p3k
/
XRay
mirror of https://github.com/aaronpk/XRay.git
1
0
Fork 0
Code Issues 0 Releases 75 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
73 Commits
2 Branches
46 MiB
Tree: 03a7598cf7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '03a7598cf7'
${ noResults }
XRay/README.md

174 lines
6.4 KiB
Raw Normal View History

rename to X-Ray
8 years ago
begin API documentation
8 years ago
stub mf2 parsing
8 years ago
rename to X-Ray
8 years ago
stub mf2 parsing
8 years ago
rename to X-Ray
8 years ago
stub mf2 parsing
8 years ago
add token fetching and authentication for posts
7 years ago
begin API documentation
8 years ago
rename to X-Ray
8 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
begin API documentation
8 years ago
parse content and name from the entry
8 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
begin API documentation
8 years ago
parse content and name from the entry
8 years ago
begin API documentation
8 years ago
stub mf2 parsing
8 years ago
rename to X-Ray
8 years ago
begin API documentation
8 years ago
parse content and name from the entry
8 years ago
begin API documentation
8 years ago
parse content and name from the entry
8 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
 
  1. XRay
  2. ====
  3. 

  4. 

  5. ## Discovering Content

  6. 

  7. The contents of the URL is checked in the following order:
  8. 

  9. * A supported silo URL (coming soon)
  10. * h-entry, h-event, h-card
  11. * OEmbed (coming soon)
  12. * OGP (coming soon)
  13. 

  14. 

  15. ## Parse API

  16. 

  17. To parse a page and return structured data for the contents of the page, simply pass a url to the parse route.
  18. 

  19. ```
  20. GET /parse?url=https://aaronparecki.com/2016/01/16/11/
  21. ```
  22. 

  23. To conditionally parse the page after first checking if it contains a link to a target URL, also include the target URL as a parameter. This is useful if using XRay to verify an incoming webmention.
  24. 

  25. ```
  26. GET /parse?url=https://aaronparecki.com/2016/01/16/11/&target=http://example.com
  27. ```
  28. 

  29. In both cases, the response will be a JSON object containing a key of "type". If there was an error, "type" will be set to the string "error", otherwise it will refer to the kind of content that was found at the URL, most often "entry".
  30. 

  31. You can also make a POST request with the same parameter names.
  32. 

  33. ### Authentication

  34. 

  35. If the URL you are fetching requires authentication, include the access token in the parameter "token", and it will be included in an "Authorization" header when fetching the URL. (It is recommended to use a POST request in this case, to avoid the access token potentially being logged as part of the query string.)
  36. 

  37. ```
  38. POST /parse
  39. 

  40. url=https://aaronparecki.com/2016/01/16/11/
  41. &target=http://example.com
  42. &token=12341234123412341234
  43. ```
  44. 

  45. ### Error Response

  46. 

  47. ```json
  48. {
  49.   "error": "not_found",
  50.   "error_description": "The URL provided was not found"
  51. }
  52. ```
  53. 

  54. Possible errors are listed below:
  55. 

  56. * `not_found`: The URL provided was not found. (Returned 404 when fetching)
  57. * `ssl_cert_error`: There was an error validating the SSL certificate. This may happen if the SSL certificate has expired.
  58. * `ssl_unsupported_cipher`: The web server does not support any of the SSL ciphers known by the service.
  59. * `timeout`: The service timed out trying to connect to the URL.
  60. * `invalid_content`: The content at the URL was not valid. For example, providing a URL to an image will return this error.
  61. * `no_link_found`: The target link was not found on the page. When a target parameter is provided, this is the error that will be returned if the target could not be found on the page.
  62. * `no_content`: No usable content could be found at the given URL.
  63. * `unauthorized`: The URL returned HTTP 401 Unauthorized.
  64. * `forbidden`: The URL returned HTTP 403 Forbidden.
  65. 

  66. ### Response Format

  67. 

