<?php require_once "praveen.php"; $app = new praveen(); $keys = array("username", "password"); $app->checkPOST($keys); $username = $app->escapedPost($keys[0]); $password = $app->escapedPost($keys[1]); $sql = "select id from registered_users WHERE( phone='{$username}' or email ='{$username}') and (password='******' )limit 1"; $result = $app->query($sql); $usercount = $result->num_rows; if ($usercount == 1) { $row = $result->fetch_array(); $resp['userid'] = $row['id']; $resp[error] = 0; if (debug) { $resp['status'] = "success"; } } else { $resp[error] = 5; if (debug) { $resp['status'] = "Authentication Failure"; } } echo json_encode($resp);
<?php require_once "praveen.php"; $app = new praveen(); $keys = array("phone", "email"); $app->checkPOST($keys); $phone = $app->escapedPost($keys[0]); $email = $app->escapedPost($keys[0]); if (is_numeric($phone)) { $sql = "select (id) from registered_users where phone='{$phone}' or email='{$email}' limit 1"; $result = $app->query($sql); $userCount = $result->num_rows; if ($userCount == 0) { $password = $app->generateRandomString(8); if ($phone == "") { $sql = "insert into registered_users(email, password) values ('{$email}','{$password}')"; } else { if ($email == "") { $sql = "insert into registered_users(email,password) values ('{$phone}','{$password}')"; } else { $sql = "insert into registered_users(phone, email, password) values ('{$phone}','{$email}','{$password}')"; } } $result = $app->query($sql); $resp[error] = 0; if (debug) { $resp['status'] = "success"; } } else { if (debug) { $resp["status"] = "Already registered";
<?php require_once "praveen.php"; $app = new praveen(); $keys = array("orderid"); $app->checkPOST($keys); $orderid = $app->escapedPost($keys[0]); $sql = "insert into cancel_request (order_id) values ('{$orderid}')"; $app->query($sql); $resp[error] = 0; if (debug) { $resp['status'] = "success"; } echo json_encode($resp);
<?php require_once "praveen.php"; $app = new praveen(); $keys = array("locationid"); $app->checkPOST($keys); $locationid = $app->escapedPost($keys[0]); $sql = "select id,name from available_recipies where location='{$locationid}'"; $result = $app->query($sql); $resp["list"] = array(); while ($row = $result->fetch_array()) { $entry = array($row['id'], $row['name']); $resp["list"][] = $entry; } $resp[error] = 0; if (debug) { $resp['status'] = "success"; } echo json_encode($resp);
<?php require_once "praveen.php"; $app = new praveen(); $keys = array("recipeid", "rating", "userid", "comment"); $app->checkPOST($keys); $recipeid = $app->escapedPost($keys[0]); $rating = $app->escapedPost($keys[1]); $userid = $app->escapedPost($keys[2]); $comment = $app->escapedPost("{$keys['3']}"); $sql = "insert into ratings (recipe_id,rating,user,comment) VALUES ({$recipeid},{$rating},{$userid},'{$comment}')"; $app->query($sql); $resp[error] = 0; if (debug) { $resp['status'] = "success"; } echo json_encode($resp);
<?php require_once "praveen.php"; $keys = array("userId", "orders"); $app = new praveen(); $conn = $app->getConnection(); $app->checkPOST($keys); $userId = $app->escapedPost($keys[0]); $json = $app->escapedPost($keys[1]); $sql = "insert into orders(user) value ({$userId})"; $result = $app->query($sql); $orderId = $conn->insert_id; if ($orders = json_decode($json, true)) { $sql = ""; foreach ($orders as $order) { $sql .= "insert into ordered_items(order_id, item_id, item_count) VALUES ({$orderId},{$order['0']},{$order['1']});"; } $app->multiQuery($sql); $resp[error] = 0; if (debug) { $resp[status] = "success"; } } else { $resp[error] = 6; if (debug) { $resp['status'] = "Json decode error"; $resp['json'] = $json; $resp[line] = __LINE__; } } echo json_encode($resp);
<?php require_once "praveen.php"; $app = new praveen(); $keys = array("recipeid"); $app->checkPOST($keys); $recipeid = $app->escapedPost($keys[0]); $sql = "select comment from ratings where recipe_id={$recipeid}"; $result = $app->query($sql); $resp["list"] = array(); while ($row = $result->fetch_array()) { $entry = array($row['comment']); $resp["list"][] = $entry; } $resp[error] = 0; if (debug) { $resp['status'] = "success"; } echo json_encode($resp);