Trongate Framework Documentation

trOnGAtE

Welcome
- Table of Contents
- Welcome To The Revolution
- Trongate's Free Forever Promise
- About These Docs
Getting Started
- A Word About MariaDB And MySQL
- Installing PHP and MySQL
- Let's Get Trongate!
Basics Concepts
- A Few Words About Coding Style
- The Structure of a Trongate Web App
- Introducing Modular HAVC
- The Problem With MVC
- Isn't this the same as HMVC?
- What's Inside A Module?
Understanding Routing
- What Is Routing?
- 404 Error Pages
- How Basic URL Routing Works
- Reading Values From The URL
- Preventing Methods From Being Invoked Via The URL
- Advanced Custom Routing
Controllers
- What Is A Controller?
- The Structure Of A Controller
- Defining A Default Controller
Views
- Understanding View Files
- An Example Of A View File Being Used
- Passing Data Into View Files
- Returning Views Output As A Variable
- Best Practices
The File Asset Manager
- Why We Need A File Asset Manager
- Basic Example - Part 1
- Basic Example - Part 2
- The Module Assets Trigger
- Additional Information
Modules Calling Modules
- Calling Another Module From A Controller
- Calling Another Module From A View
Super Modules & Sub Modules
- Complete Video Tutorial
- What Are Super Modules And Sub Modules?
- Accessing Sub Modules Via The URL
- Loading View Files From Within Sub Modules
- Accessing Sub Modules From Other Modules
Templates
- What Are Templates?
- How To Create Your Own Website Template
- Loading Templates
- Passing Information Into Templates
- Passing View Files Into Templates
- Template Partials
- About The Admin Template
Trongate CSS
- Introducing Trongate CSS
- Features and Benefits
- Trongate CSS Examples
- JavaScript Components
- Trongate CSS Video Tutorial
- Working With YouTube Videos
Helpers Explained
- Helpers Introduction
- The URL Helper
- The Form Helper
- The Form Validation Helper
- The Flashdata Helper
- The File Validation Helper
- The Pagination Helper
- Other Helpful Features
Form Handling
- Trongate's Approach To Form Handling
- Getting Started With Form Building
- Creating A Books Database Table
- Manually Building A Form
- Improving Our Form
- Form Validation (The Pipe Method)
- Form Validation (The Array Method)
- Displaying Form Validation Errors
- A Closer Look At The Post Method
- Repopulating Forms
- Creating Records
- Reading Records
- Table Joins
- Updating Records
- Deleting Records
- Custom Validation Callbacks
- CSRF Protection
Database Interaction
- How Trongate Works With Databases
- Getting Started
- How To Use Debug Mode
- The 'Get' Method
- The 'Get Where' Method
- The 'Get Where Custom' Method
- The 'Get One Where' Method
- The 'Get Many Where' Method
- The 'Count' Method
- The 'Count Where' Method
- The 'Count Rows' Method
- The 'Get Max' Method
- The 'Insert' Method
- The 'Update' Method
- The 'Delete' Method
- The 'Query' Method
- The 'Query Bind' Method
- The 'Insert Batch' Method
- Graphical Query Builder Video Tutorial
Uploading Files
- A General Overview Of File Uploading
- Building An Uploader Form
- Understanding The Upload Process
- Uploading Pictures
Working With Images
- How To Build Picture Uploaders - Video Demo
- Understanding Single Picture Uploaders
- The Submit Upload Method
- A Closer Look At Picture Settings
- The Drag 'n' Drop Multi File Uploader
- Controlling How Multi-File Uploaders Behave
The Module Import Wizard
- What Problem Does This Solve?
- How To Use The Module Import Wizard
Authorization and Authentication
- Section Introduction
- What We Are Trying To Achieve
- How Trongate's Token System Works
- The Three Security Tables
- Generating Tokens (JavaScript Friendly Version)
- Generating Tokens (PHP Friendly Version)
- Fetching User Data From Tokens (JavaScript friendly version)
- Fetching User Data From Tokens (PHP Friendly Version)
- More Useful Features
- Destroying Tokens (JavaScript Friendly Version)
- Destroying Tokens (PHP Friendly Version)
- Understanding HTTP Response Status Codes
The API Explorer
- An Introduction To The Trongate API Explorer
- API Terminology Explained
- Trongate's Built-In Endpoints
- Getting Started With The API Explorer
- Building Your Api Settings File
- Testing Your API Endpoints
- Optional Additional Parameters
- Before Hooks And After Hooks - General Overview
- Before Hooks - Deep Dive
- After Hooks - Deep Dive
- Querying Endpoints
- Understanding API Authorization
- How To Attach Tokens To Requests
- Wide Open Authorization
- Role Based Authorization
- ID Based Authorization
- User ID Segment Authorization
- User Code Segment Authorization
- User Owned Segment Authorization
- Custom API Endpoints
Before You Launch
- Hiding Your Admin Login URL
- Pre Launch Checklist
- Web Hosting Advice

switch to dark mode

Trongate's Built-In Endpoints

The Trongate framework comes with an assortment of built-in API endpoints. The PHP code for all of these endpoints can be found inside a file named 'Api.php', which is inside the engine folder. Trongate's built-in endpoints are:

