p3k
/
XRay
mirror of https://github.com/aaronpk/XRay.git
1
0
Fork 0
Code Issues 0 Releases 75 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
171 Commits
2 Branches
46 MiB
Tree: 796defb389
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '796defb389'
${ noResults }
XRay/README.md

415 lines
14 KiB
Raw Normal View History

rename to X-Ray
8 years ago
begin API documentation
8 years ago
package for releasing to shared servers * adds .htaccess files for apache * adds installation instructions and nginx example * prevent source folders from being viewed with .htaccess * adds `index.php` in root folder in case you deploy this whole thing to a subfolder * updates to work when installed in a subfolder
7 years ago
stub mf2 parsing
8 years ago
update readme includes info on feed parsing
6 years ago
Merge branch 'master' of https://github.com/sebsel/XRay into sebsel-master # Conflicts: # README.md # composer.json # composer.lock
6 years ago
update readme includes info on feed parsing
6 years ago
stub mf2 parsing
8 years ago
finishes the refactor!
7 years ago
update readme includes info on feed parsing
6 years ago
expand readme
7 years ago
finishes the refactor!
7 years ago
implement h-feed and other microformats feed parsing
6 years ago
finishes the refactor!
7 years ago
update readme includes info on feed parsing
6 years ago
finishes the refactor!
7 years ago
expand readme
7 years ago
finishes the refactor!
7 years ago
begin API documentation
8 years ago
update readme includes info on feed parsing
6 years ago
begin API documentation
8 years ago
package for releasing to shared servers * adds .htaccess files for apache * adds installation instructions and nginx example * prevent source folders from being viewed with .htaccess * adds `index.php` in root folder in case you deploy this whole thing to a subfolder * updates to work when installed in a subfolder
7 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
update readme includes info on feed parsing
6 years ago
refactor Twitter parser
7 years ago
added Facebook to the docs
6 years ago
refactor Twitter parser
7 years ago
update readme includes info on feed parsing
6 years ago
add token fetching and authentication for posts
7 years ago
package for releasing to shared servers * adds .htaccess files for apache * adds installation instructions and nginx example * prevent source folders from being viewed with .htaccess * adds `index.php` in root folder in case you deploy this whole thing to a subfolder * updates to work when installed in a subfolder
7 years ago
add token fetching and authentication for posts
7 years ago
add twitter support closes #18
7 years ago
oops
6 years ago
add twitter support closes #18
7 years ago
added Facebook to the docs
6 years ago
add twitter support closes #18
7 years ago
added Facebook to the docs
6 years ago
add twitter support closes #18
7 years ago
update readme includes info on feed parsing
6 years ago
add twitter support closes #18
7 years ago
added Facebook to the docs
6 years ago
finishes the refactor!
7 years ago
update readme includes info on feed parsing
6 years ago
finishes the refactor!
7 years ago
added Facebook to the docs
6 years ago
begin API documentation
8 years ago
parse content and name from the entry
8 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
begin API documentation
8 years ago
add token fetching and authentication for posts
7 years ago
begin API documentation
8 years ago
update README replaced example post, closes #30
7 years ago
parse content and name from the entry
8 years ago
update README replaced example post, closes #30
7 years ago
parse content and name from the entry
8 years ago
update README replaced example post, closes #30
7 years ago
parse content and name from the entry
8 years ago
update README replaced example post, closes #30
7 years ago
return status code and final URL in response * closes #14 * updated readme with details of the response * includes `url` and `code` in the response with the final URL after following redirects and the HTTP status code returned
7 years ago
update README replaced example post, closes #30
7 years ago
begin API documentation
8 years ago
added Facebook to the docs
6 years ago
return status code and final URL in response * closes #14 * updated readme with details of the response * includes `url` and `code` in the response with the final URL after following redirects and the HTTP status code returned
7 years ago
begin API documentation
8 years ago
update readme includes info on feed parsing
6 years ago
begin API documentation
8 years ago
implement h-feed and other microformats feed parsing
6 years ago
begin API documentation
8 years ago
stub mf2 parsing
8 years ago
implement h-feed and other microformats feed parsing
6 years ago
begin API documentation
8 years ago
parse content and name from the entry
8 years ago
implement h-feed and other microformats feed parsing
6 years ago
parse content and name from the entry
8 years ago
begin API documentation
8 years ago
implement h-feed and other microformats feed parsing
6 years ago
return status code and final URL in response * closes #14 * updated readme with details of the response * includes `url` and `code` in the response with the final URL after following redirects and the HTTP status code returned
7 years ago
implement h-feed and other microformats feed parsing
6 years ago
return status code and final URL in response * closes #14 * updated readme with details of the response * includes `url` and `code` in the response with the final URL after following redirects and the HTTP status code returned
7 years ago
expand readme
7 years ago
add token fetching and authentication for posts
7 years ago
package for releasing to shared servers * adds .htaccess files for apache * adds installation instructions and nginx example * prevent source folders from being viewed with .htaccess * adds `index.php` in root folder in case you deploy this whole thing to a subfolder * updates to work when installed in a subfolder
7 years ago
 
