} else { $token = $headers['AUTHORIZATION']; if (stripos($token, 'Bearer') !== 0) { throw new Exception("invalid Authorization header", 400); } else { $token = substr($token, 7); } } } require_once '../oauth/oauth_class.php'; $auth = new oauth_server(); try { $cur_user_id = $auth::validate_token($token); return $cur_user_id; } catch (Exception $e) { throw new Exception($e->getMessage(), $e->getCode()); } } } if (!array_key_exists('HTTP_ORIGIN', $_SERVER)) { $_SERVER['HTTP_ORIGIN'] = $_SERVER['SERVER_NAME']; } try { $api_call = new api($_REQUEST['request'], $_SERVER['HTTP_ORIGIN']); echo $api_call->process(); } catch (Exception $e) { $errMsg = $e->getMessage(); $status = $e->getCode(); $data = array("status" => "error", "message" => $errMsg, "data" => null); $api_call->response($data, $status); }
| | | - Redistributions in binary form must reproduce the above copyright | | notice, this list of conditions and the following disclaimer in the | | documentation and/or other materials provided with the distribution. | | | | - Neither the name of Kreotek LLC nor the names of its contributore may | | be used to endorse or promote products derived from this software | | without specific prior written permission. | | | | THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS | | "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT | | LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A | | PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT | | OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | | SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT | | LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, | | DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY | | THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT | | (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE | | OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | | | +-------------------------------------------------------------------------+ */ require "../../include/session.php"; require "include/apiclass.php"; if (!isset($_POST["request"])) { $error = new appError(700, "passed post parameter 'request' missing", "malformed api request", true, true, true, "json"); } $api = new api($db, $_POST["request"], "json"); $api->process();