case "getByUser": if ($_SERVER['REQUEST_METHOD'] != 'GET') { header("HTTP/1.1 400 Bad Request"); echo "Please use GET"; } else { $userid = 0; if (isset($cget["userid"]) && ctype_digit($cget["userid"])) { $userid = $cget["userid"]; } else { if (isset($_SESSION["gatekeeper"])) { $userid = $um->getUserFromUsername($_SESSION['gatekeeper'])->getID(); } } if ($userid > 0) { $routes = Walkroute::getRoutesByUser($conn, $userid); Walkroute::outputRoutes($routes, $format); } else { header("HTTP/1.1 400 Bad Request"); } } break; case "edit": if ($_SERVER['REQUEST_METHOD'] == 'POST') { $userid = $um->getUserIdFromCredentials(); if ($userid <= 0) { header("HTTP/1.1 401 Unauthorized"); } else { $wr = new Walkroute($conn, $cpost["id"]); $wr->updateRoute($cpost["route"], $format); } }