use IP\Request; use IP\Config; use IP\DbUtils as DB; $request = new Request(); $db = new DB(); $request->setAccessHeader(); if ($request->handleOptions()) { error_log('Option request. Exit...', 0); exit; } if (!$request->isPOST()) { error_log('Only POST method allowed', 0); header('HTTP/1.0 405 Method Not Allowed'); exit; } $input = $request->getJSON(); /* * Simple sanitization */ //$username = filter_input(INPUT_POST, 'username', FILTER_SANITIZE_STRING); //$password = filter_input(INPUT_POST, 'password', FILTER_SANITIZE_STRING); $username = $input->username; $password = $input->password; if (!($username && $password)) { header('HTTP/1.0 400 Bad Request'); exit; } try { $rs = $db->getUser($username); //$rs = ['id'=> 1, // 'password' => password_hash('test123', PASSWORD_DEFAULT),
<?php chdir(dirname(__DIR__)); require_once 'vendor/JWT/JWT.php'; require_once 'lib/Request.php'; require_once 'config/Config.php'; require_once 'lib/DbUtils.php'; use IP\Request; use IP\DbUtils as DB; $db = new DB(); $request = new Request(); error_log($request->getMethod()); $request->setAccessHeader(); if ($request->handleOptions()) { error_log('Option request. Exit...', 0); exit; } if (!$request->validate()) { error_log('Validation failed. Not authorized!!'); exit; } $user = $request->getJSON(); error_log(json_encode($user)); $message = $db->updateProfile($user); $output->message = $message; header('Content-type: application/json'); echo json_encode($output);