apispree_api 0.0.0

data/LICENSE

@@ -0,0 +1,26 @@
+Copyright (c) 2007-2010, Rails Dog LLC and other contributors
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+    * Redistributions of source code must retain the above copyright notice,
+      this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above copyright notice,
+      this list of conditions and the following disclaimer in the documentation
+      and/or other materials provided with the distribution.
+    * Neither the name Spree nor the names of its contributors may be used to
+      endorse or promote products derived from this software without specific
+      prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR
+CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
+EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
+PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

data/README.md

@@ -0,0 +1,16 @@
+Spree API
+=========
+Manage orders,shipments etc. with a simple REST API
+
+See [RESTful API guide](http://spreecommerce.com/documentation/rest.html) for more details.
+
+Testing
+=======
+
+Create the test site
+
+    rake test_app
+
+Run the tests
+
+    rake spec

data/app/controllers/admin/users_controller_decorator.rb

@@ -0,0 +1,19 @@
+Admin::UsersController.class_eval do
+
+  before_filter :load_roles, :only => [:edit, :new, :update, :create, :generate_api_key, :clear_api_key]
+
+  def generate_api_key
+    if @user.generate_api_key!
+      flash.notice = t('api.key_generated')
+    end
+    redirect_to edit_admin_user_path(@user)
+  end
+
+  def clear_api_key
+    if @user.clear_api_key!
+      flash.notice = t('api.key_cleared')
+    end
+    redirect_to edit_admin_user_path(@user)
+  end
+
+end

data/app/controllers/api/adjustments_controller.rb

@@ -0,0 +1,13 @@
+class Api::AdjustmentsController < Api::BaseController
+    public
+    def destroy
+     puts "&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&"
+      puts params[object_name]
+       puts params[:id]
+      @object=Adjustment.find_by_id(params[:id])
+       @object.destroy
+      if @object.destroy
+      render :text => 'Destroyed Successfully' 
+    end
+  end
+end

