mirror of
https://github.com/wavelog/wavelog.git
synced 2026-03-22 10:24:14 +00:00
c70c2ec5cd
* feat[clubstations]: New DB structure
* feat[clubstations]: Add clubstationstable in user managment
* feat[clubstations]: Show last operator
* feat[clubstations]: Better solution for last operator. tnx for the hint @int2001
* feat[clubstations]: New Club Model and Controller
* feat[clubstations]: Add "Add User" and "Edit User" functionality
* docs[clubstations]: move comment
* feat[clubstations]: Add "Delete Member" functionality
* feat[clubstations]: some enhancements and javascript
* fix[clubstations]: Wrong message class for flashmessages
* feat[clubstations]: Added Switch in the Header menu (not functional yet)
* feat[clubstations]: clubswitch modal
* fix[clubstations]: Load encryption library if not already loaded
* fix[clubstations]: Prevent direct login attempts to clubstations and enhance impersonation authorization
* fix[clubstations]: Typo
* feat[clubstations]: Only show the operator dialog if there is something fishy
* fix[user]: little UI bug
* feat[impersonate]: Add source uid to session data
* fix[impersonate]: logic adjustment
* feat[clubstations]: Add manage button in header menu for club officers
* fix[clubstations]: typo in permission level check
* fix[clubstations]: Full rights for the admin
* feat[impersonate]: Custom sessiondata
* feat[impersonate]: Implement stop impersonation feature with modal confirmation; "the way back"
* fix(modal): Fix bug where modal was hidden when mouse leaved the browser content
* docs(config): Adjust config description for special callsigns and clubstations
* feat(club): Add club access check helper
* typo
* fix[impersonation]: Better text
* feat(club): Selectize for a efficient user search
* feat(clubstations): Restrict clubstations based on users permission level part 1/x
* adjustments for dev merge
* Adjusted club right for the advanced logbook
* feat[user]: Refactoring of the Action Buttons in the user table
* fix[club_permissions]: normal button instead small one for club permissions
* remove unnecessary line break in modal body
* feat[clubstations]: Add Club Mode badge to the header
* fix[clubstations]: fix maintenance mode
* allow switch back on http
* feat(simplefle): display operator input based on club_access
* small UI adjustments
* small UI adjustments
* moved api page to a index.php file and added support for clubstations
* removed unused stuff
* typo
* radios and api keys
* missed one binding
* fix qso view, even officers do just see their own radios in QSO logging
* omit the need for a relogin to see the changes as an admin
* Omit the need for relogin after club changes in general. It's a question of UX. It's better to accept a little higher DB load (if clubstations are enabled) then the need of an user to relogin. There is some room for improvement by changing user_model->get_by_id() and adding a join there. This can be done later if we see that the load is too high
* If the user is not the creator of the API key, it's likely a clubstation. In this case the callsign of the clubstation can not be the same as the callsign of the user (operator call provided by the user). If this is the case, we need to use the callsign of the creator of the API key
* remove debug messages
* better UI in header
* found a typo
* full access in clubstations for admins (if accessed via admin usertable)
* adjusted text
* adjusted text
* adjust text
* reduce required chars
* bugfix: missing the correct authentication in case the admin was not member of the club. he wasn't able to switch back
* reduce debug messages
* fixed UI bug related to tooltips
* load js in controller
* upps..
* some UI adjustments
* corrected permissions
* if user gets delete we need to remove data in club_permissions and also api keys which were created by this user
* Notify members about new memberships or changes in permission level
* add spinner to save button
* make login/logout process more bulletproof
* remove the relogin cookie after the attempt
* better strategy
* bug where switch back failed if user is no admin
* make api keys more secure
* mask not owned api keys
* removed annoying link
* if a user gets removed from a club we also should delete the corresponding api keys and cat radios
* adjusted wiki link
* Auto creation of logbook and location when new user is created
* store and display locator in uppercase
* same for callsign
* fixed a bug in user/club creation
* Revert "Auto creation of logbook and location when new user is created"
We found another solution to which will be addressed in a second PR
This reverts commit f05f4b7bf0.
* Optimized SQL for stats at userlist
* Source query for lastop "out", because mysql<9.0 can't handle Windowed functions
* adjust migration
* add new columns to users table to get created_at and modified_at
* added a partial down function
* add operator dropdown for clubstations
* fix mig version
* Add some backend restrictions in case a user wants to try something funny with the club
---------
Co-authored-by: Andreas Kristiansen <6977712+AndreasK79@users.noreply.github.com>
Co-authored-by: int2001 <joerg@dj7nt.de>
974 lines
31 KiB
PHP
974 lines
31 KiB
PHP
<?php if ( ! defined('BASEPATH')) exit('No direct script access allowed');
|
|
|
|
class API extends CI_Controller {
|
|
|
|
function index() {
|
|
$this->load->model('user_model');
|
|
if(!$this->user_model->authorize(3)) { $this->session->set_flashdata('error', __("You're not allowed to do that!")); redirect('dashboard'); }
|
|
|
|
$this->load->model('api_model');
|
|
$this->load->library('form_validation');
|
|
|
|
$data['api_keys'] = $this->api_model->keys();
|
|
$data['clubmode'] = $this->session->userdata('clubstation') == 1 ? true : false;
|
|
$data['page_title'] = __("API");
|
|
|
|
$this->load->view('interface_assets/header', $data);
|
|
$this->load->view('api/index');
|
|
$this->load->view('interface_assets/footer');
|
|
}
|
|
|
|
// legacy
|
|
function help() {
|
|
redirect('api');
|
|
}
|
|
|
|
|
|
function edit($key) {
|
|
$this->load->model('user_model');
|
|
if(!$this->user_model->authorize(3)) { $this->session->set_flashdata('error', __("You're not allowed to do that!")); redirect('dashboard'); }
|
|
|
|
$this->load->model('api_model');
|
|
|
|
$this->load->helper(array('form', 'url'));
|
|
|
|
$this->load->library('form_validation');
|
|
|
|
$this->form_validation->set_rules('api_desc', __("API Description"), 'required');
|
|
$this->form_validation->set_rules('api_key', __("API Key is required. Do not change this field"), 'required');
|
|
|
|
$data['api_info'] = $this->api_model->key_description($key);
|
|
|
|
if ($this->form_validation->run() == FALSE)
|
|
{
|
|
$data['page_title'] = __("Edit API Description");
|
|
|
|
$this->load->view('interface_assets/header', $data);
|
|
$this->load->view('api/description');
|
|
$this->load->view('interface_assets/footer');
|
|
}
|
|
else
|
|
{
|
|
// Success!
