<?php
/*--------------------------------------------------------+
| SYSTOPIA CiviProxy                                      |
|  a simple proxy solution for external access to CiviCRM |
| Copyright (C) 2015 SYSTOPIA                             |
| Author: B. Endres (endres -at- systopia.de)             |
| http://www.systopia.de/                                 |
+---------------------------------------------------------*/

require_once "config.php";
require_once "proxy.php";

// see if REST API is enabled
if (!$target_rest) civiproxy_http_error("Feature disabled", 405);


// basic check
if (!civiproxy_security_check('rest')) {
  civiproxy_rest_error("Access denied.");
}

// check credentials
$credentials = civiproxy_get_parameters(array('key' => 'string', 'api_key' => 'string'));
if (empty($credentials['key'])) {
  civiproxy_rest_error("No site key given");
} else {
  if (isset($sys_key_map[$credentials['key']])) {
    $credentials['key'] = $sys_key_map[$credentials['key']];
  } else {
    civiproxy_rest_error("Invalid site key");
  }
}

if (empty($credentials['api_key'])) {
  civiproxy_rest_error("No API key given");
} else {
  if (isset($api_key_map[$credentials['api_key']])) {
    $credentials['api_key'] = $api_key_map[$credentials['api_key']];
  } else {
    civiproxy_rest_error("Invalid api key");
  }
}

// check if the call itself is allowed
$action = civiproxy_get_parameters(array('entity' => 'string', 'action' => 'string', 'version' => 'int', 'json' => 'int', 'sequential' => 'int'));
if (!isset($action['version']) || $action['version'] != 3) {
  civiproxy_rest_error("API 'version' information missing.");
}

// in release 0.4, allowed entity/actions per IP were introduced. To introduce backward compatibility,
// the previous test is still used when no 'all' key is found in the array
if (isset($rest_allowed_actions['all'])) {
	// get valid key for the rest_allowed_actions
	$valid_allowed_key = civiproxy_get_valid_allowed_actions_key($action, $rest_allowed_actions);

	if (isset($rest_allowed_actions[$valid_allowed_key][$action['entity']]) && isset($rest_allowed_actions[$valid_allowed_key][$action['entity']][$action['action']])) {
		$valid_parameters = $rest_allowed_actions[$valid_allowed_key][$action['entity']][$action['action']];
	} else {
		civiproxy_rest_error("Invalid entity/action.");
	}
} else {
	if (isset($rest_allowed_actions[$action['entity']]) && isset($rest_allowed_actions[$action['entity']][$action['action']])) {
		$valid_parameters = $rest_allowed_actions[$action['entity']][$action['action']];
	} else {
		civiproxy_rest_error("Invalid entity/action.");
	}
}

// extract parameters and add credentials and action data
$parameters = civiproxy_get_parameters($valid_parameters);
foreach ($credentials as $key => $value) {
  $parameters[$key] = $value;
}
foreach ($action as $key => $value) {
  $parameters[$key] = $value;
}

// evaluate the JSON parameter
global $evaluate_json_parameter;
if ($evaluate_json_parameter) {
  if (isset($_REQUEST['json'])) {
    $json_data = json_decode($_REQUEST['json']);
    if (!empty($json_data)) {
      $json_parameters = civiproxy_get_parameters($valid_parameters, $json_data);
      $parameters['json'] = json_encode($json_parameters);
    }
  }
}

// finally execute query
civiproxy_redirect($target_rest, $parameters);


/**
 * generates a CiviCRM REST API compliant error
 * and ends processing
 */
function civiproxy_rest_error($message) {
  $error = array( 'is_error'      => 1,
                  'error_message' => $message);
  // TODO: Implement
  //header();
  print json_encode($error);
  exit();
}