# API REST BICIMAD

## Esta API cuenta con los siguientes endpoints:

### Get Count of Unique Dates:
- GET /api/v1.0/count/dates
- Devuelve el número de fechas únicas

### Get Ids of Base Stations Origin:
- GET /api/v1.0/base_stations/origin
- Devuelve las idunplug_station

### Get Ids of Base Stations Destination:
- GET /api/v1.0/base_stations/destination
- Devuelve las idplug_station

### Get All Moves From One Day:
- GET /api/v1.0/date/day
- Devuelve todas las filas con Fecha = day
- day debe ser una fecha con guiones, p.e: 09-03-2023


### Filter By All:
- GET /api/v1.0/filter
- Devuelve las filas filtrando por Fecha, Origen, Destino, Min Time Travel, y Max Time Travel
- Los valores de los filtros se pasan por query_params. Por ejemplo:    /api/v1.0/filter?date=31-05-2019&origin=66
- Es totalmente flexible, es decir, funciona con cualquier combinación de filtros.
- Si los filtros no son lo suficientemente estrechos y la información a devolver es demasiado pesada, salta una alerta.

### Register User:
- POST /api/v1.0/newusers
- Registra un nuevo usuario con un nombre de usuario y una contraseña
- El username y la password se pasan por query_params

### Post:
- POST /api/v1.0/create
- Añade una nueva fila a la base de datos
- Se deben especificar el valor de todas las columnas menos el fichero
- Se debe mandar también un username y una password para verificar que el usuario está registrado
- Tanto los valores de la nueva fila como el username y el password se mandan por query_params
- El usuario debe estar registrado previamente para completar esta acción

### Update:
- PUT /api/v1.0/update
- Actualiza el campo travel_time de una fila.
- Se debe especificar el valor de todos los campos de la fila a modificar excepto el del fichero y el del travel_time
- Se debe mandar también un username y una password para verificar que el usuario está registrado
- Tanto el nuevo travel_time como los valores de la fila a modificar como el username y el password se mandan por query_params
- El usuario debe estar registrado previamente para completar esta acción



In [1]:
import mysql.connector
import pandas as pd
from mysql.connector import Error
import pymysql
from flask_httpauth import HTTPBasicAuth

In [2]:
connection = mysql.connector.connect(host='localhost', 
                                     database='ssdd',
                                     user='root',
                                     password='icai2019')

cursor = connection.cursor()
auth = HTTPBasicAuth()

In [None]:
#!flask/bin/python
from flask import Flask, jsonify, request
import datetime
import json

app = Flask(__name__)


## GET COUNT OF UNIQUE DATES:
@app.route('/api/v1.0/count/dates', methods=['GET'])
def count_dates():
	#http://127.0.0.1:6878/api/v1.0/date
    data = ""
    if request.method == 'GET':
        df = pd.read_sql_query('SELECT COUNT(distinct Fecha) as dates FROM ssdd.bicimad', connection)
        data = df.to_dict()['dates'][0]        
    return str(data)


## GET IDS OF BASE_SATIONS ORIGIN
@app.route('/api/v1.0/base_stations/origin', methods=['GET'])
def get_base_stations_origin():
	#http://127.0.0.1:6878/api/v1.0/date
    data = {}
    if request.method == 'GET':
        df = pd.read_sql_query('SELECT distinct idunplug_station FROM ssdd.bicimad', connection)
        data_list = list(df.to_dict()['idunplug_station'].values())
        data = {'idunplug_station':data_list}
    return data


## GET IDS OF BASE_SATIONS DESTINATION:
@app.route('/api/v1.0/base_stations/destination', methods=['GET'])
def get_base_stations_destination():
	#http://127.0.0.1:6878/api/v1.0/date
    data = {}
    if request.method == 'GET':
        df = pd.read_sql_query('SELECT distinct idplug_station FROM ssdd.bicimad', connection)
        data_list = list(df.to_dict()['idplug_station'].values())
        data = {'idplug_station':data_list}
    return data



## GET ALL MOVES FROM ONE DAY:
@app.route('/api/v1.0/date/<day>', methods=['GET'])
def get_by_date(day):
	#http://127.0.0.1:6878/api/v1.0/date
    data = {}
    day = day.replace("-","/")
    if request.method == 'GET':
        query = "SELECT * FROM ssdd.bicimad where Fecha='"+day+"'"
        df = pd.read_sql_query(query, connection)
        data = {'movements':df.to_dict(orient='records')}
    return data


