<?php
include 'connectdb.php';
# check: code and api_url preset as query parameters
if ($_SERVER["REQUEST_METHOD"] == "GET") {
if (!(empty($_GET["code"]) || empty($_GET["api_url"]))) {
$conn = createConnection();
$secrets = getSecrets($conn);
$access_token = getAccessToken($_GET['code'], $secrets['client_id'], $secrets['client_secret'], $_GET["access_token_url"]);
$sql = "SELECT * FROM shops where api_url = '{$_GET['api_url']}'";
$result = $conn->query($sql);
# if installing first time or updating existing token
if ($result->num_rows > 0) {
$row = $result->fetch_assoc();
$sql = "UPDATE shops SET access_token='{$access_token}' WHERE id= {$row['id']}";
} else {
$sql = "INSERT INTO shops (code, api_url, return_url, access_token)\n VALUES ('{$_GET['code']}', '{$_GET['api_url']}', '{$_GET['return_url']}','{$access_token}')";
}
# insert token into database
if (!$conn->query($sql) === TRUE) {
echo "Error: " . $sql . "<br>" . $conn->error;
}
closeConnection($conn);
# redirect to the return_url
header("Location: {$_GET['return_url']}");
die;
}
}
function getAccessToken($code, $client_id, $client_secret, $url)
{
$curl_post_data = array('code' => $code, 'client_id' => $client_id, 'client_secret' => $client_secret);
$json = curl_post($url, $curl_post_data);
</div>
<input type="submit" value="Add Secret">
</form>
</div>
<div class="clearfix"> </div>
<div class="bs-example" data-example-id="contextual-table" style="border: 1px solid #eee">
<table class="table">
<thead>
<tr>
<th>#</th>
<th>Secret</th>
</tr>
</thead>
<?php
$result = getSecrets($conn, session_id());
$i = 1;
while ($row = $result->fetch_assoc()) {
$secret = htmlentities($row['secret']);
if ($i % 2) {
$active = "info";
} else {
$active = "";
}
echo <<<TABLE
\t\t\t<tbody>
\t\t\t\t<tr class="{$active}">
\t\t\t\t\t<th scope="row">{$i}</th>
\t\t\t\t\t<td>{$secret}</td>
\t\t\t\t</tr>
\t\t\t</tbody>