|
|
|
|
$this->api_model->update_key_description($this->input->post('api_key'), $this->input->post('api_desc'));
|
|
|
|
$this->session->set_flashdata('notice', sprintf(__("API Key %s description has been updated."), "<b>".$this->input->post('api_key')."</b>"));
|
|
|
|
redirect('api');
|
|
}
|
|
|
|
}
|
|
|
|
function generate($rights) {
|
|
$this->load->model('user_model');
|
|
if(!$this->user_model->authorize(3)) { $this->session->set_flashdata('error', __("You're not allowed to do that!")); redirect('dashboard'); }
|
|
|
|
if ($rights !== "r" && $rights !== "rw") {
|
|
$this->session->set_flashdata('error', __("Invalid API rights"));
|
|
redirect('api');
|
|
exit;
|
|
}
|
|
|
|
$this->load->model('api_model');
|
|
|
|
if ($this->session->userdata('clubstation') == 1 && $this->session->userdata('impersonate') == 1) {
|
|
$creator = $this->session->userdata('source_uid');
|
|
} else {
|
|
$creator = $this->session->userdata('user_id');
|
|
}
|
|
|
|
if ($this->api_model->generate_key($rights, $creator)) {
|
|
$this->session->set_flashdata('success', __("API Key generated"));
|
|
} else {
|
|
$this->session->set_flashdata('error', __("API Key could not be generated"));
|
|
}
|
|
redirect('api');
|
|
}
|
|
|
|
function delete($key) {
|
|
$this->load->model('user_model');
|
|
if(!$this->user_model->authorize(3)) { $this->session->set_flashdata('error', __("You're not allowed to do that!")); redirect('dashboard'); }
|
|
|
|
|
|
$this->load->model('api_model');
|
|
|
|
$this->api_model->delete_key($key);
|
|
|
|
$this->session->set_flashdata('notice', sprintf(__("API Key %s has been deleted"), "<b>".$key."</b>" ));
|
|
|
|
redirect('api');
|
|
}
|
|
|
|
// Example of authing
|
|
function auth($key = '') {
|
|
$this->load->model('api_model');
|
|
header("Content-type: text/xml");
|
|
if($this->api_model->access($key) == "No Key Found" || $this->api_model->access($key) == "Key Disabled") {
|
|
echo "<auth>";
|
|
echo "<message>Key Invalid - either not found or disabled</message>";
|
|
echo "</auth>";
|
|
} else {
|
|
echo "<auth>";
|
|
echo "<status>Valid</status>";
|
|
echo "<rights>".$this->api_model->access($key)."</rights>";
|
|
echo "</auth>";
|
|
$this->api_model->update_last_used($key);
|
|
}
|
|
}
|
|
|
|
function station_info($key = '') {
|
|
$this->load->model('api_model');
|
|
$this->load->model('stations');
|
|
header("Content-type: application/json");
|
|
if(substr($this->api_model->access($key),0,1) == 'r') { /* Check permission for reading */
|
|
$this->api_model->update_last_used($key);
|
|
$userid = $this->api_model->key_userid($key);
|
|
$station_ids = array();
|
|
$stations=$this->stations->all_of_user($userid);
|
|
foreach ($stations->result() as $row) {
|
|
$result['station_id']=$row->station_id;
|
|
$result['station_profile_name']=$row->station_profile_name;
|
|
$result['station_gridsquare']=$row->station_gridsquare;
|
|
$result['station_callsign']=$row->station_callsign;;
|
|
$result['station_active']=$row->station_active;
|
|
array_push($station_ids, $result);
|
|
}
|
|
echo json_encode($station_ids);
|
|
} else {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing or invalid api key"]);
|
|
}
|
|
}
|
|
|
|
|
|
/*
|
|
*
|
|
* Function: QSO
|
|
* Task: allows passing of ADIF data to Wavelog
|
|
*/
|
|
function qso($dryrun = false) {
|
|
header('Content-type: application/json');
|
|
set_time_limit(0);
|
|
ini_set('memory_limit', '-1');
|
|
|
|
session_write_close();
|
|
$this->load->model('api_model');
|
|
|
|
$this->load->model('stations');
|
|
|
|
if (!$this->load->is_loaded('Qra')) {
|
|
$this->load->library('Qra');
|
|
}
|
|
|
|
$return_msg = array();
|
|
$return_count = 0;
|
|
|
|
// Decode JSON and store
|
|
$raw = file_get_contents("php://input");
|
|
$obj = json_decode($raw,true);
|
|
$raw='';
|
|
if ($obj === NULL) {
|
|
echo json_encode(['status' => 'failed', 'reason' => "wrong JSON"]);
|
|
die();
|
|
}
|
|
|
|
if(!isset($obj['key']) || $this->api_model->authorize($obj['key']) == 0) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing or wrong api key"]);
|
|
die();
|
|
}
|
|
|
|
$userid = $this->api_model->key_userid($obj['key']);
|
|
$created_by = $this->api_model->key_created_by($obj['key']);
|
|
|
|
/**
|
|
* As the API key user could use it also for clubstations we need to do an additional check here. Only if clubstations are enabled
|
|
*
|
|
* In Detail:
|
|
* If the user is not the creator of the API key, it's likely a clubstation. In this case the callsign of the clubstation
|
|
* can not be the same as the callsign of the user (operator call provided by the user). If this is the case, we need to use the callsign of the creator of the API key
|
|
*/
|
|
if ($this->config->item('special_callsign')) {
|
|
if ($userid != $created_by) {
|
|
$this->load->model('user_model');
|
|
