<?php
/// Copyright (c) 2004-2015, Needlworks / Tatter Network Foundation
/// All rights reserved. Licensed under the GPL.
/// See the GNU General Public License for more details. (/documents/LICENSE, /documents/COPYRIGHT)
$IV = array('POST' => array('confirmativePassword' => array('string', 'mandatory' => false), 'removeAttachments' => array(array('0', '1'), 'dafault' => null)));
require ROOT . '/library/preprocessor.php';
requireStrictRoute();
if (empty($_POST['confirmativePassword']) || !User::confirmPassword(User::getBlogOwner(getBlogId()), $_POST['confirmativePassword'])) {
Respond::ResultPage(1);
}
DataMaintenance::removeAll(Validator::getBool(@$_POST['removeAttachments']));
CacheControl::flushAll();
Respond::ResultPage(0);
function validateAPIKey($blogid, $loginid, $key)
{
$userid = User::getUserIdByEmail($loginid);
if ($userid === false) {
return false;
}
$currentAPIKey = Setting::getUserSettingGlobal('APIKey', null, $userid);
if ($currentAPIKey == null) {
if (!User::confirmPassword($userid, $key)) {
header('HTTP/1.1 403 Forbidden');
exit;
}
} else {
if ($currentAPIKey != $key) {
header('HTTP/1.1 403 Forbidden');
exit;
}
}
return true;
}
