Fixes #6

Added classes to be able to call API endpoint to validate an organisation's security certificate, and show example on how to call the API endpoint. Additionally added minor fixes for error handling in API endpoints.

Author: Rowan Drew

README.md

@@ -29,7 +29,8 @@ If you are a software developer writing a PHP application then we recommend that
     * [Validate Organisation API Session Endpoint](#validate-organisation-api-session-endpoint)
     * [Validate/Create Organisation API Session Endpoint](#validatecreate-organisation-api-session-endpoint)
     * [Destroy Organisation API Session Endpoint](#destroy-organisation-api-session-endpoint)
-
+    * [Validate Organisation Security Certificate API Session Endpoint](#validate-organisation-security-certificate-api-session-endpoint)
+    
 ## Getting Started
 
 ### Dependencies
@@ -124,7 +125,7 @@ Read [https://www.squizz.com/docs/squizz/Platform-API.html#section840](https://w
 ?>
 ```
 
-## Retrieve Organisation Data Endpoint
+### Retrieve Organisation Data Endpoint
 The SQUIZZ.com platform's API has an endpoint that allows a variety of different types of data to be retrieved from another organisation stored on the platform.
 The organisational data that can be retrieved includes products, product stock quantities, and product pricing.
 The data retrieved can be used to allow an organisation to set additional information about products being bought or sold, as well as being used in many other ways.
@@ -915,13 +916,6 @@ The SQUIZZ.com platform's API will automatically expire and destory sessions tha
 
