Initial commit

Author: pvankouteren

.github/workflows/ci.yml

@@ -0,0 +1,35 @@
+name: CI
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
+
+jobs:
+  build-test-analyse:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        php-version: ['8.2', '8.3', '8.4']
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Setup PHP
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: ${{ matrix.php-version }}
+          coverage: none
+
+      - name: Install dependencies
+        run: composer install --prefer-dist --no-interaction --no-progress
+
+      - name: Run unit tests
+        run: composer test
+
+      - name: Run code style checks
+        run: composer cs
+
+      - name: Run static analysis
+        run: composer stan

.gitignore

@@ -0,0 +1,25 @@
+/vendor/
+/composer.lock
+/.phpunit.result.cache
+/.phpunit.cache
+/.phpunit/
+/.phpcs-cache
+/.php_cs.cache
+/coverage/
+/.idea/
+/.vscode/
+/phpstan.neon
+.phpunit.xml
+/.DS_Store
+node_modules/
+/*.log
+/.env
+/.env.*
+/*.swp
+*.sublime-workspace
+*.sublime-project
+/nbproject/
+/build/
+/dist/
+/tmp/
+/tests/_output/

.phpcs.xml

@@ -0,0 +1,78 @@
+<?xml version="1.0"?>
+<ruleset name="PHP_CodeSniffer">
+    <description>The coding standard for our project.</description>
+
+    <rule ref="PSR1">
+        <exclude name="PSR1.Methods.CamelCapsMethodName.NotCamelCaps" />
+    </rule>
+
+    <rule ref="PSR2"/>
+
+    <rule ref="PSR2.Classes.ClassDeclaration"/>
+    <rule ref="PSR2.Classes.PropertyDeclaration"/>
+    <rule ref="PSR2.ControlStructures.ControlStructureSpacing"/>
+    <rule ref="PSR2.ControlStructures.ElseIfDeclaration"/>
+    <rule ref="PSR2.ControlStructures.SwitchDeclaration"/>
+    <rule ref="PSR2.Files.EndFileNewline"/>
+    <rule ref="PSR2.Methods.MethodDeclaration"/>
+    <rule ref="PSR2.Namespaces.NamespaceDeclaration"/>
+    <rule ref="PSR2.Namespaces.UseDeclaration"/>
+
+    <rule ref="PSR12.Operators.OperatorSpacing"/>
+
+    <!--http://edorian.github.io/php-coding-standard-generator/#phpcs-->
+    <rule ref="Generic.Arrays.DisallowLongArraySyntax" />
+    <rule ref="Generic.PHP.ForbiddenFunctions">
+        <properties>
+            <property name="forbiddenFunctions" type="array">
+                <element key="eval" value="NULL"/>
+                <element key="dd" value="NULL"/>
+                <element key="dump" value="NULL"/>
+                <element key="die" value="NULL"/>
+                <element key="var_dump" value="NULL"/>
+                <element key="sizeof" value="count"/>
+                <element key="delete" value="unset"/>
+                <element key="print" value="echo"/>
+                <element key="create_function" value="NULL"/>
+            </property>
+        </properties>
+    </rule>
+    <rule ref="Generic.CodeAnalysis.JumbledIncrementer"/>
+    <rule ref="Generic.CodeAnalysis.UnconditionalIfStatement"/>
+    <rule ref="Generic.CodeAnalysis.UnusedFunctionParameter"/>
+    <rule ref="Generic.ControlStructures.InlineControlStructure"/>
+    <rule ref="Generic.Formatting.DisallowMultipleStatements"/>
+    <rule ref="Generic.Formatting.SpaceAfterCast">
+        <properties>
+            <property name="spacing" value="0"/>
+        </properties>
+    </rule>
+    <rule ref="Generic.PHP.DeprecatedFunctions"/>
+    <rule ref="Generic.PHP.DisallowShortOpenTag"/>
+    <rule ref="Generic.PHP.ForbiddenFunctions"/>
+    <rule ref="Generic.PHP.LowerCaseConstant"/>
+    <rule ref="Generic.Strings.UnnecessaryStringConcat"/>
+    <rule ref="Generic.WhiteSpace.DisallowTabIndent"/>
+    <rule ref="Generic.WhiteSpace.ScopeIndent"/>
+
+    <rule ref="PEAR.Formatting.MultiLineAssignment"/>
+    <rule ref="PEAR.WhiteSpace.ObjectOperatorIndent"/>
+    <rule ref="PEAR.WhiteSpace.ScopeClosingBrace"/>
+
+    <exclude-pattern>vendor/*</exclude-pattern>
+    <exclude-pattern>storage/*</exclude-pattern>
+    <exclude-pattern>bootstrap/*</exclude-pattern>
+    <exclude-pattern>public/*</exclude-pattern>
+    <exclude-pattern>*/migrations/*</exclude-pattern>
+    <exclude-pattern>*/seeds/*</exclude-pattern>
+    <exclude-pattern>*.blade.php</exclude-pattern>
+    <exclude-pattern>*.js</exclude-pattern>
+
+    <file>src</file>
+    <file>tests</file>
+
+    <!-- Show progression -->
+    <arg value="p"/>
+    <arg value="n"/>
+    <arg value="s"/>
+</ruleset>

