LIMS-933: Attach auth header to shipping service requests

api/config_sample.php

@@ -248,7 +248,10 @@
     # Shipping service details
     $use_shipping_service = null;
     $use_shipping_service_incoming_shipments = null;
-    $shipping_service_url = null;
+    $shipping_service_api_url = null;
+    $shipping_service_api_user = null;
+    $shipping_service_api_password = null;
+    $shipping_service_app_url = null;
     $shipping_service_links_in_emails = null;
 
 

api/src/Page/Shipment.php

@@ -927,10 +927,10 @@ function _dispatch_dewar_in_shipping_service($dispatch_info, $dewar)
         global $facility_country;
         global $facility_phone;
         global $facility_contact;
-        global $shipping_service_url;
+        global $shipping_service_api_url;
         global $facility_email;
-        if (!isset($shipping_service_url)) {
-            throw new Exception("Could not send request to shipping service: shipping_service_url not set");
+        if (!isset($shipping_service_api_url)) {
+            throw new Exception("Could not send request to shipping service: shipping_service_api_url not set");
         }
 
         # Create shipment

api/src/Shipment/ShippingService.php

@@ -9,29 +9,53 @@
 class ShippingService
 {
     private $shipping_api_url;
-    private $headers;
+    private $shipping_app_url;
     public const JOURNEY_TO_FACILITY = "TO_FACILITY";
     public const JOURNEY_FROM_FACILITY = "FROM_FACILITY";
 
-    function __construct()
+    function _build_headers()
     {
-        global $shipping_service_url;
-        $this->shipping_api_url = $shipping_service_url;
-        $this->headers = array(
+        global $cookie_key;
+        global $shipping_service_api_user;
+        global $shipping_service_api_password;
+
+        $headers = array(
             'Accept: application/json',
             'Content-Type: application/json',
         );
+
+        if (isset($_COOKIE[$cookie_key])) {
+            array_push($headers, "Authorization: Bearer {$_COOKIE[$cookie_key]}");
+            return $headers;
+        }
+
+        if (isset($shipping_service_api_user) && isset($shipping_service_api_password)) {
+            $basic_auth = base64_encode($shipping_service_api_user . ":" . $shipping_service_api_password);
+            array_push($headers, "Authorization: Basic {$basic_auth}");
+            return $headers;
+        }
+
+        throw new \Exception("Shipping service auth error: no cookie found and basic auth credentials unset");
+    }
+
+    function __construct()
+    {
+        global $shipping_service_api_url;
+        global $shipping_service_app_url;
+        $this->shipping_api_url = $shipping_service_api_url;
+        $this->shipping_app_url = $shipping_service_app_url;
     }
 
 
     function _send_request($url, $type, $data, $expected_status_code)
     {
         $ch = curl_init($url);
+        $base_headers = $this->_build_headers();
         curl_setopt_array(
             $ch,
             array(
                 CURLOPT_RETURNTRANSFER => TRUE,
-                CURLOPT_HTTPHEADER => $this->headers,
+                CURLOPT_HTTPHEADER => $base_headers,
                 CURLOPT_TIMEOUT => 5
             )
         );
@@ -52,7 +76,7 @@ function _send_request($url, $type, $data, $expected_status_code)
                     $ch,
                     array(
                         CURLOPT_CUSTOMREQUEST => "PUT",
-                        CURLOPT_HTTPHEADER => array_merge($this->headers, array('Content-Length: ' . strlen(json_encode($data)))),
+                        CURLOPT_HTTPHEADER => array_merge($base_headers, array('Content-Length: ' . strlen(json_encode($data)))),
                         CURLOPT_POSTFIELDS => json_encode($data),
                     )
                 );
@@ -125,6 +149,6 @@ function dispatch_shipment($shipment_id, $pickup_requested)
 
     function get_awb_pdf_url($shipment_id)
     {
-        return $this->shipping_api_url . '/shipments/' . $shipment_id . '/awb/pdf';
+        return $this->shipping_app_url . '/shipments/' . $shipment_id . '/awb';
     }
 }