 ```php
 <?php
-	/**
-	* Copyright (C) 2017 Squizz PTY LTD
-	* This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
-	* This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more details.
-	* You should have received a copy of the GNU General Public License along with this program.  If not, see http://www.gnu.org/licenses/.
-	*/
-	
 	//set automatic loader of the library's classes
 	spl_autoload_register(function($className) {
 		$className = ltrim($className, '\\');
@@ -1012,13 +1006,6 @@ Read [https://www.squizz.com/docs/squizz/Platform-API.html#section841](https://w
 
 ```php
 <?php
-	/**
-	* Copyright (C) 2017 Squizz PTY LTD
-	* This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
-	* This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more details.
-	* You should have received a copy of the GNU General Public License along with this program.  If not, see http://www.gnu.org/licenses/.
-	*/
-	
 	//set automatic loader of the library's classes
 	spl_autoload_register(function($className) {
 		$className = ltrim($className, '\\');
@@ -1099,3 +1086,105 @@ Read [https://www.squizz.com/docs/squizz/Platform-API.html#section841](https://w
 	echo "<div><b>$resultMessage</b><div><br/>";
 ?>
 ```
+
+### Validate Organisation Security Certificate API Session Endpoint
+
+The SQUIZZ.com platform's API has an endpoint that allows a TLS security certificate created for an organisation in the platform to be validated. 
+Before an organisation can download and use a security certificate the certificate must first be validated by a HTTP request calling this API endpoint. 
+The endpoint will check that the originating HTTP request's IP address matches the common name set for the certificate, or that a reverse DNS lookup matches the domain set in the certificate with the originating IP address of the endpoint request.
+Read [https://www.squizz.com/docs/squizz/Platform-API.html#section842](https://www.squizz.com/docs/squizz/Platform-API.html#section843) for more documentation about the endpoint and its requirements.
+See the example below on how the call the Validate Organisation Security Certificate endpoint. Note that a session must first be created in the API before calling the endpoint.
+
+```php
+<?php
+	//set automatic loader of the library's classes
+	spl_autoload_register(function($className) {
+		$className = ltrim($className, '\\');
+		$fileName  = '';
+		$namespace = '';
+		if ($lastNsPos = strripos($className, '\\')) {
+			$namespace = substr($className, 0, $lastNsPos);
+			$className = substr($className, $lastNsPos + 1);
+			$fileName  = str_replace('\\', DIRECTORY_SEPARATOR, $namespace) . DIRECTORY_SEPARATOR;
+		}
+		$fileName .= str_replace('_', DIRECTORY_SEPARATOR, $className) . '.php';
+		
+		$apiNamespace = "squizz\\api\\v1";
+		$esdNamespace = "EcommerceStandardsDocuments";
+		$esdInstallPath = "/path/to/esd-php-library/src/";
+		
+		//set absolute path to API php class files
+		if(substr($namespace, 0, strlen($apiNamespace)) === $apiNamespace){
+			$fileName = $_SERVER['DOCUMENT_ROOT']. '/src/' . $fileName;
+		}
+		//set absolute path to ESD library files
+		else if(substr($namespace, 0, strlen($esdNamespace)) === $esdNamespace){
+			$fileName = $esdInstallPath . $fileName;
+		}
+		
+		require $fileName;
+	});
+	
+	use squizz\api\v1\endpoint\APIv1EndpointResponse;
+	use squizz\api\v1\endpoint\APIv1EndpointOrgValidateSecurityCertificate;
+	use squizz\api\v1\APIv1OrgSession;
+	use squizz\api\v1\APIv1Constants;
+	
+	
+	//obtain or load in an organisation's API credentials, in this example from command line arguments
+	$orgID = $_GET["orgID"];
+	$orgAPIKey = $_GET["orgAPIKey"];
+	$orgAPIPass = $_GET["orgAPIPass"];
+	$orgSecurityCertificateID = $_GET["orgSecurityCertificateID"];
+	$sessionTimeoutMilliseconds = 20000;
+	
+	echo "<div>Making a request to the SQUIZZ.com API</div><br/>";
+	
+	//create an API session instance
+	$apiOrgSession = new APIv1OrgSession($orgID, $orgAPIKey, $orgAPIPass, $sessionTimeoutMilliseconds, APIv1Constants::SUPPORTED_LOCALES_EN_AU);
+	
+	//call the platform's API to request that a session is created
+	$endpointResponse = $apiOrgSession->createOrgSession();
+	
+	//check if the organisation's credentials were correct and that a session was created in the platform's API
+	$result = "FAIL";
+	$resultMessage = "";
+	if($endpointResponse->result == APIv1EndpointResponse::ENDPOINT_RESULT_SUCCESS)
+	{
+	}
+	else
+	{
+		//session failed to be created
+		$resultMessage = "API session failed to be created. Reason: " . $endpointResponse->result_message  . " Error Code: " . $endpointResponse->result_code;
+	}
+	
+	//if a session was successfully created then call API to validate a certificate with a given ID
+	if($apiOrgSession->sessionExists())
+	{
+		//give up on waiting for a response from the API after 30 seconds
+		$timeoutMilliseconds = 30000;
+	
+		//call endpoint
+		$endpointResponseESD = APIv1EndpointOrgValidateSecurityCertificate::call($apiOrgSession, $timeoutMilliseconds, $orgSecurityCertificateID);
+		
+		//check the result of validating the security certificate
+		if($endpointResponseESD->result == APIv1EndpointResponse::ENDPOINT_RESULT_SUCCESS){
+			$result = "SUCCESS";
+			$resultMessage = "Organisation security certificate has successfully been validated and activated.";
+		}else{
+			$result = "FAIL";
+			$resultMessage = "Organisation security certificate failed to validate. Reason: " . $endpointResponseESD->result_message . " Error Code: " . $endpointResponseESD->result_code . "<br/>";
+		}
+	}
+	
+	//next steps
+	//call other API endpoints...
+	//destroy api session when done
+	$apiOrgSession->destroyOrgSession();
+	
+	echo "<div>Result:<div>";
+	echo "<div><b>$result</b><div><br/>";
+	echo "<div>Message:<div>";
+	echo "<div><b>$resultMessage</b><div><br/>";
+?>
+```

