function OwnerDAO($database, $logger = null)
{
parent::MySQLDAO($database, $logger);
}
function TweetErrorDAO($database, $logger = null)
{
parent::MySQLDAO($database, $logger);
}
<?php
require "../db/MySQLDAO.php";
$config = parse_ini_file('../../../../SwiftCourse2.ini');
$dbhost = trim($config["dbhost"]);
$dbuser = trim($config["dbuser"]);
$dbpassword = trim($config["dbpassword"]);
$dbname = trim($config["dbname"]);
$dao = new MySQLDAO($dbhost, $dbuser, $dbpassword, $dbname);
$dao->openConnection();
$searchWord = null;
if (!empty($_REQUEST["searchWord"])) {
$searchWord = htmlentities($_REQUEST["searchWord"]);
}
$friends = $dao->searchFriends($searchWord);
if (!empty($friends)) {
$returnValue["friends"] = $friends;
} else {
$returnValue["message"] = "Could not find records";
}
$dao->closeConnection();
echo json_encode($returnValue);
<?php
require "db/Conn.php";
require "db/MySQLDAO.php";
$returnValue = array();
if (empty($_POST["first_name"]) || empty($_POST["last_name"]) || empty($_POST["user_id"])) {
$returnValue["message"] = "first name, last name, or user id are empty";
echo json_encode($returnValue);
return;
}
$firstName = htmlentities($_POST["first_name"]);
$lastName = htmlentities($_POST["last_name"]);
$userID = htmlentities($_POST["user_id"]);
$dao = new MySQLDAO(Conn::$dbhost, Conn::$dbuser, Conn::$dbpass, Conn::$dbname);
$dao->openConnection();
$userInfo = $dao->addUserInfo($firstName, $lastName, $userID);
$dao->closeConnection();
$returnValue["message"] = "user info was submitted";
echo json_encode($returnValue);
return;
$returnValue["message"] = "Missing required information";
echo json_encode($returnValue);
return;
}
$userEmail = htmlentities($_REQUEST["userEmail"]);
$userPassword = htmlentities($_REQUEST["userPassword"]);
$userFirstName = htmlentities($_REQUEST["userFirstName"]);
$userLastName = htmlentities($_REQUEST["userLastName"]);
// Generate secure password
$salt = openssl_random_pseudo_bytes(16);
$secured_password = sha1($userPassword . $salt);
$dbhost = trim($config["dbhost"]);
$dbuser = trim($config["dbuser"]);
$dbpassword = trim($config["dbpassword"]);
$dbname = trim($config["dbname"]);
$dao = new MySQLDAO($dbhost, $dbuser, $dbpassword, $dbname);
$dao->openConnection();
// Check if user with provided username is available
$userDetails = $dao->getUserDetails($userEmail);
if (!empty($userDetails)) {
$returnValue["status"] = "400";
$returnValue["message"] = "Please choose a different email address";
echo json_encode($returnValue);
return;
}
// Register new user
$result = $dao->registerUser($userEmail, $userFirstName, $userLastName, $secured_password, $salt);
if ($result) {
$userDetails = $dao->getUserDetails($userEmail);
$returnValue["status"] = "200";
$returnValue["message"] = "Successfully registered new user";
function InstanceDAO($database, $logger = null)
{
parent::MySQLDAO($database, $logger);
}
function LinkDAO($database, $logger = null)
{
parent::MySQLDAO($database, $logger);
}
<?php
require "db/Conn.php";
require "db/MySQLDAO.php";
$returnValue = array();
if (empty($_POST["searchWord"]) || empty($_POST["userId"])) {
$returnValue["message"] = "Missing required information";
echo json_encode($returnValue);
return;
}
$searchWord = htmlentities($_POST["searchWord"]);
$userId = htmlentities($_POST["userId"]);
$dao = new MySQLDAO(Conn::$dbhost, Conn::$dbuser, Conn::$dbpass, Conn::$dbname);
$dao->openConnection();
$friends = $dao->findAllFriends();
$dao->closeConnection();
$returnValue["friends"] = $friends;
echo json_encode($returnValue);
<?php
require "../db/MySQLDAO.php";
$config = parse_ini_file('../../../../SwiftCourse2.ini');
$returnValue = array();
if (empty($_REQUEST["friendToken"])) {
$returnValue["status"] = "400";
$returnValue["message"] = "Missing required information";
echo json_encode($returnValue);
return;
}
$friend_token = htmlentities($_REQUEST["friendToken"]);
$dbhost = trim($config["dbhost"]);
$dbuser = trim($config["dbuser"]);
$dbpassword = trim($config["dbpassword"]);
$dbname = trim($config["dbname"]);
$dao = new MySQLDAO($dbhost, $dbuser, $dbpassword, $dbname);
