:00
OtherError ->
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
error_logger:error_report("Could not create entry: ~p", [OtherError]),
Created timestamper_dev module, logging.
2011-03-11 15:08:18 +00:00
make_json_500(YArg, OtherError)
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
end.
Continue to implement the API. Started implementing ts_api:list_entries/3 Implemented ts_api:get_entry_by_id/4
2011-01-31 10:04:01 -06:00
Switched usage of POST and PUT verbs. - POST and PUT were being used counter to typical usage, POST updating existing records and PUT creating new ones. Changed to PUT updating existing records and POST creating records.
2011-04-15 13:53:24 -05:00
put_entry(YArg, Username, TimelineId, EntryId) ->
Implementing API
2011-02-05 08:57:34 -06:00
% parse the POST data
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
EJSON = parse_json_body(YArg),
Continue to implement the API. Started implementing ts_api:list_entries/3 Implemented ts_api:get_entry_by_id/4
2011-01-31 10:04:01 -06:00
Implementing API
2011-02-05 08:57:34 -06:00
% parse into ts_entry record
Bug fixes and implementation refinement around ``ts_ext_data``. * Transformed the test database to match the new data model. Added ``ts_ext_data`` table and moved ``ts_user.ext_data`` values to it. * Added D0022: cascade delete ``ts_ext_data`` when ``ts_entry`` record is deleted. * Completed refactor of ``ts_api`` functions to account for extended data: * ``post_entry/3`` * ``put_entry/3`` * Created ``ts_entry:write/2`` to write extended data atomically with the entry. * Fixed copy/paste bug in ``ts_ext_data:create_table/1``. * Fixed implementation of ``ts_ext_data:set_property/3`` to be explicit about taking a record, not a reference. It then extracts the reference and passes it to the underlying implementation in ``ts_ext_data:do_set_property/3``. * Refactored ``ts_ext_data:do_set_property/3`` to take a record *reference*, not the record itself. * Refactored the ``ts_ext_data:get_property/2`` and ``ts_ext_data:get_properties/1`` functions to return key value tuple pairs, not ``ts_ext_data{}`` records.
2011-06-15 07:34:41 -05:00
{ER, ExtData} = try ts_json:ejson_to_record_strict(
Fixed timeline creation, API logical fixes. * Resolved issues: * #0006: Fix timeline menu UI. * #0015: Create new timeline button in timeline menu. * #0017: Implement timeline creation. * Removed ts_api:post_timeline/3, corresponded to `POST` to `/ts_api/timelines/<user-id>`, which makes no sense as there is no way to auto-generate new timeline-ids. * Changed ts_api:put_timeline/3 to use ts_timeline:write. This resolved #0017. * Changed ts_api:put_entry/4 to use ts_entry:write. * Implemented ts_entry:write/1 and ts_timeline:write/1. These functions are simple passthroughs to mnesia:dirty_write/1. * Added clarifing documentation for ts_json:record_to_ejson JSON formats. * Renamed ts_json:ejson_to_record/2 to ts_json:ejson_to_record_strict/2 and added ts_json:ejson_to_record/2 as a lax version of the same. * Updated all ts_api functions to use updated ts_json methods.
2011-06-07 20:47:23 -05:00
#ts_entry{ref={Username, TimelineId, EntryId}}, EJSON)
Changed record keys to use lists instead of atoms. Using atoms will not scale in the large. Also, using atoms as keys forced the API to convert arbitrary end-user input to atoms, adding another potential drain of the finite atom-space available. - ts_api: url paths are now treated and matched as lists, not atoms. Usernames and API calls all use lists now. - ts_json: key items (username, timeline ids) are now expected to be lists, not atoms.
2011-05-03 12:17:00 -05:00
catch _:InputError ->
error_logger:error_report("Bad input: ~p", [InputError]),
throw(make_json_400(YArg))
end,
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
Bug fixes and implementation refinement around ``ts_ext_data``. * Transformed the test database to match the new data model. Added ``ts_ext_data`` table and moved ``ts_user.ext_data`` values to it. * Added D0022: cascade delete ``ts_ext_data`` when ``ts_entry`` record is deleted. * Completed refactor of ``ts_api`` functions to account for extended data: * ``post_entry/3`` * ``put_entry/3`` * Created ``ts_entry:write/2`` to write extended data atomically with the entry. * Fixed copy/paste bug in ``ts_ext_data:create_table/1``. * Fixed implementation of ``ts_ext_data:set_property/3`` to be explicit about taking a record, not a reference. It then extracts the reference and passes it to the underlying implementation in ``ts_ext_data:do_set_property/3``. * Refactored ``ts_ext_data:do_set_property/3`` to take a record *reference*, not the record itself. * Refactored the ``ts_ext_data:get_property/2`` and ``ts_ext_data:get_properties/1`` functions to return key value tuple pairs, not ``ts_ext_data{}`` records.
2011-06-15 07:34:41 -05:00
ts_entry:write(ER, ExtData),
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_200_record(YArg, ER).