data/app/controllers/api/analyses_controller.rb

@@ -0,0 +1,134 @@
+class Api::AnalysesController< ActionController::Base
+	
+	def best_selling_products
+	  return_data=Hash.new
+	  prod_array=Array.new
+	  best=ActiveRecord::Base.connection.execute("Select A.id,A.name,sum(C.quantity) qty from products A, variants B, line_items C,orders D where A.id=B.product_id and B.id=C.variant_id and C.order_id=D.id and D.payment_state in ('paid','completed','payment','complete') group by A.id,A.name order by 3,1")
+	  best.each do |pr|
+		  prod_dtl=Hash.new
+		  prod_dtl[:id]=pr[0]
+		  prod_dtl[:name]=pr[1]
+		  prod_dtl[:qty]=pr[2]
+		  prod_array.push prod_dtl
+	  end
+	  return_data[:products] = prod_array
+	  render :json => return_data.to_json, :status => 201
+  end
+	
+	def gross_selling_products
+	  return_data=Hash.new
+	  prod_array=Array.new
+	  best=ActiveRecord::Base.connection.execute("Select A.id,A.name,sum(B.cost_price * C.quantity) amount from products A, variants B, line_items C,orders D where A.id=B.product_id and B.id=C.variant_id and C.order_id=D.id and D.payment_state in ('paid','completed','payment','complete') group by A.id,A.name order by 3,1")
+	  best.each do |pr|
+		  prod_dtl=Hash.new
+		  prod_dtl[:id]=pr[0]
+		  prod_dtl[:name]=pr[1]
+		  prod_dtl[:amount]=pr[2]
+		  prod_array.push prod_dtl
+	  end
+	  return_data[:products] = prod_array
+	  render :json => return_data.to_json, :status => 201
+  end
+	
+def top_spenders
+	 return_data=Hash.new
+	  prod_array=Array.new
+	  best=ActiveRecord::Base.connection.execute("Select A.id,A.email,sum(C.quantity),sum(B.cost_price * C.quantity) from users A, variants B, line_items C, orders D where A.id=D.user_id and B.id=C.variant_id and C.order_id=D.id and D.payment_state in ('paid','completed','payment','complete') group by A.id,A.email order by 4,1")
+	  best.each do |pr|
+		  prod_dtl=Hash.new
+		  prod_dtl[:id]=pr[0]
+		  prod_dtl[:email]=pr[1]
+		  prod_dtl[:qty]=pr[2]
+		  prod_dtl[:value]=pr[3]
+		  prod_array.push prod_dtl
+	  end
+	  return_data[:spenders] = prod_array
+	  render :json => return_data.to_json, :status => 201
+	end
+	def  recent_orders
+		 return_data=Hash.new
+	  prod_array=Array.new
+	  best=ActiveRecord::Base.connection.execute("Select A.id,A.email,D.id,D.number,D.created_at,D.total from users A, orders D where A.id=D.user_id and D.payment_state in ('paid','completed','payment','complete') order by 4,3")
+	  best.each do |pr|
+		  prod_dtl=Hash.new
+		  prod_dtl[:user_id]=pr[0]
+		  prod_dtl[:email]=pr[1]
+		  prod_dtl[:order_id]=pr[2]
+		  prod_dtl[:order_number]=pr[3]
+		  prod_dtl[:order_date]=pr[4]
+		  prod_dtl[:order_total]=pr[5]
+		  prod_array.push prod_dtl
+	  end
+	  return_data[:orders] = prod_array
+	  render :json => return_data.to_json, :status => 201
+	end
+def out_of_stock
+	 return_data=Hash.new
+	  prod_array=Array.new
+	  best=ActiveRecord::Base.connection.execute("Select A.id,A.name,B.count_on_hand from products A, variants B where A.id=B.product_id and B.count_on_hand <=0 order by 1,2")
+	  best.each do |pr|
+		  prod_dtl=Hash.new
+		  prod_dtl[:id]=pr[0]
+		  prod_dtl[:name]=pr[1]
+		  prod_dtl[:count_on_hand]=pr[2]
+		  prod_array.push prod_dtl
+	  end
+	  return_data[:products] = prod_array
+	  render :json => return_data.to_json, :status => 201
+end
+def day_order_count
+	 return_data=Hash.new
+	  prod_array=Array.new
+	  best=ActiveRecord::Base.connection.execute("Select DATE(created_at),count(*) from orders where payment_state in ('paid','completed','payment','complete') group by DATE(created_at) order by 1 DESC")
+	  best.each do |pr|
+		  prod_dtl=Hash.new
+		  prod_dtl[:order_date]=pr[0]
+		  prod_dtl[:order_count]=pr[1]
+		  prod_array.push prod_dtl
+	  end
+	  return_data[:orders] = prod_array
+	  render :json => return_data.to_json, :status => 201
+end
+def day_order_value
+	 return_data=Hash.new
+	  prod_array=Array.new
+	  best=ActiveRecord::Base.connection.execute("Select DATE(created_at),sum(total) from orders where payment_state in ('paid','completed','payment','complete') group by DATE(created_at) order by 1 DESC")
+	  best.each do |pr|
+		  prod_dtl=Hash.new
+		  prod_dtl[:order_date]=pr[0]
+		  prod_dtl[:total_order_value]=pr[1]
+		  prod_array.push prod_dtl
+	  end
+	  return_data[:orders] = prod_array
+	  render :json => return_data.to_json, :status => 201
+end
+def month_order_value
+	 return_data=Hash.new
+	  prod_array=Array.new
+	  best=ActiveRecord::Base.connection.execute("Select Month(created_at),Year(created_at),sum(total) from orders where payment_state in ('paid','completed','payment','complete') group by Month(created_at),Year(created_at) order by 2 DESC ,1 DESC")
+	  best.each do |pr|
+		  prod_dtl=Hash.new
+		  prod_dtl[:order_month]=pr[0]
+		  prod_dtl[:order_year]=pr[1]
+		  prod_dtl[:total_order_value]=pr[2]
+		  prod_array.push prod_dtl
+	  end
+	  return_data[:orders] = prod_array
+	  render :json => return_data.to_json, :status => 201
+end
+def month_order_count
+	 return_data=Hash.new
+	  prod_array=Array.new
+	  best=ActiveRecord::Base.connection.execute("Select Month(created_at),Year(created_at),count(*) from orders where payment_state in ('paid','completed','payment','complete') group by Month(created_at),Year(created_at) order by 2 DESC ,1 DESC")
+	  best.each do |pr|
+		  prod_dtl=Hash.new
+		  prod_dtl[:order_month]=pr[0]
+		  prod_dtl[:order_year]=pr[1]
+		  prod_dtl[:order_count]=pr[2]
+		  prod_array.push prod_dtl
+	  end
+	  return_data[:orders] = prod_array
+	  render :json => return_data.to_json, :status => 201
+	end
+	
+end

