$params_json = file_get_contents('php://input');
// check if params sent as payload or http params
if (!empty($params_json)) {
$decoded = json_decode($params_json, 1);
if (!empty($decoded) && is_array($decoded)) {
$_POST = $decoded;
}
if (!empty($_REQUEST) && is_array($_REQUEST) && !empty($_POST) && is_array($_POST)) {
$_REQUEST = array_merge($_REQUEST, $_POST);
} elseif (!empty($_POST)) {
$_REQUEST = $_POST;
}
} else {
$params_json = json_encode($_POST, JSON_NUMERIC_CHECK);
}
$main = Currencies::getMain();
$api_key1 = !empty($_POST['api_key']) ? preg_replace("/[^0-9a-zA-Z]/", "", $_POST['api_key']) : false;
$api_signature1 = !empty($_POST['signature']) ? preg_replace("/[^0-9a-zA-Z]/", "", $_POST['signature']) : false;
$nonce1 = !empty($_POST['nonce']) ? preg_replace("/[^0-9]/", "", $_POST['nonce']) : false;
$CFG->language = !empty($_POST['lang']) ? preg_replace("/[^a-z]/", "", $_POST['lang']) : 'en';
$currency1 = !empty($_REQUEST['currency']) ? preg_replace("/[^a-zA-Z0-9]/", "", $_REQUEST['currency']) : false;
$c_currency1 = !empty($_REQUEST['market']) ? preg_replace("/[^a-zA-Z0-9]/", "", $_REQUEST['market']) : false;
$currency_info = array('id' => false);
$c_currency_info = array('id' => false);
$endpoint = $_REQUEST['endpoint'];
$invalid_signature = false;
$invalid_currency = false;
$invalid_c_currency = false;
// check if API key/signature received
if ($api_key1 && (strlen($api_key1) != 16 || strlen($api_signature1) != 64)) {
$return['errors'][] = array('message' => 'Invalid API key or signature.', 'code' => 'AUTH_INVALID_KEY');