  1. XRay
  2. ====
  3. 

  4. XRay parses structured content from a URL.
  5. 

  6. 

  7. ## Discovering Content

  8. 

  9. XRay will parse content in the following formats. First the URL is checked against known services:
  10. 

  11. * Instagram
  12. * Twitter
  13. * GitHub
  14. * XKCD
  15. * Hackernews
  16. * Facebook (public events)
  17. 

  18. If the contents of the URL is XML or JSON, then XRay will parse the Atom, RSS or JSONFeed formats.
  19. 

  20. Finally, XRay looks for Microformats on the page and will determine the content from that.
  21. 

  22. * h-card
  23. * h-entry
  24. * h-event
  25. * h-review
  26. * h-recipe
  27. * h-product
  28. * h-item
  29. * h-feed
  30. 

  31. ## Library

  32. 

  33. XRay can be used as a library in your PHP project. The easiest way to install it and its dependencies is via composer.
  34. 

  35. ```
  36. composer require p3k/xray
  37. ```
  38. 

  39. You can also [download a release](https://github.com/aaronpk/XRay/releases) which is a zip file with all dependencies already installed.
  40. 

  41. ### Parsing

  42. 

  43. ```php
  44. $xray = new p3k\XRay();
  45. $parsed = $xray->parse('https://aaronparecki.com/2017/04/28/9/');
  46. ```
  47. 

  48. If you already have an HTML or JSON document you want to parse, you can pass it as a string in the second parameter.
  49. 

  50. ```php
  51. $xray = new p3k\XRay();
  52. $html = '<html>....</html>';
  53. $parsed = $xray->parse('https://aaronparecki.com/2017/04/28/9/', $html);
  54. ```
  55. 

  56. In both cases, you can add an additional parameter to configure various options of how XRay will behave. Below is a list of the options.
  57. 

  58. * `timeout` - The timeout in seconds to wait for any HTTP requests
  59. * `max_redirects` - The maximum number of redirects to follow
  60. * `include_original` - Will also return the full document fetched
  61. * `target` - Specify a target URL, and XRay will first check if that URL is on the page, and only if it is, will continue to parse the page. This is useful when you're using XRay to verify an incoming webmention.
  62. * `expect=feed` - If you know the thing you are parsing is a feed, include this parameter which will avoid running the autodetection rules and will provide better results for some feeds.
  63. 

  64. Additional parameters are supported when making requests that use the Twitter or GitHub API. See the Authentication section below for details.
  65. 

  66. ```php
  67. $xray = new p3k\XRay();
  68. 

  69. $parsed = $xray->parse('https://aaronparecki.com/2017/04/28/9/', [
  70.   'timeout' => 30
  71. ]);
  72. 

  73. $parsed = $xray->parse('https://aaronparecki.com/2017/04/28/9/', $html, [
  74.   'target' => 'http://example.com/'
  75. ]);
  76. ```
  77. 

  78. The `$parsed` return value will look like the below. See "Primary Data" below for an explanation of the vocabularies returned.
  79. 

  80. ```
  81. $parsed = Array
  82. (
  83.     [data] => Array
  84.         (
  85.             [type] => card
  86.             [name] => Aaron Parecki
  87.             [url] => https://aaronparecki.com/
  88.             [photo] => https://aaronparecki.com/images/profile.jpg
  89.         )
  90. 

  91.     [url] => https://aaronparecki.com/
  92.     [code] => 200
  93. )
  94. ```
  95. 

  96. ### Rels

  97. 

  98. You can also use XRay to fetch all the rel values on a page, merging the list of HTTP `Link` headers with rel values with the HTML rel values on the page.
  99. 

  100. ```php
  101. $xray = new p3k\XRay();
  102. $xray->http = $this->http;
  103. $rels = $xray->rels('https://aaronparecki.com/');
  104. ```
  105. 

