use NERDZ\Core\Config;
use NERDZ\Core\Db;
use NERDZ\Core\System;
$user = new User();
if (!NERDZ\Core\Security::refererControl()) {
die(NERDZ\Core\Utils::jsonResponse('error', $user->lang('ERROR') . ': referer'));
}
if (!NERDZ\Core\Security::csrfControl(isset($_POST['tok']) ? $_POST['tok'] : 0, 'edit')) {
die(NERDZ\Core\Utils::jsonResponse('error', $user->lang('ERROR') . ': token'));
}
if (!$user->isLogged()) {
die(NERDZ\Core\Utils::jsonResponse('error', $user->lang('REGISTER')));
}
if (isset($_GET['action']) && $_GET['action'] == 'vars') {
if (isset($_POST['vars']) && is_array($_POST['vars'])) {
$user->setTemplateVariables($_POST['vars']);
} else {
die(NERDZ\Core\Utils::jsonResponse('error', $user->lang('ERROR') . ': JSON'));
}
} else {
$theme = isset($_POST['theme']) && is_string($_POST['theme']) ? trim($_POST['theme']) : '';
$shorts = [];
$templates = System::getAvailableTemplates();
foreach ($templates as $val) {
$shorts[] = $val['number'];
}
if (!in_array($theme, $shorts)) {
die(NERDZ\Core\Utils::jsonResponse('error', $user->lang('ERROR')));
}
$column = (Config\MOBILE_HOST == $_SERVER['HTTP_HOST'] ? 'mobile_' : '') . 'template';
if (Db::NO_ERRNO != Db::query(['UPDATE "profiles" SET "' . $column . '" = :theme WHERE "counter" = :id', [':theme' => $theme, ':id' => $_SESSION['id']]], Db::FETCH_ERRNO)) {