RESTful resource/url mapping and MVC, featuring Request an Response objects.
PHP Perl Racket
Fetching latest commit…
Cannot retrieve the latest commit at this time.


RestServer is a PHP library/framework for building RESTful webservices and also websites.

It allows you to route Method,URI and MIME-TYPE to specific Resources handlers, access the Requested data and provide a proper Response.

Here it's decribe its documentation, together with the example folder and tests for reference.

This version is based on the namespaces branch of Xavier.


The simplest way is using composer, just declare the restserver dependency in you composer.json:

        "restserver/restserver": "*"

If not using composer, you can use the restserver.phar: just download and require it in your application.

Checkout the api documentation.

The Server

The first step to defining you REST service is to instantiate the server, as follows:

$rest = new Rest\Server

This way the server will grab the requested URI to work with, or you can specify a URI if you are not working with UrlRewrite.

For example, if the resource to load is coming from $_GET["q"]:

$rest = new Rest\Serve($_GET['q']);

This way restserver will treat $_GET['q'] as the requested URI.

Creating resources

This is the main funcionality of this package, is to define the available resources.


Dissecating this, you get a METHOD, a URI and an ACTION. Any method is available, even custom ones. URIs can be any URI and it support variable parameters, as follow:


Will give you a map to the "id" parameter (more on this later).

On action, it can be a Rest\Controller, a Rest\View, a method within any of these or a anonymous function, as such:

$rest->addMap("GET","/uri",function($rest) {
        return $rest;

You can also map specific mime types to be accessible, according to the requested "accepts":


After setting the resources, you must execute the server:

echo $rest->execute();

This will trigger the server to work.

More on resources handling on future topics.

Global utilities

The server have a few utilities to deal with the global server scope.

You can set variables to be acessible at any rest resource as follow:

$key = $rest->getParamter("key");

You can also get all setted parameters with:

$params = $rest->getParameters();

You can set global accepted mime-types:


You can dinamically set/get the requested URI:


The usage is very simple, first you'll need to include either the "phar" or the initial Rest/Server.php class.

include 'restserver.phar'
$api = new Rest\Server();
// more logic to come here.

You can instantiate the Rest\Server to start handling the requests, it will get the URI from the HTTP Request, but you can also provide a custom one for the Rest\Server($url) constructor.

After configuring the server you call the "execute" method so it can chain the request/response cicle.


Most of work is mapping URIs to functions or controllers.

You can map any method (even custom) and URI to a lambda/closure function or to a Controller class (that implements Rest\Controller) or a specific method of a controller.


The URI parameter accepts any regex, and also name parameters (:name or :?name for optional parameter), and an array of accepted mime types.

Controllers and Views

(Also apply to lambda/closure)

All controllers to be mapped must implement Rest\Controller, it implies in implementing a single default method as follow and a public constructor with no arguments(or optional arguments):

    class MyController implements Rest\Controller {
        public function execute($rest) {

Other method that might get mapped into the server must also receive this one parameter.

This method parameter is an instance of the Rest\Server from where you can get the request details, data and response.

The methods can return the rest server, to end the cycle, or another Controller or View to follow the request to.

    class MyController implements Rest\Controller {
        public function execute($rest) {
            return new MyViewOrOtherController($anyDataOrNot); //will foward the request

The same apply to Views, but implements Rest\View.

Default Controllers and Views

The Rest\Server comes with some default Controller and Views for most common use cases.

  • Rest\Controller\BadRequest
  • Rest\Controller\Created
  • Rest\Controller\Forbidden
  • Rest\Controller\InternalServerError
  • Rest\Controller\MethodNotAllowed
  • Rest\Controller\MovedPermanently($newLocation)
  • Rest\Controller\NotAcceptable
  • Rest\Controller\NotAuthorized
  • Rest\Controller\NotFound
  • Rest\Controller\NotModified
  • Rest\Controller\Redirect($newLocation)
  • Rest\View\Generic([$fileToRender,$data])
  • Rest\View\JSon($object)


RestServer support both BASIC and DIGEST http authentication mechanisms. You can access the Authenticator object as follow:

$auth = $rest->getAuthenticator();

It will get the user/password provided on the request. For BASIC auth, you can get it simply:

$user = $auth->getUser();
$pass = $auth->getPassword();

Or for Digest:

    $user = $auth->getUser();
    // your logic to lookup user pass

You can them test or set the authentication status:

    $ok = $auth->isAuthenticated();

If by "execute" time authentication fail, server will respond properly.