$real_operator = $this->user_model->get_by_id($created_by)->row()->user_callsign;
|
|
// TODO: It would be possible to check here if operator is allowed to use the clubstation, but this can be added later if needed
|
|
} else {
|
|
$real_operator = null;
|
|
}
|
|
}
|
|
|
|
$this->api_model->update_last_used(($obj['key']));
|
|
|
|
if(!isset($obj['station_profile_id']) || $this->stations->check_station_against_user($obj['station_profile_id'], $userid) == false) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "station id does not belong to the API key owner."]);
|
|
die();
|
|
}
|
|
$mystation=$this->stations->profile_clean($obj['station_profile_id']);
|
|
$mygrid=($mystation->station_gridsquare ?? '');
|
|
|
|
if($obj['type'] == "adif" && $obj['string'] != "") {
|
|
// Load the logbook model for adding QSO records
|
|
$this->load->model('logbook_model');
|
|
|
|
// Load ADIF Parser
|
|
if (!$this->load->is_loaded('adif_parser')) {
|
|
$this->load->library('adif_parser');
|
|
}
|
|
|
|
// Feed in the ADIF string
|
|
$this->adif_parser->feed($obj['string']);
|
|
$obj['string']='';
|
|
$return_msg=[];
|
|
$adif_count=0;
|
|
$adif_errors=0;
|
|
if( !($dryrun) && (isset($obj['station_profile_id']))) {
|
|
$custom_errors = "";
|
|
$alladif=[];
|
|
gc_collect_cycles();
|
|
while($record = $this->adif_parser->get_record()) {
|
|
if(!(isset($record['call'])) || (trim($record['call']) == '')) {
|
|
continue;
|
|
}
|
|
if(count($record) == 0) {
|
|
break;
|
|
}
|
|
// in case the provided op call is the same as the clubstation callsign, we need to use the creator of the API key as the operator
|
|
$recorded_operator = $record['operator'] ?? '';
|
|
if ($real_operator != null && ($record['operator'] == $record['station_callsign']) || ($recorded_operator == '')) {
|
|
$record['operator'] = $real_operator;
|
|
}
|
|
|
|
if ((key_exists('gridsquare',$record)) && (($mygrid ?? '') != '') && (($record['gridsquare'] ?? '') != '') && (!(key_exists('distance',$record)))) {
|
|
$record['distance'] = $this->qra->distance($mygrid, $record['gridsquare'], 'K');
|
|
}
|
|
array_push($alladif,$record);
|
|
$adif_count++;
|
|
};
|
|
$record=''; // free memory
|
|
gc_collect_cycles();
|
|
$custom_errors = $this->logbook_model->import_bulk($alladif, $obj['station_profile_id'], false, false, false, false, false, false, false, false, true, false, true, false);
|
|
if ($custom_errors) {
|
|
$adif_errors++;
|
|
}
|
|
$alladif=[];
|
|
$return_msg[]='';
|
|
} else {
|
|
$return_msg[]='Dryrun works';
|
|
}
|
|
|
|
if ($adif_errors == 0) {
|
|
http_response_code(201);
|
|
echo json_encode(['status' => 'created', 'type' => $obj['type'], 'string' => $obj['string'], 'adif_count' => $adif_count, 'adif_errors' => $adif_errors, 'messages' => $return_msg ]);
|
|
} else {
|
|
$return_msg[]=$custom_errors;
|
|
http_response_code(400);
|
|
echo json_encode(['status' => 'abort', 'type' => $obj['type'], 'string' => $obj['string'], 'adif_count' => $adif_count, 'adif_errors' => $adif_errors, 'messages' => $return_msg ]);
|
|
}
|
|
|
|
|
|
}
|
|
|
|
}
|
|
|
|
/*
|
|
*
|
|
* Function: get_contacts_adif
|
|
* Task: allows third party software to pull ADIF QSO data from wavelog after a baseline of the last fetched QSO id
|
|
*/
|
|
function get_contacts_adif() {
|
|
|
|
//set header
|
|
header('Content-type: application/json');
|
|
|
|
//load API model
|
|
$this->load->model('api_model');
|
|
|
|
// Decode JSON and store
|
|
$obj = json_decode(file_get_contents("php://input"), true);
|
|
if ($obj === NULL) {
|
|
http_response_code(400);
|
|
echo json_encode(['status' => 'failed', 'reason' => "wrong JSON"]);
|
|
return;
|
|
}
|
|
|
|
//do authorization
|
|
if(!isset($obj['key']) || $this->api_model->authorize($obj['key']) == 0) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing api key"]);
|
|
return;
|
|
}
|
|
|
|
//check for relevant fields in JSON input
|
|
if(!isset($obj['station_id']) or !isset($obj['fetchfromid']))
|
|
{
|
|
http_response_code(400);
|
|
echo json_encode(['status' => 'failed', 'reason' => "Not all required fields were present in input JSON"]);
|
|
return;
|
|
}
|
|
|
|
//extract relevant data to variables
|
|
$key = $obj['key'];
|
|
$station_id = $obj['station_id'];
|
|
$fetchfromid = $obj['fetchfromid'];
|
|
$limit = 20000;
|
|
if ( (array_key_exists('limit',$obj)) && (is_numeric($obj['limit']*1)) ) {
|
|
$limit = $obj['limit'];
|
|
}
|
|
|
|
//check if goalpost is numeric as an additional layer of SQL injection prevention
|
|
if(!is_numeric($fetchfromid))
|
|
{
|
|
http_response_code(400);
|
|
echo json_encode(['status' => 'failed', 'reason' => "Invalid fetchfromid."]);
|
|
return;
|
|
}
|
|
|
|
//make sure the goalpost is an integer
|
|
$fetchfromid = (int)$fetchfromid;
|
|
|
|
//load stations API
|
|
$this->load->model('stations');
|
|
|
|
//get all stations of user to check if station_id should be readable
