A REST API for StorX.
Current library version: 4.1 | 2022-02-22
License: AGPLv3
The StorX API allows you to interact with your StorX DB files over a network.
Simply place your DB files, StorX.php and StorX-API.php on a server, and now the DB files can be operated on using the API exposed by StorX-API.php receiver script.
Use StorX-Remote to easily interact with this API over the network from PHP scripts. If you're using StorX-Remote, then you can safely ignore everything about endpoints and requests in this doc, the remote library will handle everything for you.
Place StorX-API.php and StorX.php in the same folder, or modify the require statement at the top of the API file to point to wherever StorX.php is. You can rename the API file.
In StorX.php, ensure that THROW_EXCEPTIONS is set to FALSE.
There are a few constants that you can modify at the top of StorX-API.php:
DATA_DIR: Points to the root directory where DB files are stored. Note that the API does not disallow requests to DB files outside of this folder.USE_AUTH: If this istrue, then API requests will fail if they don't include the correct password in the payload.PASSWORD_HASH: A hash generated using PHP'spassword_hash()withPASSWORD_BCRYPT.
See this script to make simplify this process. Default password is1234. Obviously, change this before use.KEY_OUTPUT_SERIALIZATION: If set toPHP, then when thereadKeyandreadAllKeysendpoints return values, they'reserialize()-ed before JSON encoding, for maximum compatibility. This is helpful because JSON encoding is not perfect, and sometimes modifies data (see this page).JSON_SERIALIZATION_FLAGS: Flags to be passed tojson_encode(). See this page.
- Ensure that the versions of StorX and StorX-API match!
- Unlike regular
StorX, a separate request does not need to be made to write changes made to DB files to disk. All changes are written to disk after each key write/modify/delete request.
Note: You can simplify interacting with this API from other PHP scripts using StorX-Remote. Then you don't have to bother with any of the following.
Refer below for a list of endpoints, and what HTTP methods should be used to interact with them. In your request body, include a JSON-encoded associative array with the necessary data.
If the receiver is using authentication, then include the password as a key in the payload.
For example, let's say the API receiver password is 1234 and you want to write a key username with value aaviator42 to the DB file testDB.dat. You would send a PUT request to <url>/receiver.php/writeKey with the following request body:
{
"password": "1234",
"filename": "testDB.db",
"keyName": "username",
"keyValue": "aaviator42"
}Sometimes the JSON encoding process can be lossy, or result in some data being changed. To avoid this, when making writeKey, modifyKey or modifyMultipleKeys requests, you can serialize() $keyValue or $keyArray before json_encode(). If you're doing this, then in the request body include the following key:
"keyInputSerialization": "PHP"For example, a request to /modifyMultipleKeys might be:
{
"filename": "testDB.db",
"keyInputSerialization": "PHP",
"keyArray": "a:2:{s:5:\"key_1\";s:7:\"value_1\";s:5:\"key_2\";s:7:\"value_2\";}",
"password": "password1234",
"version": "4.0"
}The API returns an JSON-encoded associative array, with the following:
error: 0 if all okay, 1 if error occurs while the API processes the request.errorMessage: Contains an error message if an error takes place.returnCode: Contains the value returned by the function mapped to the endpoint
/readKey's output additionally contains these:
keyValue:serialize($keyValue)ifKEY_OUTPUT_SERIALIZATIONis set toPHP, otherwise just$keyValue.keyName: thekeyNamepassed in inputkeyOutputSerialization: the serialization method configured by the user. Defaults toPHPif the API is being accessed by StorX-Remote.
/readAllKeys's output additionally contains these:
keyArray: an associative array containing all keys from the DB file. IfKEY_OUTPUT_SERIALIZATIONis set toPHP, then it isserialize()-ed.keyOutputSerialization: the serialization method configured by the user. Defaults toPHPif the API is being accessed by StorX-Remote.
returnCode has a few special values:
| value | description |
|---|---|
-666 |
Invalid request |
-777 |
Authentication failed |
-2 |
Error opening file |
-3 |
Error writing changes to disk |
HTTP status codes returned by the API:
| value | description |
|---|---|
400 |
Invalid request |
401 |
Authentication failed |
200 |
All OK / mapped function executed successfully |
201 |
Resource created successfully |
409 |
Error executing requested changes |
| method | endpoint | description | input values |
|---|---|---|---|
| GET | /checkFile | Maps to \StorX\Sx::checkFile() |
filename |
| GET | /readKey | Maps to \StorX\Sx::readKey() |
filename, keyName |
| GET | /readAllKeys | Maps to \StorX\Sx::readAllKeys() |
filename |
| GET | /checkKey | Maps to \StorX\Sx::checkKey() |
filename, keyName |
| PUT | /createFile | Maps to \StorX\Sx::createFile() |
filename |
| PUT | /writeKey | Maps to \StorX\Sx::writeKey() |
filename, keyName, keyValue |
| PUT | /modifyKey | Maps to \StorX\Sx::modifyKey() |
filename, keyName, keyValue |
| PUT | /modifyMultipleKeys | Maps to \StorX\Sx::modifyMultipleKeys() |
filename, keyArray |
| DELETE | /deleteFile | Maps to \StorX\Sx::deleteFile() |
filename |
| DELETE | /deleteKey | Maps to \StorX\Sx::deleteKey() |
filename, keyName |
There's a special GET endpoint ping that doesn't require authentication. It is used to ensure that the remote and API receiver are of matching versions. This endpoint can be used to check the version of the API receiver script.
The input is expected to have a key version with a corresponding string value containing the version of the remote. The output is a JSON-encoded associative array containing three key-value pairs:
versionthat contains the API receiver script's versionpongthat containsOKif the versions match, andERRif they don't.keyOutputSerialization: the serialization method configured for thereadKeyandreadAllKeysendpoints.
Documentation updated 2022-02-22