<?php header("Access-Control-Allow-Origin: *"); include "databasefunctions.php"; include_once "bintypes.php"; include "user.php"; include "pointObject.php"; if (isset($_POST["userId"]) && isset($_POST["points"]) && isset($_POST["token"])) { if ($_POST["token"] !== $masterToken) { $errorMsg = ["Error" => "No or invalid access token given"]; echo json_encode($errorMsg); return; } else { $id = $_POST["userId"]; $points = $_POST["points"]; $user = makeUserFromRaw(GetUser($id)); $newPoints = new PointObject(); $newPoints->Add($user->Points); $newPoints->AddFromArray($points); $user->Points = $newPoints; $user->Points->RemoveNegative(); echo EditUserPoints($user->UserId, json_encode($user->Points)); } } else { $errorMsg = ["Error" => "Missing required parameters"]; echo json_encode($errorMsg); }