} $input['id'] = $db->inserId(); } $response->data = $input; $response->json($response); } elseif ($route->match('skinupdate', null)) { // Prepare and sanitize post input $_POST['updated_at'] = date("Y-m-d H:i:s"); $api->setInputs($_POST, $model->getWhitelist('skins')); $skin = $model->skinFind(array('id' => $api->getInputVal('id'), 'user_id' => $user->id, 'name' => $api->getInputVal('name'))); if (!$skin) { $response->status = 404; $response->message = 'Not found'; $response->json($response); } $model->skinUpdate($api->getInputs(), array('id' => $api->getInputVal('id'))); $response->json($response); } elseif ($route->match('skindelete', null)) { // Prepare and sanitize post input $api->setInputs($_POST); $skin = $model->skinFind(array('id' => $api->getInputVal('id'), 'user_id' => $user->id)); if (!count($skin)) { $response->status = 404; $response->message = 'Not found'; $response->json($response); } if (!$model->skinDelete(array('id' => $api->getInputVal('id'), 'user_id' => $user->id))) { $response->status = 500; $response->message = 'Unable to delete a skin'; $response->json($response); }