Redesigned API URL structure. Updated ts_api to implement this. Implemented ts_api:list_timelines/2. Adjusted ts_timeline:list/3 to be 0-indexed. Changed ts_user password hash to use a random salt + SHA1 Added some skeleton testing code.
2011-02-04 17:19:53 -06:00
Implemented edit and update for entries. - Added ts_entry:delete/1 to delete an entry from the database. - Implemented ts_api:delete_entry/3. - Added a form to facilitate editing individual entries. - Moved the small show/hide functions directly into the HTML. - Wired up the update timeline form. - Wired up the edit and update entry form.
2011-03-08 18:02:33 -06:00
delete_entry(YArg, Username, TimelineId, EntryId) ->
% find the record to delete
case ts_entry:lookup(Username, TimelineId, EntryId) of
Bugfix in ts_api:delete_entry/1, bad case clause ordering.
2011-03-10 16:00:46 -06:00
no_record -> make_json_404(YArg);
Implemented edit and update for entries. - Added ts_entry:delete/1 to delete an entry from the database. - Implemented ts_api:delete_entry/3. - Added a form to facilitate editing individual entries. - Moved the small show/hide functions directly into the HTML. - Wired up the update timeline form. - Wired up the edit and update entry form.
2011-03-08 18:02:33 -06:00
Record ->
% try to delete
case ts_entry:delete(Record) of
ok -> {status, 200};
Error ->
Created timestamper_dev module, logging.
2011-03-11 15:08:18 +00:00
error_logger:error_report("Error occurred deleting entry record: ~p", [Error]),
make_json_500(YArg, Error)
Bugfix in ts_api:delete_entry/1, bad case clause ordering.
2011-03-10 16:00:46 -06:00
end
Implemented edit and update for entries. - Added ts_entry:delete/1 to delete an entry from the database. - Implemented ts_api:delete_entry/3. - Added a form to facilitate editing individual entries. - Moved the small show/hide functions directly into the HTML. - Wired up the update timeline form. - Wired up the edit and update entry form.
2011-03-08 18:02:33 -06:00
end.
Started craeting API dispatch and implementation. Updated api doc.
2011-01-29 10:46:45 -06:00
% ============================== %
% ======== UTIL METHODS ======== %
% ============================== %
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
parse_json_body(YArg) ->
case catch json:decode([], binary_to_list(YArg#arg.clidata)) of
{done, {ok, EJSON}, _} -> EJSON;
Error ->
% TODO: log error internally
Created timestamper_dev module, logging.
2011-03-11 15:08:18 +00:00
error_logger:error_report("Error parsing JSON request body: ~p", [Error]),
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
throw(make_json_400(YArg))
end.
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
get_origin_header(YArg) ->
Headers = (YArg#arg.headers)#headers.other,
case lists:keyfind("Origin", 3, Headers) of
false -> "*";
{http_header, 0, "Origin", _, Origin} -> Origin;
_ -> make_json_500(YArg, "Unrecognized Origin header.")
end.
make_CORS_options(YArg, AllowedMethods) ->
[{status, 200},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Methods: ", AllowedMethods]},
{header, ["Access-Control-Allow-Credentials: ", "true"]}].
make_CORS_options(_YArg, AllowedOrigins, AllowedMethods) ->
[{status, 200},
{header, ["Access-Control-Allow-Origin: ", AllowedOrigins]},
{header, ["Access-Control-Allow-Methods: ", AllowedMethods]},
{header, ["Access-Control-Allow-Credentials: ", "true"]}].
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
%% Create a JSON 200 response.
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_200(YArg, EJSONResponse) ->
JSONResponse = json:encode(EJSONResponse),
[{content, "application/json", JSONResponse},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Credentials: ", "true"]}].
make_json_200_record(YArg, Record) ->
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
RecordExtData = ts_ext_data:get_properties(Record),
EJSON = ts_json:record_to_ejson(Record, RecordExtData),
JSONResponse = json:encode(EJSON),
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[{content, "application/json", JSONResponse},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Credentials: ", "true"]}].
Implemented ts_api:get_user/2, ts_api:put_user/1, and ts_api:post_user/1. Created a utility function for OK results, ts_api:make_json_200/2 Created ts_common:new/1 and ts_common:update/1 to generalize record creation and update. Refactored ts_timeline:new/1 and ts_timeline:update/1 to use the ts_common functions. Implemented ts_json:record_to_ejson/1 and ts_json:ejson_to_record/1 for ts_user records. Implemented ts_user module.
2011-02-03 17:23:40 -06:00
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
make_json_400(YArg) -> make_json_400(YArg, []).
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_400(YArg, Fields) ->
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
F1 = case lists:keyfind(status, 1, Fields) of
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
false -> Fields ++ [{"status", "bad request"}];
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
_Else -> Fields
end,
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[{status, 400}, {content, "application/json", json:encode({struct, F1})},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Credentials: ", "true"]}].
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
make_json_401(YArg) -> make_json_401(YArg, []).
