Project

General

Profile

Web Services Definition » History » Version 33

Kurt Gerber, 08 Aug 2019 15:20

1 10 Kurt Gerber
h1. API / Web Services Requirements
2 2 Kurt Gerber
3
h2. Request services
4 11 Kurt Gerber
5 1 Kurt Gerber
The existing API is documented here: https://qcat.readthedocs.io/en/latest/api/docs.html
6
7 12 Kurt Gerber
h3. Required missing request services:
8 10 Kurt Gerber
9 12 Kurt Gerber
* There is an endpoint to get the configuration for a specific questionnaire and edition:  https://https://qcat.wocat.net/en/api/v2/configuration/technologies/2018/
10 10 Kurt Gerber
11 30 Sebastian Manger
1.  Whithout the 'edition' endpoint, it should respond with an array of available editions.
12 10 Kurt Gerber
13 30 Sebastian Manger
*Endpoint:*  @/api/v2/configuration/technologies/@
14 1 Kurt Gerber
15 30 Sebastian Manger
*Allowed method:*  @GET@
16 1 Kurt Gerber
17 30 Sebastian Manger
*Request Header:*  
18
* @Authorization: Token AUTH_TOKEN@
19
*  @Accept: application/json@ or @Accept: application/xml@
20
*  @Content-Type: application/json@ or @Content-Type: application/xml@
21 1 Kurt Gerber
22 30 Sebastian Manger
*Response:*  List of editions for given configuration, e.g.
23
* @ {"editions": ["2018", "2006"] @
24 1 Kurt Gerber
25
26 30 Sebastian Manger
2. Without the specific configuration endpoint (like 'technologies'), the response should be an array of available configurations. 
27 1 Kurt Gerber
28
29 30 Sebastian Manger
*Endpoint:*  @/api/v2/configuration/@
30 1 Kurt Gerber
31 30 Sebastian Manger
*Allowed method:*  @GET@
32 1 Kurt Gerber
33 30 Sebastian Manger
*Request Header:*  
34
* @Authorization: Token AUTH_TOKEN@
35
*  @Accept: application/json@ or @Accept: application/xml@
36
*  @Content-Type: application/json@ or @Content-Type: application/xml@
37 16 Kurt Gerber
38 30 Sebastian Manger
*Response:*  List of configurations, e.g.
39
* @ {"configurations": ["technologies", "approaches", "unccd"] @
40 17 Kurt Gerber
41 30 Sebastian Manger
h2. Requirements for services to add / update cases
42 15 Kurt Gerber
43 30 Sebastian Manger
The following new webservice endpoints must be developed.
44 19 Kurt Gerber
45 30 Sebastian Manger
h3.  1.  Authentification endpoint
46 19 Kurt Gerber
47 30 Sebastian Manger
This needs a new technical concept. Goals:
48 15 Kurt Gerber
49 30 Sebastian Manger
* Existing authentication must still work (without need to refresh the token), but only for "non-app" requests
50
* Requests from the "app" must periodically refresh the authentication
51
* For all requests from the app, the header "User-Agent: app" (or something similar) must be set.
52 1 Kurt Gerber
53 33 Kurt Gerber
 Current idea: provide a new authentication backend; skip existing authentication for requests from the app based on some POST flag.
54
%{background:#F2D5A0} *Question/Idea:* What about JSON Web Token (JWT)? ( See https://simpleisbetterthancomplex.com/tutorial/2018/12/19/how-to-use-jwt-authentication-with-django-rest-framework.html) %
55
56 32 Kurt Gerber
57 1 Kurt Gerber
h3. 2. Endpoint to create new case
58 17 Kurt Gerber
59 14 Kurt Gerber
60 17 Kurt Gerber
*Endpoint:*  @/api/v2/en/questionnaires/<configuration>/<edition>/create@
61 1 Kurt Gerber
62 18 Kurt Gerber
*Allowed method:*  @POST@
63 17 Kurt Gerber
64 27 Kurt Gerber