  68. ```json
  69. {
  70.   "data": {
  71.     "type": "entry",
  72.     "author": {
  73.     	"type": "card",
  74.     	"name": "Aaron Parecki",
  75.     	"photo": "https://aaronparecki.com/images/aaronpk-256.jpg",
  76.     	"url": "https://aaronparecki.com/"
  77.     },
  78.     "url": "https://aaronparecki.com/2016/01/16/11/",
  79.     "published": "2016-01-16T16:26:43-08:00",
  80.     "photo": [
  81.       "https://aaronparecki.com/2016/01/16/11/photo.png"
  82.     ],
  83.     "syndication": [
  84.       "https://twitter.com/aaronpk/status/688518372170977280"
  85.     ],
  86.     "summary": "Now that @MozillaPersona is shutting down, the only good way to do email-based login is how @poetica does it.",
  87.     "content": {
  88.       "html": "Now that <a href=\"https://twitter.com/MozillaPersona\">@MozillaPersona</a> is shutting down, the only good way to do email-based login is how <a href=\"https://twitter.com/poetica\">@poetica</a> does it.",
  89.       "text": "Now that @MozillaPersona is shutting down, the only good way to do email-based login is how @poetica does it."
  90.     },
  91.   }
  92. }
  93. ```
  94. 

  95. If a property supports multiple values, it will always be returned as an array. The following properties support multiple values:
  96. 

  97. * in-reply-to
  98. * syndication
  99. * photo (of entry, not of a card)
  100. 

  101. The content will be an object that always contains a "text" property and may contain an "html" property if the source documented published HTML content. The "text" property must always be HTML escaped before displaying it as HTML, as it may include unescaped characters such as `<` and `>`.
  102. 

  103. The author will always be set in the entry if available. The service follows the [authorship discovery](http://indiewebcamp.com/authorship) algorithm to try to find the author information elsewhere on the page if it is not inside the entry in the source document.
  104. 

  105. All URLs provided in the output are absolute URLs. If the source document contains a relative URL, it will be resolved first.
  106. 

  107. In a future version, replies, likes, reposts, etc. of this post will be included if they are listed on the page.
  108. 

  109. ```json
  110. {
  111.   "data": {
  112.     "type": "entry",
  113.     ...
  114.     "like": [
  115.       {
  116.         "type": "cite",
  117.         "author": {
  118.           "type": "card",
  119.           "name": "Thomas Dunlap",
  120.           "photo": "https://s3-us-west-2.amazonaws.com/aaronparecki.com/twitter.com/9055c458a67762637c0071006b16c78f25cb610b224dbc98f48961d772faff4d.jpeg",
  121.           "url": "https://twitter.com/spladow"
  122.         },
  123.         "url": "https://twitter.com/aaronpk/status/688518372170977280#favorited-by-16467582"
  124.       }
  125.     ],
  126.     "comment": [
  127.       {
  128.         "type": "cite",
  129.         "author": {
  130.           "type": "card",
  131.           "name": "Poetica",
  132.           "photo": "https://s3-us-west-2.amazonaws.com/aaronparecki.com/twitter.com/192664bb706b2998ed42a50a860490b6aa1bb4926b458ba293b4578af599aa6f.png",
  133.           "url": "http://poetica.com/"
  134.         },
  135.         "url": "https://twitter.com/poetica/status/689045331426803712",
  136.         "published": "2016-01-18T03:23:03-08:00",
  137.         "content": {
  138.           "text": "@aaronpk @mozillapersona thanks very much! :)"
  139.         }
  140.       }
  141.     ]
  142.   }
  143. }
  144. 

  145. ```
  146. 

  147. ## Token API

  148. 

  149. When verifying [Private Webmentions](https://indieweb.org/Private-Webmention#How_to_Receive_Private_Webmentions), you will need to exchange a code for an access token at the token endpoint specified by the source URL.
  150. 

  151. XRay provides an API that will do this in one step. You can provide the source URL and code you got from the webmention, and XRay will discover the token endpoint, and then return you an access token.
  152. 

  153. ```
  154. POST /token
  155. 

  156. source=http://example.com/private-post
  157. &code=1234567812345678
  158. ```
  159. 

  160. The response will be the response from the token endpoint, which will include an `access_token` property, and possibly an `expires_in` property.
  161. 

  162. ```
  163. {
  164.   "access_token": "eyJ0eXAXBlIjoI6Imh0dHB8idGFyZ2V0IjoraW0uZGV2bb-ZO6MV-DIqbUn_3LZs",
  165.   "token_type": "bearer",
  166.   "expires_in": 3600
  167. }
  168. ```
  169. 

  170. If there was a problem fetching the access token, you will get one of the errors below in addition to the HTTP related errors returned by the parse API:
  171. 

  172. * `no_token_endpoint` - Unable to find an HTTP header specifying the token endpoint.
  173. 

  174.