  106. This will return a similar response to the parser, but instead of a `data` key containing the parsed page, there will be `rels`, an associative array. Each key will contain an array of all the values that match that rel value.
  107. 

  108. ```
  109. $rels = Array
  110. (
  111.     [url] => https://aaronparecki.com/
  112.     [code] => 200
  113.     [rels] => Array
  114.         (
  115.             [hub] => Array
  116.                 (
  117.                     [0] => https://switchboard.p3k.io/
  118.                 )
  119. 

  120.             [authorization_endpoint] => Array
  121.                 (
  122.                     [0] => https://aaronparecki.com/auth
  123.                 )
  124.             ...
  125. ```
  126. 

  127. 

  128. ### Customizing the User Agent

  129. 

  130. To set a unique user agent, (some websites will require a user agent be set), you can set the `http` property of the object to a `p3k\HTTP` object.
  131. 

  132. ```php
  133. $xray = new p3k\XRay();
  134. $xray->http = new p3k\HTTP('MyProject/1.0.0 (http://example.com/)');
  135. $xray->parse('http://example.com/');
  136. ```
  137. 

  138. 

  139. ## API

  140. 

  141. XRay can also be used as an API to provide its parsing capabilities over an HTTP service.
  142. 

  143. To parse a page and return structured data for the contents of the page, simply pass a url to the `/parse` route.
  144. 

  145. ```
  146. GET /parse?url=https://aaronparecki.com/2016/01/16/11/
  147. ```
  148. 

  149. To conditionally parse the page after first checking if it contains a link to a target URL, also include the target URL as a parameter. This is useful when using XRay to verify an incoming webmention.
  150. 

  151. ```
  152. GET /parse?url=https://aaronparecki.com/2016/01/16/11/&target=http://example.com
  153. ```
  154. 

  155. In both cases, the response will be a JSON object containing a key of "type". If there was an error, "type" will be set to the string "error", otherwise it will refer to the kind of content that was found at the URL, most often "entry".
  156. 

  157. You can also make a POST request with the same parameter names.
  158. 

  159. If you already have an HTML or JSON document you want to parse, you can include that in the POST parameter `body`. This POST request would look like the below:
  160. 

  161. ```
  162. POST /parse
  163. Content-type: application/x-www-form-urlencoded
  164. 

  165. url=https://aaronparecki.com/2016/01/16/11/
  166. &body=<html>....</html>
  167. ```
  168. 

  169. or for Twitter/GitHub/Facebook where you might have JSON,
  170. 

  171. ```
  172. POST /parse
  173. Content-type: application/x-www-form-urlencoded
  174. 

  175. url=https://github.com/aaronpk/XRay
  176. &body={"repo":......}
  177. ```
  178. 

  179. ### Parameters

  180. 

  181. XRay accepts the following parameters when calling `/parse`
  182. 

  183. * `url` - the URL of the page to parse
  184. * `target` - Specify a target URL, and XRay will first check if that URL is on the page, and only if it is, will continue to parse the page. This is useful when you're using XRay to verify an incoming webmention.
  185. * `timeout` - The timeout in seconds to wait for any HTTP requests
  186. * `max_redirects` - The maximum number of redirects to follow
  187. * `include_original` - Will also return the full document fetched
  188. * `expect=feed` - If you know the thing you are parsing is a feed, include this parameter which will avoid running the autodetection rules and will provide better results for some feeds.
  189. 

  190. 

  191. ### Authentication

  192. 

  193. If the URL you are fetching requires authentication, include the access token in the parameter "token", and it will be included in an "Authorization" header when fetching the URL. (It is recommended to use a POST request in this case, to avoid the access token potentially being logged as part of the query string.) This is useful for [Private Webmention](https://indieweb.org/Private-Webmention) verification.
  194. 

  195. ```
  196. POST /parse
  197. 

  198. url=https://aaronparecki.com/2016/01/16/11/
  199. &target=http://example.com
  200. &token=12341234123412341234
  201. ```
  202. 

  203. 

  204. ### API Authentication

  205. 

  206. XRay uses the Twitter, Github and Facebook APIs to fetch posts, and those API require authentication. In order to keep XRay stateless, it is required that you pass in the credentials to the parse call.
  207. 

  208. You should only send the credentials when the URL you are trying to parse is a Twitter URL, a GitHub URL or a Facebook URL, so you'll want to check for whether the hostname is `twitter.com`, `github.com`, etc. before you include credentials in this call.
  209. 