data/app/controllers/api/base_controller.rb

@@ -0,0 +1,187 @@
+class Api::BaseController < Spree::BaseController
+  before_filter :check_http_authorization
+  before_filter :load_resource
+  skip_before_filter :verify_authenticity_token, :if => lambda { admin_token_passed_in_headers }
+  authorize_resource
+  
+  respond_to :json
+
+  def index
+    respond_with(@collection) do |format|
+      format.json { render :json => @collection.to_json(collection_serialization_options) }
+    end
+  end
+
+  def show
+    respond_with(@object) do |format|
+      format.json { render :json => @object.to_json(object_serialization_options) }
+    end
+  end
+
+  def create
+    if @object.save
+     # render :text => "Resource created\n", :status => 201, :location => object_url
+     render :json => @object.to_json, :status => 201
+    else
+      respond_with(@object.errors, :status => 422)
+    end
+  end
+
+  def update
+    if @object.update_attributes(params[object_name])
+      
+    render :json => @object.to_json, :status => 201
+
+    else
+      respond_with(@object.errors, :status => 422)
+    end
+  end
+
+  def admin_token_passed_in_headers
+    request.headers['HTTP_AUTHORIZATION'].present?
+  end
+
+  def access_denied
+    render :text => 'access_denied', :status => 401
+  end
+
+  # Generic action to handle firing of state events on an object
+  def event
+    valid_events = model_class.state_machine.events.map(&:name)
+    valid_events_for_object = @object ? @object.state_transitions.map(&:event) : []
+
+    if params[:e].blank?
+      errors = t('api.errors.missing_event')
+    elsif valid_events_for_object.include?(params[:e].to_sym)
+      @object.send("#{params[:e]}!")
+      errors = nil
+    elsif valid_events.include?(params[:e].to_sym)
+      errors = t('api.errors.invalid_event_for_object', :events => valid_events_for_object.join(','))
+    else
+      errors = t('api.errors.invalid_event', :events => valid_events.join(','))
+    end
+
+    respond_to do |wants|
+      wants.json do
+        if errors.blank?
+          render :nothing => true
+        else
+          render :json => errors.to_json, :status => 422
+        end
+      end
+    end
+  end
+
+  protected
+    def model_class
+      controller_name.classify.constantize
+    end
+    
+    def object_name
+      controller_name.singularize
+    end
+    
+    def load_resource
+      if member_action?
+        @object ||= load_resource_instance
+        instance_variable_set("@#{object_name}", @object)
+      else
+        @collection ||= collection
+        instance_variable_set("@#{controller_name}", @collection)
+      end
+    end
+    
+    def load_resource_instance
+      if new_actions.include?(params[:action].to_sym)
+        build_resource
+      elsif params[:id]
+        find_resource
+      end
+    end
+    
+    def parent
+      nil
+    end
+
+    def find_resource
+      if parent.present?
+        parent.send(controller_name).find(params[:id])
+      else
+        model_class.includes(eager_load_associations).find(params[:id])
+      end
+    end
+    
+    def build_resource
+      if parent.present?
+        parent.send(controller_name).build(params[object_name])
+      else
+        model_class.new(params[object_name])
+      end
+    end
+    
+    def collection
+      return @search unless @search.nil?      
+      params[:search] = {} if params[:search].blank?
+      params[:search][:meta_sort] = 'created_at.desc' if params[:search][:meta_sort].blank?
+      
+      scope = parent.present? ? parent.send(controller_name) : model_class.scoped
+     
+      @search = scope.metasearch(params[:search]).relation.limit(100)
+      @search
+    end
+
+    def collection_serialization_options
+      {}
+    end
+
+    def object_serialization_options
+      {}
+    end
+
+    def eager_load_associations
+      nil
+    end
+
+    def object_errors
+      {:errors => object.errors.full_messages}
+    end
+
+  def object_url(object = nil, options = {})
+      target = object ? object : @object
+      puts @object.inspect
+      puts object_name
+      if parent.present? && object_name == "state"
+          send "api_country_#{object_name}_url", parent, target, options
+      elsif parent.present? && object_name == "taxon"
+          send "api_taxonomy_#{object_name}_url", parent, target, options
+      elsif parent.present?
+          send "api_#{parent[:model_name]}_#{object_name}_url", parent, target, options
+      else
+        send "api_#{object_name}_url",parent, target, options
+      end
+    end
+    
+    def collection_actions
+      [:index]
+    end
+
+    def member_action?
+      !collection_actions.include? params[:action].to_sym
+    end
+
+    def new_actions
+      [:new, :create]
+    end
+
+  private
+  def check_http_authorization
+    #~ if request.headers['HTTP_AUTHORIZATION'].blank?
+      #~ render :text => "Access Denied\n", :status => 401
+    #~ end
+      if current_user.authentication_token!=params[:authentication_token]
+      # if request.headers['HTTP_AUTHORIZATION'].blank?
+        render :text => "Access Denied\n", :status => 401
+    end if current_user
+  end
+
+end