src/squizz/api/v1/endpoint/APIv1EndpointOrgImportESDocument.php

@@ -92,7 +92,7 @@ public static function call($apiOrgSession, $endpointTimeoutMilliseconds, $impor
 			{
 				$endpointResponse->result = APIv1EndpointResponse::ENDPOINT_RESULT_FAILURE;
 				$endpointResponse->result_code = APIv1EndpointResponse::ENDPOINT_RESULT_CODE_ERROR_UNKNOWN;
-				$endpointResponse->result_message = $apiOrgSession->getLangBundle()->getString($endpointResponse->result_code) . "\n" . ex.getMessage();
+				$endpointResponse->result_message = $apiOrgSession->getLangBundle()->getString($endpointResponse->result_code) . "\n" . $ex.getMessage();
 			}
 
 			return $endpointResponse;

src/squizz/api/v1/endpoint/APIv1EndpointOrgProcurePurchaseOrderFromSupplier.php

@@ -74,7 +74,7 @@ public static function call($apiOrgSession, $endpointTimeoutMilliseconds, $suppl
 			{
 				$endpointResponse->result = APIv1EndpointResponse::ENDPOINT_RESULT_FAILURE;
 				$endpointResponse->result_code = APIv1EndpointResponse::ENDPOINT_RESULT_CODE_ERROR_UNKNOWN;
-				$endpointResponse->result_message = $apiOrgSession->getLangBundle()->getString($endpointResponse->result_code) . "\n" . ex.getMessage();
+				$endpointResponse->result_message = $apiOrgSession->getLangBundle()->getString($endpointResponse->result_code) . "\n" . $ex.getMessage();
 			}
 
 			return $endpointResponse;

src/squizz/api/v1/endpoint/APIv1EndpointOrgRetrieveESDocument.php

@@ -104,7 +104,7 @@ public static function call($apiOrgSession, $endpointTimeoutMilliseconds, $retri
 			{
 				$endpointResponse->result = APIv1EndpointResponse::ENDPOINT_RESULT_FAILURE;
 				$endpointResponse->result_code = APIv1EndpointResponse::ENDPOINT_RESULT_CODE_ERROR_UNKNOWN;
-				$endpointResponse->result_message = $apiOrgSession->getLangBundle()->getString($endpointResponse->result_code) . "\n" . ex.getMessage();
+				$endpointResponse->result_message = $apiOrgSession->getLangBundle()->getString($endpointResponse->result_code) . "\n" . $ex.getMessage();
 			}
 
 			return $endpointResponse;