  210. 

  211. #### Twitter Authentication

  212. 

  213. XRay uses the Twitter API to fetch Twitter URLs. You can register an application on the Twitter developer website, and generate an access token for your account without writing any code, and then use those credentials when making an API request to XRay.
  214. 

  215. * `twitter_api_key` - Your application's API key
  216. * `twitter_api_secret` - Your application's API secret
  217. * `twitter_access_token` - Your Twitter access token
  218. * `twitter_access_token_secret` - Your Twitter secret access token
  219. 

  220. 

  221. #### GitHub Authentication

  222. 

  223. XRay uses the GitHub API to fetch GitHub URLs, which provides higher rate limits when used with authentication. You can pass a GitHub access token along with the request and XRay will use it when making requests to the API.
  224. 

  225. * `github_access_token` - A GitHub access token
  226. 

  227. 

  228. #### Facebook Authentication

  229. 

  230. XRay uses the Facebook API to fetch Facebook URLs. You can create a Facebook App on Facebooks developer website.
  231. 

  232. * facebook_app_id - Your application's App ID
  233. * facebook_app_secret - Your application's App Secret
  234. 

  235. At this moment, XRay is able to get it's own access token from those credentials.
  236. 

  237. 

  238. ### Error Response

  239. 

  240. ```json
  241. {
  242.   "error": "not_found",
  243.   "error_description": "The URL provided was not found"
  244. }
  245. ```
  246. 

  247. Possible errors are listed below:
  248. 

  249. * `not_found`: The URL provided was not found. (Returned 404 when fetching)
  250. * `ssl_cert_error`: There was an error validating the SSL certificate. This may happen if the SSL certificate has expired.
  251. * `ssl_unsupported_cipher`: The web server does not support any of the SSL ciphers known by the service.
  252. * `timeout`: The service timed out trying to connect to the URL.
  253. * `invalid_content`: The content at the URL was not valid. For example, providing a URL to an image will return this error.
  254. * `no_link_found`: The target link was not found on the page. When a target parameter is provided, this is the error that will be returned if the target could not be found on the page.
  255. * `no_content`: No usable content could be found at the given URL.
  256. * `unauthorized`: The URL returned HTTP 401 Unauthorized.
  257. * `forbidden`: The URL returned HTTP 403 Forbidden.
  258. 

  259. ### Response Format

  260. 

  261. ```json
  262. {
  263.   "data":{
  264.     "type":"entry",
  265.     "published":"2017-03-01T19:00:33-08:00",
  266.     "url":"https://aaronparecki.com/2017/03/01/14/hwc",
  267.     "category":[
  268.       "indieweb",
  269.       "hwc"
  270.     ],
  271.     "photo":[
  272.       "https://aaronparecki.com/2017/03/01/14/photo.jpg"
  273.     ],
  274.     "syndication":[
  275.       "https://twitter.com/aaronpk/status/837135519427395584"
  276.     ],
  277.     "content":{
  278.       "text":"Hello from Homebrew Website Club PDX! Thanks to @DreamHost for hosting us! 🍕🎉 #indieweb",
  279.       "html":"Hello from Homebrew Website Club PDX! Thanks to <a href=\"https://twitter.com/DreamHost\">@DreamHost</a> for hosting us! <a href=\"https://aaronparecki.com/emoji/%F0%9F%8D%95\">🍕</a><a href=\"https://aaronparecki.com/emoji/%F0%9F%8E%89\">🎉</a> <a href=\"https://aaronparecki.com/tag/indieweb\">#indieweb</a>"
  280.     },
  281.     "author":{
  282.       "type":"card",
  283.       "name":"Aaron Parecki",
  284.       "url":"https://aaronparecki.com/",
  285.       "photo":"https://aaronparecki.com/images/profile.jpg"
  286.     }
  287.   },
  288.   "url":"https://aaronparecki.com/2017/03/01/14/hwc",
  289.   "code":200
  290. }
  291. ```
  292. 

  293. #### Primary Data

  294. 

  295. The primary object on the page is returned in the `data` property. This will indicate the type of object (e.g. `entry`), and will contain the vocabulary's properties that it was able to parse from the page.
  296. 

  297. If a property supports multiple values, it will always be returned as an array. The following properties support multiple values:
  298. 

  299. * `in-reply-to`
  300. * `like-of`
  301. * `repost-of`
  302. * `bookmark-of`
  303. * `syndication`
  304. * `photo` (of entry, not of a card)
  305. * `video`
  306. * `audio`
  307. * `category`
  308. 