## FILTER BY ALL:

max_response_size = 250000
@app.route('/api/v1.0/filter', methods=['GET'])
def filter_by_all():
    data = {}
    day = check_str_value(request.args.get('date'))
    origin = check_str_value(request.args.get('origin'))
    destination = check_str_value(request.args.get('destination'))
    min_time = check_int_value(request.args.get('min_time'))
    max_time = check_int_value(request.args.get('max_time'))
    first_filter = True
    if request.method == 'GET':
        query = "SELECT * FROM ssdd.bicimad "
        if day!="" or origin!="" or destination!="" or min_time!=0 or max_time!=0:
            if len(day)!=0:
                day = day.replace("-","/")
                query = query + add_string_filter("Fecha",day,first_filter)
                first_filter = False
            if origin!="":
                query = query + add_string_filter("idunplug_station", origin, first_filter)
                first_filter = False
            if destination!="":
                query = query + add_string_filter("idplug_station", destination, first_filter)
                first_filter = False
            if min_time!=0:
                query = query + add_min_time_filter(min_time, first_filter)
                first_filter = False
            if max_time!=0:
                query = query + add_max_time_filter(max_time, first_filter)
                first_filter = False
        print(query)
        df = pd.read_sql_query(query, connection)
        data = {'movements':df.to_dict(orient='records')}
        if len(data['movements'])>max_response_size:
            data = {'Error': "Too much data. Try narrowing the filters."}
        
    return data



## CREATE USER:

@app.route('/api/v1.0/newusers', methods = ['POST'])
def new_user():
    if request.method == 'POST':
        with open('users.pass', 'r') as file:
            data = file.readlines()
            users = {}
            for line in data:
                if line!="":
                    print("LINE: "+line)
                    user = line.split(":")[0]
                    password = line.split(":")[1]
                    users[user] = password
        username = request.args.get('username')
        password = request.args.get('password')
        if username is None or password is None:
            abort(400)
        if username in users:
            return jsonify({"answer":"User already exists"})
        with open('users.pass','w') as file:
            for k,v in users.items():
                file.write(k+":"+v)
            file.write(username+':'+password+"\n")
        return jsonify({"answer":"New user registered"})

@auth.verify_password
def verify_password(username, password):
    with open('users.pass', 'r') as file:
        data = file.readlines()
        users = dict([i.split(':') for i in data])
    if username in users and password==users[username][:-1]:
        return True
    return False

## POST

@app.route('/api/v1.0/create', methods=['POST'])
@auth.login_required
def add_new_row():
    day = request.args.get('date')
    day = day.replace("-","/")
    age_range = request.args.get('age_range')
    user_type = request.args.get('user_type')
    idunplug_station = request.args.get('idunplug_station')
    idplug_station = request.args.get('idplug_station')
    idunplug_base = request.args.get('idunplug_base')
    idplug_base = request.args.get('idplug_base')
    travel_time = request.args.get('travel_time')
    fichero = "000000"
    values = "('"+day+"', "+age_range+", "+user_type+", "+idunplug_station+", "+idplug_station+", "+idunplug_base+", "+idplug_base+", "+travel_time+", "+fichero+")"
    query = "INSERT INTO ssdd.bicimad VALUES "+values
    print(query)
    
    cursor.execute(query)
    connection.commit()
    
    
    return "Row added: "+query
    


@app.route('/api/v1.0/update', methods=['PUT'])
@auth.login_required
def update_row():
    day = request.args.get('date')
    day = day.replace("-","/")
    age_range = request.args.get('age_range')
    user_type = request.args.get('user_type')
    idunplug_station = request.args.get('idunplug_station')
    idplug_station = request.args.get('idplug_station')
    idunplug_base = request.args.get('idunplug_base')
    idplug_base = request.args.get('idplug_base')
    travel_time = request.args.get('travel_time')
    
    query = "UPDATE ssdd.bicimad SET travel_time=%s WHERE Fecha=%s AND ageRange=%s AND user_type=%s AND idunplug_station=%s AND idplug_station=%s AND idunplug_base=%s AND idplug_base=%s"
    values = (int(travel_time), day, int(age_range), int(user_type), int(idunplug_station), int(idplug_station), int(idunplug_base), int(idplug_base))
    
    cursor.execute(query, values)
    connection.commit()
    
    return "Row Updated: "+query
    
    
def add_string_filter(param: str, value: str, first_param: bool):
    if first_param:
        return "where "+param+"='"+value+"'"
    else:
        return "AND " +param+"='"+value+"'"
    
def add_min_time_filter(min_time: int, first_param: bool):
    if first_param:
        return "where travel_time>"+str(min_time)
    else:
        return " AND travel_time>"+str(min_time)
        
def add_max_time_filter(max_time: int, first_param: bool):
    if first_param:
        return "where travel_time<"+str(max_time)
    else:
        return " AND travel_time<"+str(max_time)  
    
def check_str_value(value):
    if value==None:
        value = ""
    return value

def check_int_value(value):
    if value==None:
        value = 0
    return int(value)

if __name__ == '__main__':
    #app.run(debug=True,port=6878)
    app.run(port=6878)

 * Serving Flask app '__main__'
 * Debug mode: off


 * Running on http://127.0.0.1:6878
Press CTRL+C to quit
127.0.0.1 - - [09/Mar/2023 22:53:15] "GET /api/count/dates HTTP/1.1" 404 -
  df = pd.read_sql_query('SELECT COUNT(distinct Fecha) as dates FROM ssdd.bicimad', connection)
127.0.0.1 - - [09/Mar/2023 22:53:25] "GET /api/v1.0/count/dates HTTP/1.1" 200 -
  df = pd.read_sql_query(query, connection)
127.0.0.1 - - [09/Mar/2023 22:53:48] "GET /api/v1.0/date/31-05-2019 HTTP/1.1" 200 -
