Coding Skill Builder 💪📚(Full AI Based)

Session will be continued after my boards exam

Check out this link for completely free hosting! 🎉

👉 https://t.me/MultipleFileShareBot?start=679f9ffe786f6

▎Day 9: Securing Your API with API Key Authentication

Welcome to Day 9! Today, we’ll delve into the crucial topic of securing your API through the use of API Keys. This method ensures that only authorized users or applications can access your APIs, thereby safeguarding your services and data.

API keys are widely utilized across various web services to restrict access exclusively to trusted users, enhancing both security and control.

---

▎1. Understanding API Keys

An API Key is a unique identifier that is included in every request to authenticate the requester. It serves not only as a means of verification but also as a tool for monitoring and managing API usage, ensuring that only legitimate users can access specific resources.

---

▎2. Implementing API Key Authentication

In this section, we will set up a straightforward system that checks the API key provided in the request, allowing or denying access to designated API routes based on its validity.

---

▎PHP Code for API Key Authentication (auth_api.php)

1. Store a Predefined API Key: For security reasons, you should store this key in a configuration file or an environment variable rather than hardcoding it directly in your script.

2. Validate Incoming Requests: The following code snippet checks the API key in the header of incoming requests.




---

▎3. Testing Your API with Postman

To ensure your API key authentication works correctly, follow these steps using Postman:

1. URL: http://yourdomain.com/auth_api.php

2. Method: GET

3. Headers:

   • Key: X-API-KEY

   • Value: your_api_key_here (use the predefined API key you set in the script)

4. Expected Success Response:
{
    "status": "success",
    "message": "API Request Successful"
}


5. Response for Incorrect or Missing API Key:
{
    "status": "error",
    "message": "Unauthorized: Invalid API Key"
}


---

▎4. Enhancing Security with Dynamic API Keys

To bolster your API's security, consider implementing dynamic API keys. Here’s a basic outline for managing unique keys:

1. Database Storage: Store API keys in a database along with user information.

2. Unique Key Generation: Generate a distinct key for each user upon registration or login.

3. Key Verification: Validate the provided API key against the database when a user makes a request.

---

▎5. Key Concepts Covered

• API Key Authentication: Validates the key passed in the request header to control access.

• HTTP Headers: Utilizes headers like X-API-KEY to transmit the API key securely.

• Security Considerations: Emphasizes the importance of keeping API keys secure, such as storing them in a database for individual users or sessions.

---

▎Task for Day 9:

1. Implement the auth_api.php script on your server.

2. Test the API key authentication functionality using Postman.

3. Explore options for securely storing API keys in a database and consider generating unique keys for each user.

---

Join us tomorrow as we explore Error Handling and Custom Error Responses in APIs!

▎Day 8: Deleting Data from MySQL (DELETE Request)

Welcome to Day 8! After learning how to retrieve and update user data, today we’ll dive into the process of deleting a user from the database using a DELETE request.

---

▎1. Understanding the DELETE Method

In the world of APIs, different HTTP methods serve distinct purposes:

• GET → Fetch data

• POST → Add new data

• PUT → Update existing data

• DELETE → Remove data

A DELETE request is specifically designed to permanently eliminate a record from the database.

---

▎2. Creating the Delete API (DELETE Method)

Today, we will create an API that allows us to delete a user based on their unique ID.

PHP Code (delete_user.php)




---

▎3. Testing the DELETE API

To test your newly created DELETE API, you can use Postman by following these steps:

1. URL: http://yourdomain.com/delete_user.php

2. Method: DELETE

3. Body (JSON, raw format):

{
    "id": 1
}


4. Expected Success Response:

{
    "status": "success",
    "message": "User deleted successfully!"
}


5. Error Responses:

• If the user ID is not found:

{
    "status": "error",
    "message": "User not found or already deleted."
}


• If no ID is provided:

{
    "status": "error",
    "message": "User ID is required."
}


---

▎4. Key Concepts Introduced

• DELETE Request Handling: Learn how to read JSON input using file_get_contents("php://input").

• SQL DELETE Query: The command DELETE FROM table_name WHERE condition effectively removes records from the database.

• Checking rowCount(): This function helps ensure that a record was actually deleted before sending a success message.

---

▎Task for Day 8:

• Implement the delete_user.php API on your server.

• Test the deletion of various users using Postman.

• Modify the API to support multiple deletions at once (e.g., allowing deletion of multiple user IDs in a single request).

Tomorrow, we’ll explore API Authentication using API Keys! Get ready to enhance your application's security!

Stay tuned for tomorrow's lesson, where we will explore how to delete a user using a DELETE request!

Day 7: Updating Data in MySQL with a PUT Request

Welcome to Day 7! Today, we will delve into the process of updating user data within our database using a PUT request. This functionality is crucial for maintaining accurate user profiles, adjusting product details, or managing any other modifiable data within an API.

