R E D

NAME	SIZE	PERMISSION
ImageController.php	3.52 KB	-rwxr-xr-x
mailController.php	3.02 KB	-rwxr-xr-x
passController.php	2.93 KB	-rwxr-xr-x
statusController.php	3.46 KB	-rwxr-xr-x
userController.php	2.19 KB	-rwxr-xr-x

Code Editor : statusController.php

<?php
try {

require_once("../../server/server.php");
    if ($_SERVER["REQUEST_METHOD"] == "POST") {
        $data = json_decode(file_get_contents("php://input"), true);
        if ($data !== "" && count($data) !== 0) {
            
            if (isset($data["AuthToken"]) && $data["AuthToken"] !== "") {
                $Auth = $data["AuthToken"];
                $id = $_SESSION["lms-ID"];
                $query = $db->prepare("SELECT AuthToken FROM user where ID = '$id'");
                if ($query->execute()) {
                    $query = $query->fetch(PDO::FETCH_ASSOC);
                    if (password_verify($Auth, $query["AuthToken"])) {
                        $attr = $data["attr"];
                        $status = $data["status"];
                        if (!in_array($status, array(200,405))) {
                            http_response_code(405);
                            echo json_encode(array("status" => false, "message" => "Status Invalid!!"));
                        }
                        $query = $db->prepare("SELECT ID,status FROM status where userID = '$id' AND attributes = :attr");
                        $query->bindValue(":attr", $attr,PDO::PARAM_STR);
                        if ($query->execute()) {
                            $row = $query->rowCount();
                            if ($row == 0) {
                                http_response_code(405);
                                echo json_encode(array("status" => false, "message" => "attributes Error!!"));
                                exit;
                            }else {
                            $res = $query->fetch(PDO::FETCH_ASSOC);
                            $ID = $res["ID"];
                            $upd = $db->prepare("UPDATE status set status = '$status' WHERE ID = '$ID'");
                            if ($upd->execute()) {
                                http_response_code(200);
                                echo json_encode(array("status" => false, "message" => "Success"));
                                exit;
                            }else {
                                http_response_code(405);
                                echo json_encode(array("status" => false, "message" => "Server Error!!"));
                                exit;
                            }
                            }
                        }else {
                            http_response_code(405);
                            echo json_encode(array("status" => false, "message" => "Server Error!!"));
                            exit;
                        }
                    } else {
                        http_response_code(405);
                        echo json_encode(array("status" => false, "message" => "AuthToken Invalid!!"));
                        exit;
                    }
                } else {
                    http_response_code(405);
                    echo json_encode(array("status" => false, "message" => "Server Error!!"));
                    exit;
                }
            }
        } else {
            http_response_code(405);
            echo json_encode(array("status" => false, "message" => "Data exist!!"));
            exit;
        }
    } else {
        http_response_code(405);
        echo json_encode(array("status" => false, "message" => "Request method Not accept!!"));
        exit;
    }
} catch (Exception $e) {
    http_response_code(405);
    echo json_encode(array("status" => false, "message" => $e->getMessage()));
    exit;
}

${this.title}

Code Editor : statusController.php