|
|
$userid = $this->api_model->key_userid($key);
|
|
$station_ids = array();
|
|
$stations=$this->stations->all_of_user($userid);
|
|
|
|
//extract to array
|
|
foreach ($stations->result() as $row) {
|
|
array_push($station_ids, $row->station_id);
|
|
}
|
|
|
|
//return error if station not accessible for the API key
|
|
if(!in_array($station_id, $station_ids)) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "Station ID not accessible for this API key"]);
|
|
return;
|
|
}
|
|
|
|
//load adif data module
|
|
$this->load->model('adif_data');
|
|
|
|
//get qso data
|
|
$data['qsos'] = $this->adif_data->export_past_id($station_id, $fetchfromid, $limit);
|
|
|
|
//set internalonly attribute for adif creation
|
|
$data['internalrender'] = true;
|
|
|
|
//if no new QSOs are ready, return that
|
|
$qso_count = count($data['qsos']->result());
|
|
if($qso_count <= 0) {
|
|
http_response_code(200);
|
|
echo json_encode(['status' => 'successfull', 'message' => 'No new QSOs available.', 'lastfetchedid' => $fetchfromid, 'exported_qsos' => 0, 'adif' => null]);
|
|
return;
|
|
}
|
|
|
|
//convert data to ADIF
|
|
$adif_content = $this->load->view('adif/data/exportall', $data, TRUE);
|
|
|
|
//get new goalpost
|
|
$lastfetchedid = 0;
|
|
foreach ($data['qsos']->result() as $row) {
|
|
$lastfetchedid = max($lastfetchedid, $row->COL_PRIMARY_KEY);
|
|
}
|
|
|
|
//return API result
|
|
http_response_code(200);
|
|
echo json_encode(['status' => 'successfull', 'message' => 'Export successfull', 'lastfetchedid' => $lastfetchedid, 'exported_qsos' => $qso_count, 'adif' => $adif_content]);
|
|
}
|
|
|
|
|
|
// API function to check if a callsign is in the logbook already
|
|
function logbook_check_callsign() {
|
|
header('Content-type: application/json');
|
|
|
|
$this->load->model('api_model');
|
|
|
|
// Decode JSON and store
|
|
$obj = json_decode(file_get_contents("php://input"), true);
|
|
if ($obj === NULL) {
|
|
echo json_encode(['status' => 'failed', 'reason' => "wrong JSON"]);
|
|
return;
|
|
}
|
|
|
|
if(!isset($obj['key']) || $this->api_model->authorize($obj['key']) == 0) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing api key"]);
|
|
return;
|
|
}
|
|
|
|
if(!isset($obj['logbook_public_slug']) || !isset($obj['callsign'])) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing fields"]);
|
|
return;
|
|
}
|
|
|
|
if($obj['logbook_public_slug'] != "" && $obj['callsign'] != "") {
|
|
|
|
$logbook_slug = $obj['logbook_public_slug'];
|
|
$callsign = $obj['callsign'];
|
|
|
|
// If $obj['band'] exists
|
|
if(isset($obj['band'])) {
|
|
$band = $obj['band'];
|
|
} else {
|
|
$band = null;
|
|
}
|
|
|
|
$this->load->model('logbooks_model');
|
|
|
|
if($this->logbooks_model->public_slug_exists($logbook_slug)) {
|
|
$logbook_id = $this->logbooks_model->public_slug_exists_logbook_id($logbook_slug);
|
|
if($logbook_id != false)
|
|
{
|
|
// Get associated station locations for mysql queries
|
|
$logbooks_locations_array = $this->logbooks_model->list_logbook_relationships($logbook_id);
|
|
|
|
if (!$logbooks_locations_array) {
|
|
// Logbook not found
|
|
http_response_code(404);
|
|
echo json_encode(['status' => 'failed', 'reason' => "Empty Logbook"]);
|
|
die();
|
|
}
|
|
} else {
|
|
// Logbook not found
|
|
http_response_code(404);
|
|
echo json_encode(['status' => 'failed', 'reason' => $logbook_slug." has no associated station locations"]);
|
|
die();
|
|
}
|
|
// Search Logbook for callsign
|
|
$this->load->model('logbook_model');
|
|
|
|
$result = $this->logbook_model->check_if_callsign_worked_in_logbook($callsign, $logbooks_locations_array, $band);
|
|
|
|
http_response_code(201);
|
|
if($result > 0)
|
|
{
|
|
echo json_encode(['callsign' => $callsign, 'result' => 'Found']);
|
|
} else {
|
|
echo json_encode(['callsign' => $callsign, 'result' => 'Not Found']);
|
|
}
|
|
} else {
|
|
// Logbook not found
|
|
http_response_code(404);
|
|
echo json_encode(['status' => 'failed', 'reason' => "logbook not found"]);
|
|
die();
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
// API function to check if a grid is in the logbook already
|
|
function logbook_check_grid() {
|
|
header('Content-type: application/json');
|
|
|
|
$this->load->model('api_model');
|
|
|
|
// Decode JSON and store
|
|
$obj = json_decode(file_get_contents("php://input"), true);
|
|
if ($obj === NULL) {
|
|
echo json_encode(['status' => 'failed', 'reason' => "wrong JSON"]);
|
|
}
|
|
|
|
if(!isset($obj['key']) || $this->api_model->authorize($obj['key']) == 0) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing api key"]);
|
|
}
|
|
|
|
if(!isset($obj['logbook_public_slug']) || !isset($obj['grid'])) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing fields"]);
|
|
return;
|
|
}
|
|
|
|
if($obj['logbook_public_slug'] != "" && $obj['grid'] != "") {