src/squizz/api/v1/endpoint/APIv1EndpointOrgValidateSecurityCertificate.php

@@ -0,0 +1,73 @@
+<?php
+	/**
+	* Copyright (C) 2017 Squizz PTY LTD
+	* This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
+	* This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more details.
+	* You should have received a copy of the GNU General Public License along with this program.  If not, see http://www.gnu.org/licenses/.
+	*/
+	namespace squizz\api\v1\endpoint;
+	require_once __DIR__ . '/../../../../../3rd-party/jsonmapper/JsonMapper.php';
+	require_once __DIR__ . '/../../../../../3rd-party/jsonmapper/JsonMapper/Exception.php';
+	
+	use squizz\api\v1\APIv1Constants;
+	use squizz\api\v1\APIv1HTTPRequest;
+	use squizz\api\v1\APIv1OrgSession;
+	use squizz\api\v1\endpoint\APIv1EndpointResponseESD;
+	use EcommerceStandardsDocuments\ESDocument;
+	use EcommerceStandardsDocuments\ESDocumentConstants;
+	use \JsonMapper;
+
+	/**
+	* Class handles calling the SQUIZZ.com API endpoint for verifying a security certificate created for an organisation within the platform. 
+	* Security certificates are used to secure organisational data transferred across the Internet and computer networks
+	*/
+	class APIv1EndpointOrgValidateSecurityCertificate 
+	{
+		/**
+		* Calls the platform's API endpoint to validate the organisation's security certificate
+		* The public Internet connection used to call the endpoint will be used to validate against the domain or IP address set for the security certificate
+		* @param apiOrgSession APIv1OrgSession existing organisation API session
+		* @param endpointTimeoutMilliseconds int amount of milliseconds to wait after calling the the API before giving up, set a positive number
+		* @param orgSecurityCertificateID string ID of the orgnisation's security certificate in the platform
+		* @return APIv1EndpointResponseESD response from calling the API endpoint
+		*/
+		public static function call($apiOrgSession, $endpointTimeoutMilliseconds, $orgSecurityCertificateID)
+		{
+			$endpointParams = "";
+			$requestHeaders = array(APIv1HTTPRequest::HTTP_HEADER_CONTENT_TYPE . ": " . APIv1HTTPRequest::HTTP_HEADER_CONTENT_TYPE_FORM_URL_ENCODED);
+			$endpointResponse = new APIv1EndpointResponseESD();
+			
+			try{
+				//set notification parameters
+				$requestPostBody = "org_security_certificate_id=". urlencode(utf8_encode($orgSecurityCertificateID));
+				
+				//set function used to read the response from the endpoint
+				$endpointJSONReader = function($jsonArray, $endpointResponse){
+					$endpointResponse->jsonDeserialize($jsonArray);
+					return $endpointResponse;
+				};
+				
+				//make a HTTP request to the platform's API endpoint to validate the security certificate
+				$endpointResponse = APIv1HTTPRequest::sendESDocumentHTTPRequest(APIv1Constants::HTTP_REQUEST_METHOD_POST, APIv1Constants::API_ORG_ENDPOINT_VALIDATE_CERT.APIv1Constants::API_PATH_SLASH.$apiOrgSession->getSessionID(), $endpointParams, $requestHeaders, $requestPostBody, null, $endpointTimeoutMilliseconds, $apiOrgSession->getSessionID(), $endpointJSONReader, $endpointResponse);
+				
+				//check that the certificate was successfully validated
+				if(strcasecmp($endpointResponse->result, APIv1EndpointResponse::ENDPOINT_RESULT_SUCCESS) != 0)
+				{
+					//check if the session still exists
+					if(strcasecmp($endpointResponse->result, APIv1EndpointResponse::ENDPOINT_RESULT_CODE_ERROR_SESSION_INVALID) != 0){
+						//mark that the session has expired
+						$apiOrgSession->markSessionExpired();
+					}
+				}
+			}
+			catch(Exception $ex)
+			{
+				$endpointResponse->result = APIv1EndpointResponse::ENDPOINT_RESULT_FAILURE;
+				$endpointResponse->result_code = APIv1EndpointResponse::ENDPOINT_RESULT_CODE_ERROR_UNKNOWN;
+				$endpointResponse->result_message = $apiOrgSession->getLangBundle()->getString($endpointResponse->result_code) . "\n" . $ex.getMessage();
+			}
+			
+			return $endpointResponse;
+		}
+	}
+?>