composer.json

@@ -0,0 +1,37 @@
+{
+  "name": "wedesignit/common",
+  "description": "Reusable PSR-compatible API client framework with middleware and token authentication",
+  "type": "library",
+  "license": "MIT",
+  "require": {
+    "php": "^8.2 || ^8.3 || ^8.4",
+    "psr/http-client": "^1.0",
+    "psr/http-message": "^1.0",
+    "psr/simple-cache": "^1.0 || ^2.0 || ^3.0",
+    "psr/log": "^1.1 || ^2.0 || ^3.0"
+  },
+  "require-dev": {
+    "phpunit/phpunit": "^10.0",
+    "squizlabs/php_codesniffer": "^3.7",
+    "phpstan/phpstan": "^1.10",
+    "guzzlehttp/psr7": "^2.0",
+    "symfony/cache": "^6.0 || ^7.0"
+  },
+  "autoload": {
+    "psr-4": {
+      "WeDesignIt\\Common\\": "src/"
+    }
+  },
+  "autoload-dev": {
+    "psr-4": {
+      "WeDesignIt\\Common\\Tests\\": "tests/"
+    }
+  },
+  "scripts": {
+    "test": "phpunit",
+    "cs": "phpcs --standard=PSR12 src/ tests/",
+    "stan": "phpstan analyse src/ --level=max"
+  },
+  "minimum-stability": "stable",
+  "prefer-stable": true
+}