|
|
|
|
$logbook_slug = $obj['logbook_public_slug'];
|
|
$grid = $obj['grid'];
|
|
|
|
// If $obj['band'] exists
|
|
if(isset($obj['band'])) {
|
|
$band = $obj['band'];
|
|
} else {
|
|
$band = null;
|
|
}
|
|
|
|
// If $obj['cnfm'] exists
|
|
if(isset($obj['cnfm'])) {
|
|
$cnfm = $obj['cnfm'];
|
|
} else {
|
|
$cnfm = null;
|
|
}
|
|
|
|
$this->load->model('logbooks_model');
|
|
|
|
if($this->logbooks_model->public_slug_exists($logbook_slug)) {
|
|
$logbook_id = $this->logbooks_model->public_slug_exists_logbook_id($logbook_slug);
|
|
if($logbook_id != false)
|
|
{
|
|
// Get associated station locations for mysql queries
|
|
$logbooks_locations_array = $this->logbooks_model->list_logbook_relationships($logbook_id);
|
|
|
|
if (!$logbooks_locations_array) {
|
|
// Logbook not found
|
|
http_response_code(404);
|
|
echo json_encode(['status' => 'failed', 'reason' => "Empty Logbook"]);
|
|
die();
|
|
}
|
|
} else {
|
|
// Logbook not found
|
|
http_response_code(404);
|
|
echo json_encode(['status' => 'failed', 'reason' => $logbook_slug." has no associated station locations"]);
|
|
die();
|
|
}
|
|
// Search Logbook for callsign
|
|
$this->load->model('logbook_model');
|
|
|
|
$query = $this->logbook_model->check_if_grid_worked_in_logbook($grid, $logbooks_locations_array, $band, $cnfm);
|
|
http_response_code(201);
|
|
if ($query->num_rows() == 0) {
|
|
echo json_encode(['gridsquare' => strtoupper($grid), 'result' => 'Not Found']);
|
|
} else if ($cnfm == null) {
|
|
echo json_encode(['gridsquare' => strtoupper($grid), 'result' => 'Found']);
|
|
} else {
|
|
$arr = [];
|
|
foreach($query->result() as $line) {
|
|
$arr[] = $line->gridorcnfm;
|
|
}
|
|
if (in_array('Y', $arr)) {
|
|
echo json_encode(['gridsquare' => strtoupper($grid), 'result' => 'Confirmed']);
|
|
} else {
|
|
echo json_encode(['gridsquare' => strtoupper($grid), 'result' => 'Worked']);
|
|
}
|
|
}
|
|
|
|
} else {
|
|
// Logbook not found
|
|
http_response_code(404);
|
|
echo json_encode(['status' => 'failed', 'reason' => "logbook not found"]);
|
|
die();
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
/* ENDPOINT for Rig Control */
|
|
|
|
function radio() {
|
|
session_write_close();
|
|
header('Content-type: application/json');
|
|
|
|
$this->load->model('api_model');
|
|
|
|
//$json = '{"radio":"FT-950","frequency":14075,"mode":"SSB","timestamp":"2012/04/07 16:47"}';
|
|
|
|
$this->load->model('cat');
|
|
|
|
//var_dump(file_get_contents("php://input"), true);
|
|
|
|
// Decode JSON and store
|
|
$obj = json_decode(file_get_contents("php://input"), true);
|
|
|
|
if(!isset($obj['key']) || $this->api_model->authorize($obj['key']) == 0) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing api key"]);
|
|
die();
|
|
}
|
|
|
|
if(!isset($obj['radio'])) {
|
|
http_response_code(404);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing radio element in payload"]);
|
|
die();
|
|
}
|
|
|
|
$this->api_model->update_last_used($obj['key']);
|
|
|
|
$user_id = $this->api_model->key_userid($obj['key']);
|
|
$created_by = $this->api_model->key_created_by($obj['key']);
|
|
|
|
// Clubmode needs an additional check for the operator
|
|
if ($user_id != $created_by) {
|
|
$operator = $created_by;
|
|
} else {
|
|
$operator = $user_id;
|
|
}
|
|
|
|
// Special Case: Yaesu Radio's use CW-U and CW-L which aren't official ADIF Modes. We override this here to CW
|
|
if (isset($obj['mode']) && (strtoupper($obj['mode']) == 'CW-U' || strtoupper($obj['mode']) == 'CW-L')) {
|
|
$obj['mode'] = 'CW';
|
|
}
|
|
|
|
// Store Result to Database
|
|
$this->cat->update($obj, $user_id, $operator);
|
|
|
|
// Return Message
|
|
|
|
$arr = array('status' => 'success');
|
|
|
|
echo json_encode($arr);
|
|
|
|
}
|
|
|
|
/*
|
|
*
|
|
* Stats API function calls
|
|
*
|
|
*/
|
|
|
|
function statistics($key = null) {
|
|
header('Content-type: application/json');
|
|
$this->load->model('logbook_model');
|
|
|
|
$data['todays_qsos'] = $this->logbook_model->todays_qsos(null, $key);
|
|
$data['total_qsos'] = $this->logbook_model->total_qsos(null, $key);
|
|
$data['month_qsos'] = $this->logbook_model->month_qsos(null, $key);
|
|
$data['year_qsos'] = $this->logbook_model->year_qsos(null, $key);
|
|
|
|
http_response_code(201);
|
|
echo json_encode(['Today' => $data['todays_qsos'], 'total_qsos' => $data['total_qsos'], 'month_qsos' => $data['month_qsos'], 'year_qsos' => $data['year_qsos']]);
|
|
|
|
}
|
|
|
|
function private_lookup() {
|
|
// Lookup Callsign and dxcc for further informations. UseCase: e.g. external Application which checks calls like FlexRadio-Overlay
|
|
$raw_input = json_decode(file_get_contents("php://input"), true);
|
|
$user_id='';
|
|
$this->load->model('user_model');
|
|
if (!( $this->user_model->authorize($this->config->item('auth_mode') ))) { // User not authorized?