---

▎1. Understanding the PUT Method

To refresh your memory, here’s a quick overview of the HTTP methods we’ll be working with:

• GET → Retrieve data

• POST → Create new data

• PUT → Modify existing data

• DELETE → Remove data

The PUT request specifically allows us to update an existing record by sending new values for designated fields.

---

▎2. Creating an Update API (PUT Method)

In this section, we will develop an API that updates a user's name, email, or age based on their unique ID.

PHP Code (Update User API - update_user.php):

▎Day 6: Retrieving Data from MySQL (GET Request)

Now that we can store user data in MySQL, let’s learn how to fetch that data from the database using a GET request.

---

▎1. Fetching All Users from the Database

We’ll create an API endpoint that retrieves all users stored in the database.

PHP Code (Get All Users):



---

▎2. Fetching a Specific User by ID

Next, we’ll modify our API to fetch a user by their unique ID.

PHP Code (Get User by ID):



---

▎3. Testing the GET API

▎1. Get all users:

• URL: http://yourdomain.com/get_users.php

• Expected Response:
[
    {"id":1, "name":"Swastik", "email":"swastik@example.com", "age":25},
    {"id":2, "name":"John", "email":"john@example.com", "age":30}
]

▎2. Get a specific user by ID:

• URL: http://yourdomain.com/get_users.php?id=1

• Expected Response:
{
    "id": 1,
    "name": "Swastik",
    "email": "swastik@example.com",
    "age": 25
}

---

▎4. Key Concepts Introduced

• query(): Executes a SQL query to fetch multiple records.

• prepare() and execute(): Securely fetches data with parameters to prevent SQL injection.

• PDO::FETCH_ASSOC: Fetches data as an associative array, allowing easy access to column values by their names.

---

▎Task for Day 6:

1. Create both get_users.php and get_user_by_id.php.

2. Test fetching all users and a specific user by ID.

3. Modify the API to return an error message if no users exist.

---

▎Looking Ahead

Tomorrow, we’ll implement UPDATE (PUT) requests to modify user data! Get ready to enhance your API further!

Day 5: Working with Databases (MySQL) for Storing Data

Today marks an exciting milestone as we integrate MySQL into our API, enabling us to efficiently store and retrieve user data. We will develop an API that allows for the seamless addition of users to a database and facilitates their retrieval later on.

---

▎1. Setting Up Your MySQL Database

To begin, you will need to establish a MySQL database to hold the user information.

SQL Queries to Create the Database and Table:

CREATE DATABASE api_example;

USE api_example;

CREATE TABLE users (
    id INT AUTO_INCREMENT PRIMARY KEY,
    name VARCHAR(255) NOT NULL,
    email VARCHAR(255) NOT NULL,
    age INT NOT NULL
);


This set of commands creates a database named api_example and a users table, which includes columns for user ID, name, email, and age.

---

▎2. PHP Code to Insert Data into the MySQL Database

Next, we will enhance our API to allow for the addition of new users to the database using a POST request.

PHP Code to Insert User into Database:

Day 4: Handling POST Requests in Your API

Today, we’ll learn to handle POST requests to accept and process client data, used for creating new records.

1. GET vs. POST

•   GET: Sends data via URL (query parameters). Used for fetching data.
•   POST: Sends data in request body. Used for creating/submitting data securely.

2. Creating a POST API Endpoint

Let’s create an API to add a new user via a POST request.
PHP Code:

Day 3: Building Your First API Endpoint

Welcome to Day 3! Today, we’re excited to guide you through the process of creating a fully functional REST API endpoint that will accept requests and return meaningful data.

---

▎1. Understanding API Endpoint Structure

An API endpoint is essentially a URL through which your API can be accessed. For example:
http://yourdomain.com/api/endpoint.php

In this session, we’ll construct an API that processes GET requests and responds with user data.

---

▎2. PHP Code for Your API

Let’s create an API that delivers user information in a structured format.




---

▎3. How to Test Your API

Follow these simple steps to test your newly created API:

1. Save the file as api.php in your server directory.

2. Access the API using your web browser or Postman:

   • To retrieve all users: 
     http://yourdomain.com/api.php

   • To retrieve a specific user: 
     http://yourdomain.com/api.php?user_id=2

---

▎4. Key Concepts Introduced

• Query Parameters: Information sent through the URL (e.g., user_id=2).

• JSON Encoding: Transforming PHP arrays into JSON format using json_encode().

• Condition Handling: Implementing checks for specific parameters in requests.

---

▎Task for Day 3:

1. Implement the API on your local server.

2. Test the functionality with and without the user_id parameter.

3. Enhance the script by adding more fields to the user data (e.g., age, city).

Tomorrow, we’ll take a deeper dive into handling POST requests, expanding our API's capabilities! Happy coding!

