function require_valid_api_key() { $user_api_key = $_SESSION['user_api_key']; if (AUTH::is_valid_api_key($user_api_key) == false) { header('location: /202-account/api-key-required.php'); die; } }
$mysql['user_tracking_domain'] = mysql_real_escape_string($_POST['user_tracking_domain']); $user_sql = "\n\t\t\t\tUPDATE\n\t\t\t\t\t`202_users` \n\t\t\t\tSET\n\t\t\t\t\t`user_email`='" . $mysql['user_email'] . "',\n\t\t\t\t\t`user_timezone`='" . $mysql['user_timezone'] . "'\n\t\t\t\tWHERE\n\t\t\t\t\t`user_id`='" . $mysql['user_id'] . "'\n\t\t\t"; $user_result = _mysql_query($user_sql); $user_sql = "\n\t\t\t\tUPDATE\n\t\t\t\t\t`202_users_pref`\n\t\t\t\tSET\n\t\t\t\t\t`user_keyword_searched_or_bidded`='" . $mysql['user_keyword_searched_or_bidded'] . "',\n\t\t\t\t\t`user_tracking_domain`='" . $mysql['user_tracking_domain'] . "'\n\t\t\t\tWHERE\n\t\t\t\t\t`user_id`='" . $mysql['user_id'] . "'\n\t\t\t"; $user_result = _mysql_query($user_sql); $update_profile = true; //set the session's user_timezone $_SESSION['user_timezone'] = $_POST['user_timezone']; } } if ($_POST['change_user_api_key'] == '1') { if ($_POST['token'] != $_SESSION['token']) { $error['token'] = '<div class="error">You must use our forms to submit data.</div'; } if (!preg_match('/\\*/', $_POST['user_api_key'])) { if (!AUTH::is_valid_api_key($_POST['user_api_key'])) { $error['user_api_key'] = '<div class="error">This API Key appears invalid.</div>'; } if (!$error) { $mysql['user_id'] = mysql_real_escape_string($_SESSION['user_id']); $mysql['user_api_key'] = mysql_real_escape_string($_POST['user_api_key']); $user_sql = "\tUPDATE \t`202_users` \n\t\t\t\t\t\t\t\tSET \t\t`user_api_key`='" . $mysql['user_api_key'] . "'\n\t\t\t\t\t\t\t\tWHERE \t`user_id`='" . $mysql['user_id'] . "'"; $user_result = _mysql_query($user_sql); $change_api_key = true; //set the session's user_api_key $_SESSION['user_api_key'] = $_POST['user_api_key']; } } } if ($_POST['change_user_stats202_app_key'] == '1') { if (!preg_match('/\\*/', $_POST['user_stats202_app_key'])) {