$dao->openConnection();
$result = $dao->deleteFriendRecord($friend_token);
if ($result > 0) {
$returnValue["status"] = "200";
$returnValue["operation_result"] = $result;
$returnValue["message"] = "Deleted";
echo json_encode($returnValue);
} else {
$returnValue["status"] = "200";
$returnValue["operation_result"] = $result;
$returnValue["message"] = "Could not delete record";
echo json_encode($returnValue);
}
$dao->closeConnection();
function FollowDAO($database, $logger = null)
{
parent::MySQLDAO($database, $logger);
}
<?php
require "../db/MySQLDAO.php";
$config = parse_ini_file('../../../../SwiftCourse2.ini');
$dbhost = trim($config["dbhost"]);
$dbuser = trim($config["dbuser"]);
$dbpassword = trim($config["dbpassword"]);
$dbname = trim($config["dbname"]);
if (!empty($_POST["password_1"]) && !empty($_POST["password_2"]) && !empty($_POST["token"])) {
$password_1 = htmlentities($_POST["password_1"]);
$password_2 = htmlentities($_POST["password_2"]);
$token = htmlentities($_POST["token"]);
if ($password_1 == $password_2) {
$dao = new MySQLDAO($dbhost, $dbuser, $dbpassword, $dbname);
$dao->openConnection();
$user_id = $dao->getUserIdWithPasswordToken($token);
if (!empty($user_id)) {
// Generate secure password
$salt = openssl_random_pseudo_bytes(16);
$secured_password = sha1($password_1 . $salt);
// Update user's passwords
$result = $dao->updateUserPassword($user_id, $secured_password, $salt);
if ($result) {
$dao->deleteUsedPasswordToken($token);
$userMessage = "Succesfully stored you new password";
header("Location:passwordSuccussfullyReset.php?message=" . $userMessage);
return;
} else {
$userMessage = "Could not update password at this time.";
}
} else {
<?php
require "db/Conn.php";
require "db/MySQLDAO.php";
$returnValue = array();
if (empty($_POST["user_name"]) || empty($_POST["password"])) {
$returnValue["message"] = "Username or password are empty";
echo json_encode($returnValue);
return;
}
$userName = htmlentities($_POST["user_name"]);
$password = htmlentities($_POST["password"]);
$dao = new MySQLDAO(Conn::$dbhost, Conn::$dbuser, Conn::$dbpass, Conn::$dbname);
$dao->openConnection();
$clientID = $dao->registerNewUser($userName, $password);
$userID = $dao->getUserID($userName);
$dao->closeConnection();
$returnValue["user"] = $userID;
echo json_encode($returnValue);
<?php
require "db/Conn.php";
require "db/MySQLDAO.php";
$returnValue = array();
if (empty($_POST["searchWord"]) || empty($_POST["userId"])) {
$returnValue["message"] = "Missing required information";
echo json_encode($returnValue);
return;
}
$searchWord = htmlentities($_POST["searchWord"]);
$userId = htmlentities($_POST["userId"]);
$dao = new MySQLDAO(Conn::$dbhost, Conn::$dbuser, Conn::$dbpass, Conn::$dbname);
$dao->openConnection();
$friends = $dao->findFriends($searchWord, $userId);
$dao->closeConnection();
$returnValue["friends"] = $friends;
echo json_encode($returnValue);
require "../db/MySQLDAO.php";
require "../Classes/PasswordReset.php";
$config = parse_ini_file('../../../../SwiftCourse2.ini');
$dbhost = trim($config["dbhost"]);
$dbuser = trim($config["dbuser"]);
$dbpassword = trim($config["dbpassword"]);
$dbname = trim($config["dbname"]);
$returnValue = array();
// Get user email address
if (empty($_POST["userEmail"])) {
$returnValue["message"] = "Missing email address";
echo json_encode($returnValue);
return;
}
$email = htmlentities($_POST["userEmail"]);
$dao = new MySQLDAO($dbhost, $dbuser, $dbpassword, $dbname);
$dao->openConnection();
// Check if email address is found in our database
$userDetails = $dao->getUserDetails($email);
if (empty($userDetails)) {
$returnValue["message"] = "Provided email address is not found in our database";
echo json_encode($returnValue);
return;
}
// Generate a unique string token
$passwordReset = new PasswordReset();
$passwordToken = $passwordReset->generateUniqueToken(16);
// Store unique token in our database
$user_id = $userDetails["user_id"];
$dao->storePasswordToken($user_id, $passwordToken);
// Prepare email message with Subject, Message, From, To...