To deal with the request, withing a rest action, you can access it as follows:

$req = $rest->getRequest();

The request contains the many thing the user may have sent to and requested from the server. Here are the options:

$req->getGet(); // whole $_GET
$req->getFiles(); // from multipart/form-data POSTs
$req->getFiles($key); // from multipart/form-data POSTs
$req->getInput(); // from PUTs
$req->getETag(); // The 'if-match', good for your caching
$req->getParameter($ket); // from the resource configured URI
$req->getURI(); // the requested URI
$req->getURI($i); // the "part" of the URI (count each "/")
$req->getExtension(); // the extension of the URI
$ok = $req->acceptMime("mime/type"); // If mime is acceptable

And that's what you get.


With the response object, you can set what to return for the user.

$res = $rest->getResponse();

And here are it's methods:

$res->addHeader("Content-Type: application/json");
$res->cleanHeader(); // undo headers
$res->setResponse($content); // body of the response
$res->sendResponse($content); // sends partial response already, better for big ones
$res->cleanResponse($content); // clean setted response texts

The response will be sent to client at the end of the restserver executing cycle.

Controllers and Views

Controllers and views are the default option for action on a request. A controller or view to be used on RestServer must implement the Rest\Controller or Rest\View interface, which require a single public method:

class MyController implements \Rest\Controller {
    public function execute(\Rest\Server $rest) {
        // your logic here
        return $rest;

The execute method (or any other method to be used in restserver) will receive the RestServer object and must return the same restserver, to end the request, or another action(controller or view) to forward the request control to.

class MyController implements \Rest\Controller {
    public function execute(\Rest\Server $rest) {
        $rest->getResponse()->setResponse("Hello, world!");
        return $rest;

    public function other(\Rest\Server $rest) {
        return new MyView();


The package comes with a few controller and a view implementation for generic usage, as follow:

new \Rest\Controller\BadRequest;
new \Rest\Controller\Created;
new \Rest\Controller\Fobidden;
new \Rest\Controller\InternalServerError;
new \Rest\Controller\MethodNotAllowed;
new \Rest\Controller\MovedPermanently($newLocation);
new \Rest\Controller\NotAcceptable;
new \Rest\Controller\NotAuthorized;
new \Rest\Controller\NotFound;
new \Rest\Controller\NotModified;
new \Rest\Controller\Redirect($location);

new \Rest\View\Generic($template_path,$data);
new \Rest\View\JSon($data);

Lot's of these controllers are used automatically, like NotFound, MethodNotAllowed and a few others.

Anonymous functions

The server can also use anonymous functions to deal with the resources, work the same way as the execute method of a generic controller (that's is what happens).

$rest->addMap("GET","/users",function($rest) {
        // your logic
        return $rest; // or return new \Rest\View\JSON($data) for example

E-Tags and Cache

A simple new feature is to deal with e-tags for caching, a common case would be:

$rest->addMap("GET","/user/:uid",function($rest) {
    $id = $rest->getREquest()->getParameter("uid");
    $etag = $rest->getREquest()->getEtag();
    // check if etag is still same data, could be a md5 of user data or something
    if($same) {
        return new \Rest\Controller\NotModified;
    } else {
        return new \Rest\View\JSon($user);

Mime-Type handling

RestServer can route and respond properly for requests of different mime-types.

You can define mimes to accept both globally or by resources, as follows:


In such situation, the first resource would respond only to application/json requests (accept-mime header), the second only to text/html and the rest to anything or text/html.

Full Example

A full example can be found on source-code folder "example", and is very complete on resource usage and heavily commented and tested.

The tests and the example tests also can be used as a resource for information too.

More on REST



Distributed under the Eclipse Public License.