Get
Get By Post
Find One
Exists
Count
Count By Post
Create
Insert Batch
Update
Destroy
Delete One

All of the methods for the above endpoints are defined inside Api.php, which is inside the engine folder. Whenever you generate a new module, using the Trongate Desktop App, an api.json file is automatically created and added to the 'assets' folder of your new module. This file contains an assortment of API endpoint definitions for your new module.

Top Tip

Don't be alarmed when you see lots of API endpoints suddenly being defined whenever you create a new module, using the Desktop App. The Trongate API Explorer will not work unless your app is in 'dev' mode. Furthermore, inbuilt API endpoints will not work unless authorization rules have been declared. In the case of the Trongate Desktop App, the default endpoints that are declared have conservative authorization rules. In other words, you're (probably!) not going to get hacked!

The best way to see a visual representation of Trongate's built-in endpoints is to generate a module, using the desktop app, then visit your base URL followed by api/explorer/module, where 'module' gets replaced by the name of your target module directory.

Just To Let You Know

For the API Explorer to work, there must be a database table that shares the same name as your target module directory.

The Trongate API Explorer

Key Features

Trongate's built-in API endpoints share the following key features:

They can be universally applied to any database table
They are all respectful of Trongate's token security system
They will all remain in a deactivated state unless authorization rules have been declared

Endpoint Settings

How endpoints are activated and how they behave is declared inside the api.json file that should be created and stored inside the 'assets' folder of your target module. An example of an api.json file that has been generated by the Trongate Desktop App is shown below. What each of the settings does is (hopefully!) self explanatory:

{
  "Get": {
    "url_segments": "api/get/members",
    "request_type": "GET",
    "description": "Fetch rows from table",
    "enableParams": true,
    "authorization":{
      "roles": [
        "admin"
      ]
    }
  },
  "Get By Post": {
    "url_segments": "api/get/members",
    "request_type": "POST",
    "description": "Fetch rows from table using POST request.",
    "enableParams": true,
    "authorization":{
      "roles": [
        "admin"
      ]
    }
  },
  "Find One": {
    "url_segments": "api/get/members/{id}",
    "request_type": "GET",
    "description": "Fetch one row",
    "required_fields": [
      {
        "name": "id",
        "label": "ID"
      }
    ]
  },
  "Exists": {
    "url_segments": "api/exists/members/{id}",
    "request_type": "GET",
    "description": "Check if instance exists",
    "required_fields": [
      {
        "name": "id",
        "label": "ID"
      }
    ]
  },
  "Count": {
    "url_segments": "api/count/members",
    "request_type": "GET",
    "description": "Count number of records",
    "enableParams": true
  },
  "Count By Post": {
    "url_segments": "api/count/members",
    "request_type": "POST",
    "description": "Count number of records using POST request",
    "enableParams": true,
    "authorization":{
      "roles": [
        "admin"
      ]
    }
  },
  "Create": {
    "url_segments": "api/create/members",
    "request_type": "POST",
    "description": "Insert database record",
    "enableParams": true
  },
  "Insert Batch": {
    "url_segments": "api/batch/members",
    "request_type": "POST",
    "description": "Insert multiple records",
    "enableParams": true
  },
  "Update": {
    "url_segments": "api/update/members/{id}",
    "request_type": "PUT",
    "description": "Update a database record",
    "enableParams": true,
    "required_fields": [
      {
        "name": "id",
        "label": "ID"
      }
    ]
  },
  "Destroy": {
    "url_segments": "api/destroy/members",
    "request_type": "DELETE",
    "description": "Delete row or rows",
    "enableParams": true
  },
  "Delete One": {
    "url_segments": "api/delete/members/{id}",
    "request_type": "DELETE",
    "description": "Delete one row",
    "required_fields": [
      {
        "name": "id",
        "label": "ID"
      }
    ]
  }
}

Don't worry if the code above looks confusing. We'll be going into all of this, in detail, in the pages that are coming right up!

HELP & SUPPORT

If you have a question or a comment relating to anything you've see here, please goto the Help Bar.