<?php
require "db/Conn.php";
require "db/MySQLDAO.php";
$returnValue = array();
if (empty($_POST["device_id"]) || empty($_POST["user_id"])) {
$returnValue["message"] = "device id, or user id are empty";
echo json_encode($returnValue);
return;
}
$deviceID = htmlentities($_POST["device_id"]);
$userID = htmlentities($_POST["user_id"]);
$dao = new MySQLDAO(Conn::$dbhost, Conn::$dbuser, Conn::$dbpass, Conn::$dbname);
$dao->openConnection();
$userInfo = $dao->registerNewDevice($deviceID, $userID);
$dao->closeConnection();
$returnValue["message"] = "device was registered";
echo json_encode($returnValue);
return;
<?php
require "../db/MySQLDAO.php";
$config = parse_ini_file('../../../../SwiftCourse2.ini');
$dbhost = trim($config["dbhost"]);
$dbuser = trim($config["dbuser"]);
$dbpassword = trim($config["dbpassword"]);
$dbname = trim($config["dbname"]);
$emailToken = htmlentities($_GET["token"]);
if (empty($emailToken)) {
echo "Missing required parameter";
return;
}
$dao = new MySQLDAO($dbhost, $dbuser, $dbpassword, $dbname);
$dao->openConnection();
$user_id = $dao->getUserIdWithToken($emailToken);
if (empty($user_id)) {
echo "User with this email token is not found";
return;
}
$result = $dao->setEmailConfirmedStatus(1, $user_id);
if ($result) {
$dao->deleteUsedToken($emailToken);
echo "Thank you! Your email is now confirmed!";
}
$dao->closeConnection();
require "../db/MySQLDAO.php";
$config = parse_ini_file('../../../../SwiftCourse2.ini');
$returnValue = array();
if (empty($_REQUEST["userEmail"]) || empty($_REQUEST["userPassword"])) {
$returnValue["status"] = "400";
$returnValue["message"] = "Missing required information";
echo json_encode($returnValue);
return;
}
$userEmail = htmlentities($_REQUEST["userEmail"]);
$userPassword = htmlentities($_REQUEST["userPassword"]);
$dbhost = trim($config["dbhost"]);
$dbuser = trim($config["dbuser"]);
$dbpassword = trim($config["dbpassword"]);
$dbname = trim($config["dbname"]);
$dao = new MySQLDAO($dbhost, $dbuser, $dbpassword, $dbname);
$dao->openConnection();
$userDetails = $dao->getUserDetails($userEmail);
if (empty($userDetails)) {
$returnValue["status"] = "403";
$returnValue["message"] = "User not found";
echo json_encode($returnValue);
return;
}
$userSecuredPassword = $userDetails["user_password"];
$userSalt = $userDetails["salt"];
if ($userSecuredPassword === sha1($userPassword . $userSalt)) {
$returnValue["status"] = "200";
$returnValue["userFirstName"] = $userDetails["first_name"];
$returnValue["userLastName"] = $userDetails["last_name"];
$returnValue["userEmail"] = $userDetails["email"];
