<!DOCTYPE html> <?php require_once 'config.php'; header("Access-Control-Allow-Origin: *"); // log us in if we are passing an access token if (isset($_GET['t'])) { require_once 'submit/authentication.php'; authentication_by_token($_GET['t']); } // default values for center and zoom $center_lon = 0; $center_lat = 0; $zoom = 0; // have we been passed a survey id? // if so override the zoom and center $survey_key = false; $fb_tags = array(); $twitter_tags = array(); if (isset($_GET['survey']) && strlen($_GET['survey']) < 40 && strpos($_GET['survey'], ' ') === false) { // e.g. 2710f20e-6511-4110-9030-d67033c632a0 $survey_key = $_GET['survey']; $sql = "\n SELECT s.survey_json, s.photo, u.display_name \n FROM submissions as s\n JOIN users as u ON s.user_id = u.id\n WHERE s.survey_key = '{$survey_key}'\n "; $response = $mysqli->query($sql); error_log($mysqli->error); if ($response->num_rows) { $row = $response->fetch_assoc(); $survey = json_decode($row['survey_json']); // set up the location so the popup will be displayed if (isset($survey->geolocation->longitude) && isset($survey->geolocation->latitude)) { $center_lon = $survey->geolocation->longitude; $center_lat = $survey->geolocation->latitude;
<?php require_once 'config.php'; // look to the session then access token for the user_key. if (isset($_SESSION['user_key'])) { $user_key = $_SESSION['user_key']; } elseif (isset($_GET['t'])) { require_once 'submit/authentication.php'; $user_key = authentication_by_token($_GET['t']); } else { $user_key = null; } // If it isn't there leave out all non-public records // If it is there then include the hidden ones for that user. $sql = "\n SELECT\n s.*,\n u.display_name as username,\n u.id as user_id,\n u.key as user_key\n FROM \n submissions as s\n JOIN\n users as u on s.user_id = u.id\n WHERE\n ( s.`public` = 1 AND u.validated = 1 )\n "; // they are logged in so also show their hidden one if ($user_key) { $sql .= " OR ( u.key = '{$user_key}' )"; } $response = $mysqli->query($sql); $features = array(); while ($row = $response->fetch_assoc()) { $submission_id = $row['id']; $survey_key = $row['survey_key']; $survey = json_decode($row['survey_json']); if (!isset($survey->geolocation->longitude) || !isset($survey->geolocation->latitude)) { continue; } // create a point feature $feature = new stdClass(); $features[] = $feature;