* This is update address API for mobile * * http://eventjoiner.io/client/mobile/v1.0/user/updateaddress.php * * POST : access_token address */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "POST") { // image, access_token, address $ret = array(); $access_token = $_POST["access_token"]; $address = $_POST["address"]; if (Validation::includeBlank($access_token, $address)) { http_response_code(400); HandleResponse::badRequest("Parameters are blank"); } else { if (!Validation::isValidAddress($address)) { HandleResponse::badRequest("Invalid user address"); } else { $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection(); mysqli_query($conn, "set autocommit = 0"); mysqli_query($conn, "begin"); $user_id = getUserIdFromToken($conn, $access_token); if ($user_id == null) { $ret = HandleResponse::badRequestReturn("Invalid Accesstoken");
* This is to update postalcode API for mobile * * http://eventjoiner.io/client/mobile/v1.0/updatepostalcode.php * * POST : access_token postalcode */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "POST") { // access_token, occupation $ret = array(); $access_token = $_POST["access_token"]; $postalcode = $_POST["postalcode"]; if (Validation::includeBlank($access_token, $postalcode)) { HandleResponse::badRequest("Parameters are blank"); } else { if (!Validation::isValidPostalcode($postalcode)) { HandleResponse::badRequest("Invalid user postalcode"); } else { $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection(); mysqli_query($conn, "set autocommit = 0"); mysqli_query($conn, "begin"); $user_id = getUserIdFromToken($conn, $access_token); if ($user_id == null) { $ret = HandleResponse::badRequestReturn("Invalid Accesstoken"); } else {
* This is update last name API for mobile * * http://eventjoiner.io/client/mobile/v1.0/updatelastname.php * * POST : access_token lastname */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "POST") { // access_token, lastname $ret = array(); $access_token = $_POST["access_token"]; $last_name = $_POST["lastname"]; if (Validation::includeBlank($access_token, $last_name)) { HandleResponse::badRequest("Parameters are blank"); } else { if (!Validation::isValidUserName($last_name)) { HandleResponse::badRequest("Invalid user last name"); } else { $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection(); mysqli_query($conn, "set autocommit = 0"); mysqli_query($conn, "begin"); $user_id = getUserIdFromToken($conn, $access_token); if ($user_id == null) { $ret = HandleResponse::badRequestReturn("Invalid user last name"); } else {
* This is to save image from user post * * http://eventjoiner.io/client/mobile/v1.0/user/updateimage.php * * POST : access_token image (form/multipart) */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/image.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "POST") { // image, access_token $ret = array(); $access_token = $_POST["access_token"]; if (Validation::includeBlank($access_token)) { HandleResponse::badRequest("Parameters are blank"); } else { $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection(); mysqli_query($conn, "set autocommit = 0"); mysqli_query($conn, "begin"); $user_id = getUserIdFromToken($conn, $access_token); if ($user_id == null) { $ret = HandleResponse::badRequestReturn("Invalid Accesstoken"); } else { // Limitation 1MB if (!isset($_FILES['profile']['error']) || is_array($_FILES['profile']['error'])) { $ret = HandleResponse::badRequestReturn("Failed to upload iamge");
* @copyright 2015 Eventjoiner * * This is to show user image * * http://eventjoiner.io/client/mobile/v1.0/user/image.php?key=xxxxx * * GET : key : key is user UUID(not secure user id) */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/image.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "GET") { $uuid = $_GET['key']; if (Validation::includeBlank($uuid)) { HandleResponse::badRequest("Parameters are blank"); } else { // Retrieve image data and analysis and show $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection(); mysqli_query($conn, "set autocommit = 0"); mysqli_query($conn, "begin"); $image = getUserImage($conn, $uuid); mysqli_query($conn, "commit"); if ($image != null && ImageUtil::isSupport($image)) { header("Content-Type: " . ImageUtil::contentType($image)); echo $image; } else {
* * This is to sign out(invalidate accesstoken) from device * * http://eventjoiner.io/client/mobile/v1.0/user/signout.php * * POST : deviceid(iOS, Android) */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "POST") { // device $ret = array(); $deviceid = $_POST["device"]; if (Validation::includeBlank($deviceid)) { HandleResponse::badRequest("Parameters are blank"); } else { $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection(); mysqli_query($conn, "set autocommit = 0"); mysqli_query($conn, "begin"); $ret = invalidToken($conn, $deviceid); mysqli_query($conn, "commit"); print json_encode($ret); } catch (Exception $e) { mysqli_query($conn, "rollback"); HandleResponse::badRequest($e->getMessage()); }
