function trx_handle() { switch ($_SERVER['REQUEST_METHOD']) { case 'GET': return !empty($_GET['id']) ? showAction() : listAction(); case 'POST': return createAction(); case 'PUT': parse_str(file_get_contents('php://input'), $data); $_POST = $data; return saveAction(); case 'DELETE': return deleteAction(); } return false; }
<?php if (!empty($_POST)) { saveAction($_POST); } /** * Save data * @param array Request data (unfiltered) */ function saveAction($request) { require_once 'config.php'; //connection: $link = mysqli_connect($servidor, $user, $pass, $database) or die("Error " . mysqli_error($link)); $flag = 'false'; $param = $request; $idUrl = mysqli_real_escape_string($link, $param['idUrl']); $dataPost = isset($param['data']) ? $param['data'] : false; $idPage = _checkIdUrl($link, $idUrl); if ($idPage > 0 && is_array($dataPost) && count($dataPost) > 0) { $reg = formarDataToSerial($idPage, $dataPost); $reg['page_id'] = intval($reg['page_id']); $reg['browser_id'] = $reg['browser_id']; $reg['view_port'] = mysqli_real_escape_string($link, $reg['view_port']); $reg['window_browser'] = mysqli_real_escape_string($link, $reg['window_browser']); $reg['screen'] = mysqli_real_escape_string($link, $reg['screen']); $query = "INSERT INTO heatmap (page_id, browser_id, view_port, window_browser, screen, data_serial, created_at) " . "VALUES ('" . $reg['page_id'] . "', '" . $reg['browser_id'] . "','" . $reg['view_port'] . "','" . $reg['window_browser'] . "','" . $reg['screen'] . "', '" . $reg['data_serial'] . "', '" . date('Y-m-d H:i:s') . "')"; $stmt = mysqli_prepare($link, $query); mysqli_stmt_execute($stmt); mysqli_stmt_close($stmt); $flag = 'true';