data/app/controllers/api/checkout1_controller.rb

@@ -0,0 +1,4 @@
+class Api::Checkout1Controller < CheckoutController
+
+ 
+end

data/app/controllers/api/countries_controller.rb

@@ -0,0 +1,14 @@
+class Api::CountriesController < Api::BaseController
+  before_filter :access_denied, :except => [:index, :show,:create,:update,:destroy]
+  public
+    def destroy
+     puts "&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&"
+      puts params[object_name]
+       puts params[:id]
+      @object=Country.find_by_id(params[:id])
+       @object.destroy
+      if @object.destroy
+      render :text => 'Destroyed' 
+    end
+  end
+end

data/app/controllers/api/images_controller.rb

@@ -0,0 +1,15 @@
+class Api::ImagesController < Spree::Api::BaseController
+  
+   public
+    def destroy
+     puts "&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&"
+      puts params[object_name]
+       puts params[:id]
+      @object=Image.find_by_id(params[:id])
+       @object.destroy
+      if @object.destroy
+      render :text => 'Image Destroyed Successfully' 
+    end
+  end
+      
+end

data/app/controllers/api/inventory_units_controller.rb

@@ -0,0 +1,19 @@
+class Api::InventoryUnitsController < Api::BaseController
+  private
+    def parent
+      if params[:order_id]
+        @parent = Order.find_by_param(params[:order_id])
+      elsif params[:shipment_id]
+        @parent = Shipment.find_by_param(params[:shipment_id])
+      end
+    end
+  
+    def parent_data
+      [params[:order_id], params[:shipment_id]].compact
+    end
+    
+    def eager_load_associations
+      [:variant]
+    end
+
+end