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_401(YArg, Fields) ->
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
% add default status if not provided
F1 = case lists:keyfind(status, 1, Fields) of
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
false -> Fields ++ [{"status", "unauthorized"}];
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
_Else -> Fields
end,
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[{status, 401},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Credentials: ", "true"]},
{content, "application/json", json:encode({struct, F1})}].
Implemented cookie-based authentication to the API. Created timestamper module to start the application. Added cookie-based authentication to ts_api. Added utility methods to ts_api: * make_json_400/1 and make_json_400/1 * make_json_401/1 and make_json_401/2 * parse_json_body/1 reads a JSON object from a HTTP request body. Implemented ts_api_session module to manage api user sessions. Fixed ts_entry:list* methods to be 0-indexed. Removed the ts_json:ejson_to_record/1 implementation for ts_user records. Decided that ts_user records are never trusted from the client, manipulation of fields such as pwd, username will be restricted to app pages. Changed the password hashing algorithm. Now uses SHA1(pwd + 256bit salt). Want to use bcrypt, investingating cross-platform bcrypt implementation. Fixed yaws.conf config file.
2011-02-07 08:56:07 -06:00
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
%% Create a JSON 404 response.
make_json_404(YArg) -> make_json_404(YArg, []).
make_json_404(YArg, Fields) ->
% add default status if not provided
F1 = case lists:keyfind(status, 1, Fields) of
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
false -> Fields ++ [{"status", "not found"}];
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
_Else -> Fields
end,
% add the path they requested
Continuing work on the API. The id_counter module now includes the record directly in the source. Fixed many typos and small syntax errors. Added ts_api:dispatch_user/2 to handle different HTTP methods. Added method placeholder stubs to ts_api. Implemented ts_api:list_entries/3. Added ts_user record and ts_user module. Implemented ts_entry:list/4, the more generic guts of the other list functions. Created ts_entry:list_asc/3 and ts_entry:list_desc/3. Fixed ts_json:encode_datetime/1.
2011-02-02 16:57:58 -06:00
F2 = F1 ++ [{path, element(2, (YArg#arg.req)#http_request.path)}],
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[{status, 404}, {content, "application/json", json:encode({struct, F2})},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Credentials: ", "true"]}].
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
make_json_405(YArg) -> make_json_405(YArg, []).
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_405(YArg, Fields) ->
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
% add default status if not provided
F1 = case lists:keyfind(status, 1, Fields) of
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
false -> Fields ++ [{"status", "method not allowed"}];
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
_Else -> Fields
end,
% add the path they requested
Fixing problems introduced by the model change. * Many calls to ``ts_ext_data:get_properties/1`` from ``ts_api`` were passing the record reference, not the record itself. Fixed. * Created ``ts_api:put_user/2`` which updates a ``ts_user`` record. This is needed specifically for updating the ``liat_timeline`` extended data property. * Removed unreachable code in ``ts_api:post_entry/3`` * Fixed return value of some ``ts_user`` functions to use the ``{Status, Value}`` convention. TODO: make sure all calls are using the same convention. * Fixed error message formatting in ``ts_ext_data:set_property/3``. * Added clauses to ``ts_json:ejson_to_record/2``, ``ts_json:ejson_to_record_strict/2`` and ``ts_json:construct_record/3`` to handle the ``ts_user`` record type. * Added code to ``AppView.loadInitialData`` and ``AppView.selectTimeline`` to support the ``last_timeline`` extended data property.
2011-06-15 16:50:38 -05:00
% F2 = F1 ++ [{path, io_lib:format("~p", [(YArg#arg.req)#http_request.path])}],
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[{status, 405}, {content, "application/json", json:encode({struct, F1})},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Credentials: ", "true"]}].
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_500(YArg, Error) ->
io:format("Error: ~n~p", [Error]),
Created timestamper_dev module, logging.
2011-03-11 15:08:18 +00:00
EJSON = {struct, [
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
{"status", "internal server error"},
{"error", lists:flatten(io_lib:format("~p", [Error]))}]},
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[{status, 500}, {content, "application/json", json:encode(EJSON)},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Credentials: ", "true"]}].
Created timestamper_dev module, logging.
2011-03-11 15:08:18 +00:00
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
make_json_500(YArg) ->
Additional parts of the API, DB layer. Implemented additional API functions: * dispatch_timeline/4 * dispatch_event_by_id/4 * get_timeline/3 * put_timeline/3 * post_timeline/3 * make_json_404/2, make_json_405/2, make_json_500/1 Implemented ts_timeline:lookup/2 Implemented ts_entry:lookup/2
2011-01-30 08:28:56 -06:00
EJSON = {struct, [
Using lists instead of atoms for things being turned into JSON.
2013-09-21 15:52:29 -05:00
{"status", "internal server error"}]},
Added SSL, CORS support for the API.
2013-09-21 17:19:13 +00:00
[{status, 500}, {content, "application/json", json:encode(EJSON)},
{header, ["Access-Control-Allow-Origin: ", get_origin_header(YArg)]},
{header, ["Access-Control-Allow-Credentials: ", "true"]}].
Reference in New Issue Copy Permalink