public function showProfileDetails(Request $request) { $response = new stdClass(); $objUserModel = new User(); if ($request->isMethod('post')) { $postData = $request->all(); $userId = ''; if (isset($postData['user_id'])) { $userId = $postData['user_id']; } $apiToken = 0; $authFlag = false; if (isset($postData['api_token'])) { if ($userId != '') { $where = ['rawQuery' => 'id=?', 'bindParams' => [$userId]]; $selectColumn = array('login_token'); $userCredentials = $objUserModel->getUsercredsWhere($where, $selectColumn); if ($userCredentials) { $apiToken = $postData['api_token']; if ($apiToken == $this->API_TOKEN) { $authFlag = true; } else { if ($apiToken == $userCredentials->login_token) { $authFlag = true; } } } } } if ($authFlag) { if ($userId != '') { $where = ['rawQuery' => 'users.id =?', 'bindParams' => [$userId]]; $userDetails = $objUserModel->getUserDetails($where); if ($userDetails) { $response->code = 200; $response->message = "Success"; $response->data = $userDetails; } else { $response->code = 400; $response->message = "No user Details found."; $response->data = null; } } else { $response->code = 400; $response->message = "You need to login to view profile setting."; $response->data = null; } } else { $response->code = 401; $response->message = "Access Denied"; $response->data = null; } } else { $response->code = 401; $response->message = "Invalid request"; $response->data = null; } echo json_encode($response, true); die; }