  309. The content will be an object that always contains a "text" property and may contain an "html" property if the source documented published HTML content. The "text" property must always be HTML escaped before displaying it as HTML, as it may include unescaped characters such as `<` and `>`.
  310. 

  311. The author will always be set in the entry if available. The service follows the [authorship discovery](https://indieweb.org/authorship) algorithm to try to find the author information elsewhere on the page if it is not inside the entry in the source document.
  312. 

  313. All URLs provided in the output are absolute URLs. If the source document contains a relative URL, it will be resolved first.
  314. 

  315. 

  316. #### Other Properties

  317. 

  318. Other properties are returned in the response at the same level as the `data` property.
  319. 

  320. * `url` - The effective URL that the document was retrieved from. This will be the final URL after following any redirects.
  321. * `code` - The HTTP response code returned by the URL. Typically this will be 200, but if the URL returned an alternate HTTP code that also included an h-entry (such as a 410 deleted notice with a stub h-entry), you can use this to find out that the original URL was actually deleted.
  322. 

  323. 

  324. #### Feeds

  325. 

  326. XRay can return information for several kinds of feeds. The URL (or body) passed to XRay will be checked for the following formats:
  327. 

  328. * XML (Atom and RSS)
  329. * JSONFeed (https://jsonfeed.org)
  330. * Microformats [h-feed](https://indieweb.org/h-feed)
  331. 

  332. If the page being parsed represents a feed, then the response will look like the following:
  333. 

  334. ```json
  335. {
  336.   "data": {
  337.     "type": "feed",
  338.     "items": [
  339. 

  340.     ]
  341.   }
  342. }
  343. ```
  344. 

  345. Each object in the `items` array will contain a parsed version of the item, in the same format that XRay normally returns. When parsing Microformats feeds, the [authorship discovery](https://indieweb.org/authorship) will be run for each item to build out the author info.
  346. 

  347. Atom, RSS and JSONFeed will all be normalized to XRay's vocabulary, and only recognized properties will be returned.
  348. 

  349. ## Rels

  350. 

  351. There is also an API method to parse and return all rel values on the page, including HTTP `Link` headers and HTML rel values.
  352. 

  353. ```
  354. GET /rels?url=https://aaronparecki.com/
  355. ```
  356. 

  357. 

  358. ## Token API

  359. 

  360. When verifying [Private Webmentions](https://indieweb.org/Private-Webmention#How_to_Receive_Private_Webmentions), you will need to exchange a code for an access token at the token endpoint specified by the source URL.
  361. 

  362. XRay provides an API that will do this in one step. You can provide the source URL and code you got from the webmention, and XRay will discover the token endpoint, and then return you an access token.
  363. 

  364. ```
  365. POST /token
  366. 

  367. source=http://example.com/private-post
  368. &code=1234567812345678
  369. ```
  370. 

  371. The response will be the response from the token endpoint, which will include an `access_token` property, and possibly an `expires_in` property.
  372. 

  373. ```
  374. {
  375.   "access_token": "eyJ0eXAXBlIjoI6Imh0dHB8idGFyZ2V0IjoraW0uZGV2bb-ZO6MV-DIqbUn_3LZs",
  376.   "token_type": "bearer",
  377.   "expires_in": 3600
  378. }
  379. ```
  380. 

  381. If there was a problem fetching the access token, you will get one of the errors below in addition to the HTTP related errors returned by the parse API:
  382. 

  383. * `no_token_endpoint` - Unable to find an HTTP header specifying the token endpoint.
  384. 

  385. 

  386. ## Installation

  387. 

  388. ### From Source

  389. 

  390. ```
  391. # Clone this repository

  392. 

  393. git clone git@github.com:aaronpk/XRay.git
  394. cd XRay
  395. 

  396. # Install dependencies

  397. composer install
  398. ```
  399. 

  400. ### From Zip Archive

  401. 

  402. * Download the latest release from https://github.com/aaronpk/XRay/releases
  403. * Extract to a folder on your web server
  404. 

  405. 

  406. ### Web Server Configuration

  407. 

  408. Configure your web server to point to the `public` folder.
  409. 

  410. Make sure all requests are routed to `index.php`. XRay ships with `.htaccess` files for Apache. For nginx, you'll need a rule like the following in your server config block.
  411. 

  412. ```
  413.   try_files $uri /index.php?$args;
  414. ```
  415.