* * POST : email, password, deviceid(iOS, Android) */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "POST") { // TODO : Request Validation $ret = array(); // email, password, device_id (required) $email = $_POST["email"]; $password = $_POST["password"]; $deviceid = $_POST["device"]; // Validation if (Validation::includeBlank($email, $password, $deviceid)) { HandleResponse::badRequest("Parameters are blank"); } else { if (!Validation::isValidEmail($email)) { HandleResponse::badRequest("Email is invalid"); } else { $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection(); mysqli_query($conn, "set autocommit = 0"); mysqli_query($conn, "begin"); $user_id = matchUser($conn, $email, $password); if ($user_id == -1) { $ret = HandleResponse::badRequestReturn("Email or Password is wrong"); } else {
* This is update occupation API for mobile * * http://eventjoiner.io/client/mobile/v1.0/updateoccupation.php * * POST : access_token occupation */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "POST") { // access_token, occupation $ret = array(); $access_token = $_POST["access_token"]; $occupation = $_POST["occupation"]; if (Validation::includeBlank($access_token, $occupation)) { HandleResponse::badRequest("Parameters are blank"); } else { if (!Validation::isValidOccupation($occupation)) { HandleResponse::badRequest("Invalid user occupation"); } else { $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection(); mysqli_query($conn, "set autocommit = 0"); mysqli_query($conn, "begin"); $user_id = getUserIdFromToken($conn, $access_token); if ($user_id == null) { $ret = HandleResponse::badRequestReturn("Invalid user occupation"); } else {
* * http://eventjoiner.io/client/mobile/v1.0/user/updatepassword.php * * POST : access_token oldpass, newpass */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "POST") { // image, access_token, oldpass, newpass $ret = array(); $access_token = $_POST["access_token"]; $oldpass = $_POST["oldpass"]; $newpass = $_POST["newpass"]; if (Validation::includeBlank($access_token, $oldpass, $newpass)) { HandleResponse::badRequest("Parameters are blank"); } else { if (Validation::isMatchPassword($oldpass, $newpass)) { HandleResponse::badRequest("Old password and new password are same"); } else { if (!Validation::isValidPassword($newpass)) { HandleResponse::badRequest("Invalid user firstname"); } else { $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection(); mysqli_query($conn, "set autocommit = 0"); mysqli_query($conn, "begin"); $user_id = getUserIdFromToken($conn, $access_token);
* POST : email, password, firstname, lastname, birthday(YYYY-mm-dd) */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "POST") { // TODO : Request Validation by UA $ret = array(); // email, password, firstname, lastname, birthday (required) $email = $_POST["email"]; $password = $_POST["password"]; $firstname = $_POST["firstname"]; $lastname = $_POST["lastname"]; $birthday = $_POST["birthday"]; if (Validation::includeBlank($email, $password, $firstname, $lastname, $birthday)) { HandleResponse::badRequest("Parameters are blank"); } else { if (!Validation::isValidEmail($email)) { HandleResponse::badRequest("Email is invalid"); } else { if (!Validation::isValidPassword($password)) { HandleResponse::badRequest("Password should be over 6!"); } else { if (!Validation::isValidTime($birthday)) { HandleResponse::badRequest("Birthday style is wrong!"); } else { $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection();
* This is update phone API for mobile * * http://eventjoiner.io/client/mobile/v1.0/updatephonenum.php * * POST : access_tokenm phone_number */ include_once "../../common/validation.php"; include_once "../../common/dbconfig.php"; include_once "../../common/database.php"; include_once "../../common/handleresponse.php"; if ($_SERVER["REQUEST_METHOD"] == "POST") { // image, access_token, phone number $ret = array(); $access_token = $_POST["access_token"]; $phone_number = $_POST["phone_number"]; if (Validation::includeBlank($access_token, $phone_number)) { HandleResponse::badRequest("Parameters are blank"); } else { if (!Validation::isValidPhonenumber($phone_number)) { HandleResponse::badRequest("Invalid phone number"); } else { $conn = null; try { $db = new DBConnection(); $conn = $db->getConnection(); mysqli_query($conn, "set autocommit = 0"); mysqli_query($conn, "begin"); $user_id = getUserIdFromToken($conn, $access_token); if ($user_id == null) { $ret = HandleResponse::badRequestReturn("Invalid Accesstoken"); } else {