Day 2: REST API Basics

1. What is REST?

REST means Representational State Transfer.

It is a way to design applications that communicate over the internet. REST uses simple HTTP methods to send and receive information.

REST APIs do not keep any information about previous requests. This means every time you ask for something, you need to include all the details needed to process your request.

2. REST API Methods:

• GET: Use this to get data from the server (like getting user details).

 
• POST: Use this to send new data to the server (like creating a new user).

 
• PUT: Use this to change existing data on the server (like updating user information).

 
• DELETE: Use this to remove data from the server (like deleting a user).

3. HTTP Status Codes:

• 200 OK: Your request was successful.

 
• 201 Created: A new item was successfully created.

 
• 400 Bad Request: There was something wrong with your request.

 
• 404 Not Found: The item you asked for could not be found.

 
• 500 Internal Server Error: The server had an error while processing your request.

4. Request and Response Structure:

Request: When you make a request, it usually includes:

• Method (GET, POST, etc.)

• URL (the address you are trying to reach)

• Headers (extra information, optional)

• Body (the data you send, for POST/PUT requests)

Response: When the server replies, it usually includes:

• Status Code (like 200 or 404)

• Headers (extra information, optional)

• Body (usually in JSON or XML format)

5. Creating Your First REST API Endpoint:

Make a simple PHP file that sends back some data in JSON format using the GET method.

Example Code:




This code sets the response type to JSON and sends back a message in JSON format.

Task for Day 2:

Create a simple PHP script that returns a JSON response when you access it.

Test your script by opening it in your web browser or using Postman.

Tomorrow, we will learn how to create more advanced and interactive API endpoints!

Day 1: Introduction to PHP and APIs

1. Basics of PHP:

PHP, which stands for Hypertext Preprocessor, is a powerful server-side scripting language designed for creating dynamic websites and web applications. With PHP, code is executed on the server, generating output that is sent to the browser as standard HTML.

Key Syntax in PHP:

• Begin a PHP script with .

• Variables in PHP are prefixed with a dollar sign ($). For instance: $name = "Swastik";

• To display output, you can use echo or print. Example: echo "Hello, World!";

• Ensure each statement ends with a semicolon (;).

Example Code:




---

2. Understanding APIs:

An API, or Application Programming Interface, serves as a bridge that enables different software applications to communicate seamlessly with one another.

Example: A weather application utilizes an API to retrieve data from a weather service, allowing users to access real-time information.

---

3. Types of APIs:

• REST APIs: Utilize standard HTTP methods (GET, POST, PUT, DELETE) for communication, making them widely adopted due to their simplicity and efficiency.

 
• SOAP APIs: Rely on XML for communication. While less common today, they are still used in certain enterprise environments.

• GraphQL APIs: Offer a flexible approach by allowing clients to request precisely the data they need, reducing over-fetching and under-fetching issues.

---

4. Example of an API Workflow:

1. A client (such as a browser or mobile app) sends a request to the server.

2. The server processes this request and returns a response in formats such as JSON or XML.

---

Task for Day 1:

1. Write a simple PHP script that outputs your name.

2. Conduct research and document the differences between REST APIs and SOAP APIs.

Looking Ahead: Tomorrow, we will explore the fundamentals of REST APIs! Get ready for an exciting journey into the world of web development!

Ohkk we'll soon start a 30 day api making series in php

API making series start kru???

🚨 Big Update! 🚨
I’m moving to a new channel: Bot Nations! After Privates Bots was deleted, I’m back with something bigger and better.

🔗 Join now: @BotNations
Let’s grow this community together! 💥

Abe 10-20 toh dedo

Drop reaction

🎉✨ Celebrating Makar Sankranti! ✨🎉

As the sun transitions into the zodiac of Capricorn, we welcome the joyous festival of Makar Sankranti.

🌞 A Time for New Beginnings 🌞 
This festival marks the end of winter and the beginning of longer days, symbolizing hope and renewal.

🪁 Kite Flying Fun 🪁 
Let’s fill the skies with vibrant kites, as families and friends come together to enjoy this exhilarating pastime.

🍬 Sweet Delights 🍬 
Indulge in traditional treats like tilgul and other sweet delicacies that remind us of the sweetness of life and the importance of sharing love and happiness.

❤️ Moments of Togetherness ❤️ 
Makar Sankranti is not just about festivities; it’s a time to strengthen bonds, share laughter, and create memories that will last a lifetime.

Let’s embrace the spirit of harvest, gratitude, and joy as we celebrate this beautiful occasion!

🌾 Wishing everyone a prosperous and joyful Makar Sankranti! 🌾

#MakarSankranti #FestiveVibes #HarvestFestival