Steven/TVPNBackend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Upload

Browse Source
This commit is contained in:
Steven Tracey
2024-10-28 18:30:03 -04:00
parent e55dc42068
commit 576b1634a6
5 changed files with 45 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
api/auth.php
View File

@@ -29,7 +29,7 @@ if (!is_null($token)) {
$stmt->close();
$mysqli->close();
header('Content-Type: application/json');
echo '{"success":"' . $response['success'] . '", "isAuthenticated":' . $response['success'] . ', "token":"'. $response['token'] .'", "expires":' . $response['expires'] . ', "message":"' . $response['message'] . '"' . '}';
echo '{"success":"' . $response['success'] . '", "isAuthenticated":' . $response['success'] . ', "token":"'. $response['token'] .'", "expires":' . $response['expires'] . ', "message":"' . $response['message'] . '"}';
return;
}
@@ -83,7 +83,8 @@ if ($result->num_rows > 0) {
$stmt->close();
$mysqli->close();
// Return JSON response
header('Content-Type: application/json');
echo '{"success":"' . $response['success'] . '", "isAuthenticated":' . $response['success'] . ', "token":"'. $response['token'] .'", "expires":' . $response['expires'] . ', "message":"' . $response['message'] . '"' . '}';
echo '{"success":"' . $response['success'] . '", "isAuthenticated":' . $response['success'] . ', "token":"'. $response['token'] .'", "expires":' . $response['expires'] . ', "message":"' . $response['message'] . '"}';

34
api/tunnel.php Normal file
View File

@@ -0,0 +1,34 @@
<?php
include_once($_SERVER['DOCUMENT_ROOT'] . '/db_config.php');
$token = get_bearer_token();
if (is_null($token)) {
header('Content-Type: application/json');
http_response_code(412);
echo '{"error":true,"message":"No token provided"}';
return;
}
$token = $mysqli->real_escape_string($token);
$stmt = $mysqli->prepare("SELECT id FROM users WHERE token = ?");
$stmt->bind_param('s', $token);
$stmt->execute();
$result = $stmt->get_result();
$row = $result->fetch_assoc();
if (!is_null($row)) {
$user_id = $row['id'];
$stmt->close();
$stmt = $mysqli->prepare("SELECT * FROM tunnels WHERE user = ?");
$stmt->bind_param('i', $user_id);
} else {
// return No user found
header('Content-Type: application/json');
http_response_code(403);
echo '{"error":true,"message":"Unauthorized"}';
$stmt->close();
$mysqli->close();
return;
}