Log the error output for API

DaneEveritt · DaneEveritt · commit c8a73fa6085e · 2016-10-07T16:10:54.000-04:00
diff --git a/app/Http/Middleware/APISecretToken.php b/app/Http/Middleware/APISecretToken.php
@@ -62,15 +62,15 @@ public function getAuthorizationMethod()
     public function authenticate(Request $request, Route $route)
     {
         if (!$request->bearerToken() || empty($request->bearerToken())) {
-            APILogService::log($request);
-            throw new UnauthorizedHttpException('The authentication header was missing or malformed');
+            APILogService::log($request, 'The authentication header was missing or malformed.');
+            throw new UnauthorizedHttpException('The authentication header was missing or malformed.');
         }
 
         list($public, $hashed) = explode('.', $request->bearerToken());
 
         $key = APIKey::where('public', $public)->first();
         if (!$key) {
-            APILogService::log($request);
+            APILogService::log($request, 'Invalid API Key.');
             throw new AccessDeniedHttpException('Invalid API Key.');
         }
 
@@ -85,7 +85,7 @@ public function authenticate(Request $request, Route $route)
                     }
                 }
                 if (!$inRange) {
-                    APILogService::log($request);
+                    APILogService::log($request, 'This IP address <' . $request->ip() . '> does not have permission to use this API key.');
                     throw new AccessDeniedHttpException('This IP address <' . $request->ip() . '> does not have permission to use this API key.');
                 }
             }
@@ -98,26 +98,26 @@ public function authenticate(Request $request, Route $route)
             }
 
             if (!$this->permissionAllowed) {
-                APILogService::log($request);
+                APILogService::log($request, 'You do not have permission to access this resource.');
                 throw new AccessDeniedHttpException('You do not have permission to access this resource.');
             }
         }
 
         try {
             $decrypted = Crypt::decrypt($key->secret);
         } catch (\Illuminate\Contracts\Encryption\DecryptException $ex) {
-            APILogService::log($request);
+            APILogService::log($request, 'There was an error while attempting to check your secret key.');
             throw new HttpException('There was an error while attempting to check your secret key.');
         }
 
         $this->url = urldecode($request->fullUrl());
         if($this->_generateHMAC($request->getContent(), $decrypted) !== base64_decode($hashed)) {
-            APILogService::log($request);
+            APILogService::log($request, 'The hashed body was not valid. Potential modification of contents in route.');
             throw new BadRequestHttpException('The hashed body was not valid. Potential modification of contents in route.');
         }
 
         // Log the Route Access
-        APILogService::log($request, true);
+        APILogService::log($request, null, true);
         return true;
 
     }
diff --git a/app/Services/APILogService.php b/app/Services/APILogService.php
@@ -36,7 +36,7 @@ public function __constructor()
         //
     }
 
-    public static function log(Request $request, $authorized = false)
+    public static function log(Request $request, $error = null, $authorized = false)
     {
         if ($request->bearerToken() && !empty($request->bearerToken())) {
             list($public, $hashed) = explode('.', $request->bearerToken());
@@ -47,6 +47,7 @@ public static function log(Request $request, $authorized = false)
         try {
             $log = APILog::create([
                 'authorized' => $authorized,
+                'error' => $error,
                 'key' => $public,
                 'method' => $request->method(),
                 'route' => $request->fullUrl(),
diff --git a/database/migrations/2016_10_07_152117_build_api_log_table.php b/database/migrations/2016_10_07_152117_build_api_log_table.php
@@ -16,6 +16,7 @@ public function up()
         Schema::create('api_logs', function (Blueprint $table) {
             $table->increments('id');
             $table->boolean('authorized');
+            $table->text('error')->nullable();
             $table->char('key', 16)->nullable();
             $table->char('method', 6);
             $table->text('route');

Original file line number	Diff line number	Diff line change
`@@ -62,15 +62,15 @@ public function getAuthorizationMethod()`
`62`	`62`	`public function authenticate(Request $request, Route $route)`
`63`	`63`	`{`
`64`	`64`	`if (!$request->bearerToken() \|\| empty($request->bearerToken())) {`
`65`		`- APILogService::log($request);`
`66`		`- throw new UnauthorizedHttpException('The authentication header was missing or malformed');`
	`65`	`+ APILogService::log($request, 'The authentication header was missing or malformed.');`
	`66`	`+ throw new UnauthorizedHttpException('The authentication header was missing or malformed.');`
`67`	`67`	`}`
`68`	`68`
`69`	`69`	`list($public, $hashed) = explode('.', $request->bearerToken());`
`70`	`70`
`71`	`71`	`$key = APIKey::where('public', $public)->first();`
`72`	`72`	`if (!$key) {`
`73`		`- APILogService::log($request);`
	`73`	`+ APILogService::log($request, 'Invalid API Key.');`
`74`	`74`	`throw new AccessDeniedHttpException('Invalid API Key.');`
`75`	`75`	`}`
`76`	`76`
`@@ -85,7 +85,7 @@ public function authenticate(Request $request, Route $route)`
`85`	`85`	`}`
`86`	`86`	`}`
`87`	`87`	`if (!$inRange) {`
`88`		`- APILogService::log($request);`
	`88`	`+ APILogService::log($request, 'This IP address <' . $request->ip() . '> does not have permission to use this API key.');`
`89`	`89`	`throw new AccessDeniedHttpException('This IP address <' . $request->ip() . '> does not have permission to use this API key.');`
`90`	`90`	`}`
`91`	`91`	`}`
`@@ -98,26 +98,26 @@ public function authenticate(Request $request, Route $route)`
`98`	`98`	`}`
`99`	`99`
`100`	`100`	`if (!$this->permissionAllowed) {`
`101`		`- APILogService::log($request);`
	`101`	`+ APILogService::log($request, 'You do not have permission to access this resource.');`
`102`	`102`	`throw new AccessDeniedHttpException('You do not have permission to access this resource.');`
`103`	`103`	`}`
`104`	`104`	`}`
`105`	`105`
`106`	`106`	`try {`
`107`	`107`	`$decrypted = Crypt::decrypt($key->secret);`
`108`	`108`	`} catch (\Illuminate\Contracts\Encryption\DecryptException $ex) {`
`109`		`- APILogService::log($request);`
	`109`	`+ APILogService::log($request, 'There was an error while attempting to check your secret key.');`
`110`	`110`	`throw new HttpException('There was an error while attempting to check your secret key.');`
`111`	`111`	`}`
`112`	`112`
`113`	`113`	`$this->url = urldecode($request->fullUrl());`
`114`	`114`	`if($this->_generateHMAC($request->getContent(), $decrypted) !== base64_decode($hashed)) {`
`115`		`- APILogService::log($request);`
	`115`	`+ APILogService::log($request, 'The hashed body was not valid. Potential modification of contents in route.');`
`116`	`116`	`throw new BadRequestHttpException('The hashed body was not valid. Potential modification of contents in route.');`
`117`	`117`	`}`
`118`	`118`
`119`	`119`	`// Log the Route Access`
`120`		`- APILogService::log($request, true);`
	`120`	`+ APILogService::log($request, null, true);`
`121`	`121`	`return true;`
`122`	`122`
`123`	`123`	`}`