docs/examples.md

@@ -0,0 +1,150 @@
+# Examples
+
+## Building ApiClients
+
+Example code for building an ApiClient with bearer token authentication:
+```php
+namespace App\Api;
+
+use WeDesignIt\Common\Api\ApiClient;
+use WeDesignIt\Common\Api\Traits\UsesBearerToken;
+
+class ExampleApiClient extends ApiClient
+{
+    use UsesBearerToken;
+
+    public function __construct(string $baseUri, string $bearerToken)
+    {
+        parent::__construct($baseUri);
+        $this->setBearerToken($bearerToken);
+    }
+
+    /**
+     * Simple example call to get the current user.
+     */
+    public function getCurrentUser(): array
+    {
+        return $this->request('GET', '/me');
+    }
+}
+```
+
+Example code for building an ApiClient using an identity provider (idp). Note that the `UsesTokenCaching` trait is used to 
+cache the token for subsequent requests, and the `UsesIdpToken` trait handles the IDP-specific token fetching logic.
+The `UsesTokenCaching` trait is optional but recommended to avoid unnecessary token requests.
+
+```php
+namespace App\Api;
+
+use App\Api\ApiClient;
+use App\Api\Traits\UsesIdpToken;
+use App\Api\Traits\UsesTokenCaching;
+use Psr\SimpleCache\CacheInterface;
+
+class IdpApiClient extends ApiClient
+{
+    use UsesIdpToken, UsesTokenCaching;
+
+    protected string $clientId;
+    protected string $clientSecret;
+
+    public function __construct(
+        string $baseUri,
+        string $clientId,
+        string $clientSecret,
+        ?CacheInterface $tokenCache = null,
+        ?ClientInterface $httpClient = null
+    ) {
+        parent::__construct($baseUri, $httpClient);
+        $this->clientId = $clientId;
+        $this->clientSecret = $clientSecret;
+        if ($tokenCache) {
+            $this->setTokenCache($tokenCache);
+        }
+    }
+
+    /**
+     * Generates unique cache key for the IDP token.
+     */
+    protected function getTokenCacheKey(): string
+    {
+        return 'api:idp_token:' . sha1($this->baseUri . ':' . $this->clientId);
+    }
+
+    protected function fetchTokenFromIdp(): array
+    {
+        // note things like grant_type, client_id, client_secret, scope, etc. are specific to the IDP you are using.
+        $response = $this->httpClient->sendRequest(
+            $this->requestFactory->createRequest('POST', 'https://idp.example.com/oauth/token')
+                ->withHeader('Content-Type', 'application/x-www-form-urlencoded')
+                ->withBody(
+                    $this->streamFactory->createStream(http_build_query([
+                        'grant_type'    => 'client_credentials',
+                        'client_id'     => $this->clientId,
+                        'client_secret' => $this->clientSecret,
+                        'scope'         => 'api.read', // of de benodigde scopes
+                    ]))
+                )
+        );
+
+        $data = json_decode((string) $response->getBody(), true);
+
+        if (!isset($data['access_token'], $data['expires_in'])) {
+            throw new \RuntimeException('Ongeldige IDP token response');
+        }
+
+        // If a refresh token is provided, include it in the response
+        return [
+            'access_token'  => $data['access_token'],
+            'expires_in'    => $data['expires_in'],
+            'refresh_token' => $data['refresh_token'] ?? null,
+        ];
+    }
+
+    /**
+     * Simple API call to get a "protected resource".
+     */
+    public function getProtectedResource(): array
+    {
+        return $this->request('GET', '/resource');
+    }
+}
+```
+
+Stacking multiple middlewares in an API client. In this case the above `IdpApiClient` can be used with the `StackClient` to add additional middlewares like logging or caching.:
+
+```php
+// Get dependencies from the service container:
+$logger = app(LoggerInterface::class);
+$cache = Cache::store('redis');
+
+// Stack middlewares to be used with the API client
+$middleware = [
+    new LogMiddleware($logger),                          // Log requests and responses
+    new CacheMiddleware($cache, ttl: 300),               // Cache GET responses for 5 minutes
+    new RequestThrottlingMiddleware(                     // Throttle the client to 100 requests per minute, per API client
+        $cache, 100, 60
+    ),
+    new RetryMiddleware(                                 // Retry on 429, 500, 503 (max 3 times with exponential backoff)
+        maxAttempts: 3,
+        baseDelayMs: 300,
+        retryOnStatus: [429, 500, 502, 503, 504],
+        retryOnException: [\RuntimeException::class]
+    ),
+];
+
+// Use the StackClient and stuff in the middlewares
+$httpClient = new StackClient($middleware);
+
+// And let the API client use the stack client
+$api = new IdpApiClient(
+    'https://api.example.com',
+    'your-client-id',
+    'your-client-secret',
+    $cache,            // Token cache
+    $httpClient        // PSR-18 client met middleware stack
+);
+
+// Now use the API client to make requests
+$data = $api->getProtectedResource();
+```