*POST data:* a valid questionnaire based on the corresponding "configuration template":https://qcat.readthedocs.io/en/latest/api/v2.html#structure-of-configuration
65 17 Kurt Gerber
66 1 Kurt Gerber
*Request Header:*  
67 19 Kurt Gerber
* @Authorization: Token AUTH_TOKEN@
68
*  @usertoken:  <usertoken>@
69
*  @Accept: application/json@ or @Accept: application/xml@
70
*  @Content-Type: application/json@ or @Content-Type: application/xml@
71
72
73
*Response:*
74 20 Kurt Gerber
<pre><code class="json">
75 19 Kurt Gerber
{"success":"true",
76 20 Kurt Gerber
 "code": "technologies_4534"
77 22 Kurt Gerber
}
78 20 Kurt Gerber
</code></pre>
79
80
81
h3. 3.  image/file upload
82
83
This should be handled the same as already done the ui version.
84
85
Adding an image uploads it directly with POST  to https://qcat.wocat.net/en/upload
86
87
As response it gets a JSON like this:
88
<pre><code class="json">
89
{
90
    "success": true,
91
    "uid": "cfb23a06-385a-47c5-8a94-83cae1fd90b7",
92
    "interchange": [
93
        "[/upload/9d/a/9da8b521-7130-48df-ba31-549016a748e5.jpg, (default)]",
94
        "[/upload/0a/3/0a3fea13-1485-4ec8-92ee-351eef561d2d.jpg, (small)]",
95
        "[/upload/17/0/170251f9-a9ea-4945-a714-0beaebb7c750.jpg, (medium)]",
96 19 Kurt Gerber
        "[/upload/cf/b/cfb23a06-385a-47c5-8a94-83cae1fd90b7.jpg, (large)]"
97 1 Kurt Gerber
    ],
98
    "url": "/upload/cf/b/cfb23a06-385a-47c5-8a94-83cae1fd90b7.jpg"
99
}
100
</code></pre>
101 25 Kurt Gerber
102
The value of the key "uid" is what is then really stored in the 'image' key field of the corresponding questionnaire.
103
104
105
h3. 4. Endpoint to edit a case
106
107
*Endpoint:*  @/api/v2/en/questionnaires/{configuration}/{edition}/edit/{identifier}@
108
109
%{background:#F2D5A0} Opening a case in draft mode to edit has to take care of different things:% 
110
* %{background:#F2D5A0}Only the newest version of a case can be edited% 
111
* %{background:#F2D5A0}Only if  the case is public or in draft mode%
112
113 27 Kurt Gerber
*Open question:* %{background:#F2D5A0}Locking mechanism in the environment of apps going offline has to be discussed%
114 25 Kurt Gerber
115
*Request header:*
116
* @Authorization: Token AUTH_TOKEN@
117
*  @usertoken:  <usertoken>@
118
*  @Accept: application/json@ or @Accept: application/xml@
119
*  @Content-Type: application/json@ or @Content-Type: application/xml@
120
121
*Allowed method:*  @GET, POST@
122
123
*GET:*
124
* Response would be the case in 'draft mode' 
125
126
*POST:*
127
128
*POST data:*  a valid, updated questionnaire based on the corresponding "configuration template":https://qcat.readthedocs.io/en/latest/api/v2.html#structure-of-configuration
129
130
*Response:*
131
<pre><code class="json">
132
{"success":"true",
133
 "code": "technologies_4534"
134
}
135
</code></pre>
136
137
138
h3. 5. Endpoint to get mydata
139
140
*Endpoint:*  @/api/v2/en/questionnaires/mydata@
141
142 27 Kurt Gerber
*Allowed method:*  @GET@
143 25 Kurt Gerber
144
*Request Header:*  
145
* @Authorization: Token AUTH_TOKEN@
146
*  @usertoken:  <usertoken>@
147 1 Kurt Gerber
*  @Accept: application/json@ or @Accept: application/xml@
148
*  @Content-Type: application/json@ or @Content-Type: application/xml@
149
150
*Response:*  List of public or draft cases of which the user is the compiler