test/squizz/api/v1/example/APIv1ExampleRunnerValidateOrgSecurityCertificate.php

@@ -0,0 +1,114 @@
+<!DOCTYPE html>
+<html>
+	<body style="font-family: sans-serif; background-color: #00a0e3; color: #FFF">
+		<div style="text-align: center">
+			<img src="http://www.squizz.com/ui/resources/images/logos/squizz_logo_mdpi.png"/>
+			<hr style="max-width: 607px"/>
+			<div>SQUIZZ Pty Ltd</div>
+			<div>Testing SQUIZZ.com API PHP Library: version 1</div>
+			<hr style="max-width: 607px"/>
+			<h1>Validate Organisation Security Certificate Example</h1>
+			<p>Tests making a request to the SQUIZZ.com API to create a session for an organisation, then makes a call to validate a security certificate that was created for an organisation.</p>
+			<div style="max-width: 607px; background-color: #2b2b2b; color: #cacaca; text-align: center; margin: auto; padding-top: 15px;">
+				<?php
+					/**
+					* Copyright (C) 2017 Squizz PTY LTD
+					* This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
+					* This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more details.
+					* You should have received a copy of the GNU General Public License along with this program.  If not, see http://www.gnu.org/licenses/.
+					*/
+					
+					//set automatic loader of the library's classes
+					spl_autoload_register(function($className) {
+						$className = ltrim($className, '\\');
+						$fileName  = '';
+						$namespace = '';
+						if ($lastNsPos = strripos($className, '\\')) {
+							$namespace = substr($className, 0, $lastNsPos);
+							$className = substr($className, $lastNsPos + 1);
+							$fileName  = str_replace('\\', DIRECTORY_SEPARATOR, $namespace) . DIRECTORY_SEPARATOR;
+						}
+						$fileName .= str_replace('_', DIRECTORY_SEPARATOR, $className) . '.php';
+						
+						$apiNamespace = "squizz\\api\\v1";
+						$esdNamespace = "EcommerceStandardsDocuments";
+						$esdInstallPath = "/path/to/esd-php-library/src/";
+						
+						//set absolute path to API php class files
+						if(substr($namespace, 0, strlen($apiNamespace)) === $apiNamespace){
+							$fileName = $_SERVER['DOCUMENT_ROOT']. '/src/' . $fileName;
+						}
+						//set absolute path to ESD library files
+						else if(substr($namespace, 0, strlen($esdNamespace)) === $esdNamespace){
+							$fileName = $esdInstallPath . $fileName;
+						}
+						
+						require $fileName;
+					});
+					
+					use squizz\api\v1\endpoint\APIv1EndpointResponse;
+					use squizz\api\v1\endpoint\APIv1EndpointOrgValidateSecurityCertificate;
+					use squizz\api\v1\APIv1OrgSession;
+					use squizz\api\v1\APIv1Constants;
+					
+					
+					//obtain or load in an organisation's API credentials, in this example from command line arguments
+					$orgID = $_GET["orgID"];
+					$orgAPIKey = $_GET["orgAPIKey"];
+					$orgAPIPass = $_GET["orgAPIPass"];
+					$orgSecurityCertificateID = $_GET["orgSecurityCertificateID"];
+					$sessionTimeoutMilliseconds = 20000;
+					
+					echo "<div>Making a request to the SQUIZZ.com API</div><br/>";
+					
+					//create an API session instance
+					$apiOrgSession = new APIv1OrgSession($orgID, $orgAPIKey, $orgAPIPass, $sessionTimeoutMilliseconds, APIv1Constants::SUPPORTED_LOCALES_EN_AU);
+					
+					//call the platform's API to request that a session is created
+					$endpointResponse = $apiOrgSession->createOrgSession();
+					
+					//check if the organisation's credentials were correct and that a session was created in the platform's API
+					$result = "FAIL";
+					$resultMessage = "";
+					if($endpointResponse->result == APIv1EndpointResponse::ENDPOINT_RESULT_SUCCESS)
+					{
+					}
+					else
+					{
+						//session failed to be created
+						$resultMessage = "API session failed to be created. Reason: " . $endpointResponse->result_message  . " Error Code: " . $endpointResponse->result_code;
+					}
+					
+					//if a session was successfully created then call API to validate a certificate with a given ID
+					if($apiOrgSession->sessionExists())
+					{
+						//give up on waiting for a response from the API after 30 seconds
+						$timeoutMilliseconds = 30000;
+					
+						//call endpoint
+						$endpointResponseESD = APIv1EndpointOrgValidateSecurityCertificate::call($apiOrgSession, $timeoutMilliseconds, $orgSecurityCertificateID);
+						
+						//check the result of validating the security certificate
+						if($endpointResponseESD->result == APIv1EndpointResponse::ENDPOINT_RESULT_SUCCESS){
+							$result = "SUCCESS";
+							$resultMessage = "Organisation security certificate has successfully been validated and activated.";
+						}else{
+							$result = "FAIL";
+							$resultMessage = "Organisation security certificate failed to validate. Reason: " . $endpointResponseESD->result_message . " Error Code: " . $endpointResponseESD->result_code . "<br/>";
+						}
+					}
+					
+					//next steps
+					//call other API endpoints...
+					//destroy api session when done
+					$apiOrgSession->destroyOrgSession();
+					
+					echo "<div>Result:<div>";
+					echo "<div><b>$result</b><div><br/>";
+					echo "<div>Message:<div>";
+					echo "<div><b>$resultMessage</b><div><br/>";
+				?>
+			</div>
+		</div>
+	</body>
+</html>