|
|
$no_auth=true;
|
|
$this->load->model('api_model');
|
|
if (!( ((isset($raw_input['key'])) && ($this->api_model->authorize($raw_input['key']) > 0) ))) { // Key invalid?
|
|
$no_auth=true;
|
|
} else {
|
|
$no_auth=false;
|
|
$user_id=$this->api_model->key_userid($raw_input['key']);
|
|
}
|
|
if ($no_auth) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing api key or session"]);
|
|
die();
|
|
}
|
|
} else {
|
|
$user_id=$this->session->userdata('user_id');
|
|
}
|
|
|
|
$this->load->model('stations');
|
|
$all_station_ids=$this->stations->all_station_ids_of_user($user_id);
|
|
|
|
if ((array_key_exists('station_ids',$raw_input)) && (is_array($raw_input['station_ids']))) { // Special station_ids needed and it is an array?
|
|
$a_station_ids=[];
|
|
foreach ($raw_input['station_ids'] as $stationid) { // Check for grants to given station_id
|
|
if ($this->stations->check_station_against_user($stationid, $user_id)) {
|
|
$a_station_ids[]=$stationid;
|
|
}
|
|
}
|
|
$station_ids=implode(', ', $a_station_ids);
|
|
} else {
|
|
$station_ids=$all_station_ids; // Take all of user if no station_ids were given
|
|
}
|
|
|
|
if ($station_ids == '') { // No station_ids found for user or no station_id of given ones were granted? exit!
|
|
http_response_code(200);
|
|
echo json_encode(['status' => 'failed', 'reason' => "no station_profiles are matching the User with this API-Key"]);
|
|
die();
|
|
}
|
|
|
|
if (array_key_exists('band',$raw_input)) {
|
|
$band=$raw_input['band'];
|
|
} else {
|
|
$band='NO_BAND';
|
|
}
|
|
if (array_key_exists('mode',$raw_input)) {
|
|
$mode=$raw_input['mode'];
|
|
} else {
|
|
$mode='NO_MODE';
|
|
}
|
|
|
|
$lookup_callsign = strtoupper($raw_input['callsign'] ?? '');
|
|
if ($lookup_callsign ?? '' != '') {
|
|
|
|
|
|
$this->load->model("logbook_model");
|
|
$date = date("Y-m-d");
|
|
|
|
// Return Array
|
|
$return = [
|
|
"callsign" => "",
|
|
"dxcc" => false,
|
|
"dxcc_id" => -1,
|
|
"dxcc_lat" => "",
|
|
"dxcc_long" => "",
|
|
"dxcc_cqz" => "",
|
|
"dxcc_flag" => "",
|
|
"cont" => "",
|
|
"name" => "",
|
|
"gridsquare" => "",
|
|
"location" => "",
|
|
"iota_ref" => "",
|
|
"state" => "",
|
|
"us_county" => "",
|
|
"qsl_manager" => "",
|
|
"bearing" => "",
|
|
"call_worked" => false,
|
|
"call_worked_band" => false,
|
|
"call_worked_band_mode" => false,
|
|
"lotw_member" => false,
|
|
"dxcc_confirmed_on_band" => false,
|
|
"dxcc_confirmed_on_band_mode" => false,
|
|
"dxcc_confirmed" => false,
|
|
"call_confirmed" => false,
|
|
"call_confirmed_band" => false,
|
|
"call_confirmed_band_mode" => false,
|
|
"suffix_slash" => "", // Suffix Slash aka Portable
|
|
];
|
|
|
|
$return['callsign'] = $lookup_callsign;
|
|
|
|
$callsign_dxcc_lookup = $this->logbook_model->dxcc_lookup($lookup_callsign, $date);
|
|
|
|
$last_slash_pos = strrpos($lookup_callsign, '/');
|
|
|
|
if(isset($last_slash_pos) && $last_slash_pos > 4) {
|
|
$suffix_slash = $last_slash_pos === false ? $lookup_callsign : substr($lookup_callsign, $last_slash_pos + 1);
|
|
switch ($suffix_slash) {
|
|
case "P":
|
|
$suffix_slash_item = "Portable";
|
|
break;
|
|
case "M":
|
|
$suffix_slash_item = "Mobile";
|
|
case "MM":
|
|
$suffix_slash_item = "Maritime Mobile";
|
|
break;
|
|
default:
|
|
// If its not one of the above suffix slashes its likely dxcc
|
|
$ans2 = $this->logbook_model->dxcc_lookup($suffix_slash, $date);
|
|
$suffix_slash_item = null;
|
|
}
|
|
|
|
$return['suffix_slash'] = $suffix_slash_item;
|
|
}
|
|
|
|
// If the final slash is a DXCC then find it!
|
|
if (isset($ans2['call'])) {
|
|
$return['dxcc_id'] = $ans2['adif'];
|
|
$return['dxcc'] = $ans2['entity'];
|
|
$return['dxcc_lat'] = $ans2['lat'];
|
|
$return['dxcc_long'] = $ans2['long'];
|
|
$return['dxcc_cqz'] = $ans2['cqz'];
|
|
$return['cont'] = $ans2['cont'];
|
|
} else {
|
|
$return['dxcc_id'] = $callsign_dxcc_lookup['adif'] ?? '';
|
|
$return['dxcc'] = $callsign_dxcc_lookup['entity'] ?? '';
|
|
$return['dxcc_lat'] = $callsign_dxcc_lookup['lat'] ?? '';
|
|
$return['dxcc_long'] = $callsign_dxcc_lookup['long'] ?? '';
|
|
$return['dxcc_cqz'] = $callsign_dxcc_lookup['cqz'] ?? '';
|
|
$return['cont'] = $callsign_dxcc_lookup['cont'] ?? '';
|
|
}
|
|
|
|
// Query stations of KeyOwner for an already worked call
|
|
$userdata=$this->user_model->get_by_id($user_id);
|
|
$call_lookup_results = $this->logbook_model->call_lookup_result($lookup_callsign, $station_ids,$userdata->row()->user_default_confirmation,$band,$mode);
|
|
|
|
if($call_lookup_results != null) {
|
|
$return['name'] = $call_lookup_results->COL_NAME;
|
|
$return['gridsquare'] = $call_lookup_results->COL_GRIDSQUARE;
|
|
$return['location'] = $call_lookup_results->COL_QTH;
|
|
$return['iota_ref'] = $call_lookup_results->COL_IOTA;
|
|
$return['qsl_manager'] = $call_lookup_results->COL_QSL_VIA;
|
|
$return['state'] = $call_lookup_results->COL_STATE;
|
|
$return['us_county'] = $call_lookup_results->COL_CNTY;
|
|
$return['dxcc_id'] = $call_lookup_results->COL_DXCC;
|
|
$return['cont'] = $call_lookup_results->COL_CONT;
|
|
$return['call_worked'] = true;
|
|
$return['call_worked_band'] = ($call_lookup_results->CALL_WORKED_BAND==1) ? true : false;
|
|
$return['call_worked_band_mode'] = ($call_lookup_results->CALL_WORKED_BAND_MODE==1) ? true : false;
|
|
$return['call_confirmed'] = ($call_lookup_results->CALL_CNF==1) ? true : false;
|
|
$return['call_confirmed_band'] = ($call_lookup_results->CALL_CNF_BAND==1) ? true : false;
|
|
$return['call_confirmed_band_mode'] = ($call_lookup_results->CALL_CNF_BAND_MODE==1) ? true : false;
|
|
|
|
if ($return['gridsquare'] != "") {
|
|
$return['latlng'] = $this->qralatlng($return['gridsquare']);
|
|
}
|
|
|
|
}
|
|
|
|
if ($return['dxcc'] ?? '' != '') {
|
|
$this->load->library('DxccFlag');
|
|
$return['dxcc_flag']=$this->dxccflag->get($return['dxcc_id']);
|
|
}
|
|
|
|
$lotw_days=$this->logbook_model->check_last_lotw($lookup_callsign);
|
|
if ($lotw_days != null) {
|
|
$return['lotw_member']=$lotw_days;
|
|
} else {
|
|
$lotw_member="";
|
|
}
|
|
|
|
if ($return['dxcc_id'] ?? '' != '') { // DXCC derivated before? if yes: check cnf-states
|
|
$return['dxcc_confirmed']=($this->logbook_model->check_if_dxcc_cnfmd_in_logbook_api($userdata->row()->user_default_confirmation,$return['dxcc_id'], $station_ids, null, null)>0) ? true : false;
|
|
$return['dxcc_confirmed_on_band']=($this->logbook_model->check_if_dxcc_cnfmd_in_logbook_api($userdata->row()->user_default_confirmation,$return['dxcc_id'], $station_ids, $band, null)>0) ? true : false;
|
|
$return['dxcc_confirmed_on_band_mode']=($this->logbook_model->check_if_dxcc_cnfmd_in_logbook_api($userdata->row()->user_default_confirmation,$return['dxcc_id'], $station_ids, $band, $mode)>0) ? true : false;
|
|
}
|
|
echo json_encode($return, JSON_PRETTY_PRINT);
|
|
} else {
|
|
echo '{"error":"callsign to lookup not given"}';
|
|
}
|
|
return;
|
|
}
|
|
|
|
function lookup() {
|
|
// This API provides NO information about previous QSOs. It just derivates DXCC, Lat, Long. It is used by the DXClusterAPI
|
|
$raw_input = json_decode(file_get_contents("php://input"), true);
|
|
$user_id='';
|
|
$this->load->model('user_model');
|
|
if (!( $this->user_model->authorize($this->config->item('auth_mode') ))) { // User not authorized?
|
|
$no_auth=true;
|
|
$this->load->model('api_model');
|
|
if (!( ((isset($raw_input['key'])) && ($this->api_model->authorize($raw_input['key']) > 0) ))) { // Key invalid?
|
|
$no_auth=true;
|
|
} else {
|
|
$no_auth=false;
|
|
$user_id=$this->api_model->key_userid($raw_input['key']);
|
|
}
|
|
if ($no_auth) {
|
|
http_response_code(401);
|
|
echo json_encode(['status' => 'failed', 'reason' => "missing api key or session"]);
|
|
die();
|
|
}
|
|
} else {
|
|
$user_id=$this->session->userdata('user_id');
|
|
}
|
|
|
|
$this->load->model('stations');
|
|
$station_ids=$this->stations->all_station_ids_of_user($user_id);
|
|
|
|
$lookup_callsign = strtoupper($raw_input['callsign'] ?? '');
|
|
if ($lookup_callsign ?? '' != '') {
|
|
|
|
|
|
$this->load->model("logbook_model");
|
|
$date = date("Y-m-d");
|
|
|
|
// Return Array
|
|
$return = [
|
|
"callsign" => "",
|
|
"dxcc" => false,
|
|
"dxcc_id" => -1,
|
|
"dxcc_lat" => "",
|
|
"dxcc_long" => "",
|
|
"dxcc_cqz" => "",
|
|
"dxcc_flag" => "",
|
|
"cont" => "",
|
|
"name" => "",
|
|
"gridsquare" => "",
|
|
"location" => "",
|
|
"iota_ref" => "",
|
|
"state" => "",
|
|
"us_county" => "",
|
|
"qsl_manager" => "",
|
|
"bearing" => "",
|
|
"workedBefore" => false,
|
|
"lotw_member" => false,
|
|
"suffix_slash" => "", // Suffix Slash aka Portable
|
|
];
|
|
|
|
|
|
$return['callsign'] = $lookup_callsign;
|
|
|
|
$callsign_dxcc_lookup = $this->logbook_model->dxcc_lookup($lookup_callsign, $date);
|
|
|
|
$last_slash_pos = strrpos($lookup_callsign, '/');
|
|
|
|
if(isset($last_slash_pos) && $last_slash_pos > 4) {
|
|
$suffix_slash = $last_slash_pos === false ? $lookup_callsign : substr($lookup_callsign, $last_slash_pos + 1);
|
|
switch ($suffix_slash) {
|
|
case "P":
|
|
$suffix_slash_item = "Portable";
|
|
break;
|
|
case "M":
|
|
$suffix_slash_item = "Mobile";
|
|
case "MM":
|
|
$suffix_slash_item = "Maritime Mobile";
|
|
break;
|
|
default:
|
|
// If its not one of the above suffix slashes its likely dxcc
|
|
$ans2 = $this->logbook_model->dxcc_lookup($suffix_slash, $date);
|
|
$suffix_slash_item = null;
|
|
}
|
|
|
|
$return['suffix_slash'] = $suffix_slash_item;
|
|
}
|
|
|
|
// If the final slash is a DXCC then find it!
|
|
if (isset($ans2['call'])) {
|
|
$return['dxcc_id'] = $ans2['adif'];
|
|
$return['dxcc'] = $ans2['entity'];
|
|
$return['dxcc_lat'] = $ans2['lat'];
|
|
$return['dxcc_long'] = $ans2['long'];
|
|
$return['dxcc_cqz'] = $ans2['cqz'];
|
|
$return['cont'] = $ans2['cont'];
|
|
} else {
|
|
$return['dxcc_id'] = $callsign_dxcc_lookup['adif'] ?? '';
|
|
$return['dxcc'] = $callsign_dxcc_lookup['entity'] ?? '';
|
|
$return['dxcc_lat'] = $callsign_dxcc_lookup['lat'] ?? '';
|
|
$return['dxcc_long'] = $callsign_dxcc_lookup['long'] ?? '';
|
|
$return['dxcc_cqz'] = $callsign_dxcc_lookup['cqz'] ?? '';
|
|
$return['cont'] = $callsign_dxcc_lookup['cont'] ?? '';
|
|
}
|
|
|
|
/*
|
|
* Query Data of API-Key-Owner for further informations
|
|
*/
|
|
$call_lookup_results = $this->logbook_model->call_lookup_result($lookup_callsign, $station_ids,'','NO BAND','NO MODE');
|
|
|
|
if($call_lookup_results != null)
|
|
{
|
|
$return['name'] = $call_lookup_results->COL_NAME;
|
|
$return['gridsquare'] = $call_lookup_results->COL_GRIDSQUARE;
|
|
$return['location'] = $call_lookup_results->COL_QTH;
|
|
$return['iota_ref'] = $call_lookup_results->COL_IOTA;
|
|
$return['qsl_manager'] = $call_lookup_results->COL_QSL_VIA;
|
|
$return['state'] = $call_lookup_results->COL_STATE;
|
|
$return['us_county'] = $call_lookup_results->COL_CNTY;
|
|
$return['dxcc_id'] = $call_lookup_results->COL_DXCC;
|
|
$return['cont'] = $call_lookup_results->COL_CONT;
|
|
$return['workedBefore'] = true;
|
|
|
|
if ($return['gridsquare'] != "") {
|
|
$return['latlng'] = $this->qralatlng($return['gridsquare']);
|
|
}
|
|
|
|
}
|
|
|
|
if ($return['dxcc'] ?? '' != '') {
|
|
$this->load->library('DxccFlag');
|
|
$return['dxcc_flag']=$this->dxccflag->get($return['dxcc_id']);
|
|
}
|
|
|
|
$lotw_days=$this->logbook_model->check_last_lotw($lookup_callsign);
|
|
if ($lotw_days != null) {
|
|
$return['lotw_member']=$lotw_days;
|
|
} else {
|
|
$lotw_member="";
|
|
}
|
|
echo json_encode($return, JSON_PRETTY_PRINT);
|
|
} else {
|
|
echo '{"error":"callsign to lookup not given"}';
|
|
}
|
|
return;
|
|
}
|
|
|
|
function qralatlng($qra) {
|
|
if(!$this->load->is_loaded('Qra')) {
|
|
$this->load->library('Qra');
|
|
}
|
|
$latlng = $this->qra->qra2latlong($qra);
|
|
return $latlng;
|
|
}
|
|
}
|