Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $db_servername = "localhost";
- $db_username = "OMMITED";
- $db_password = "OMMITED";
- $db_name = "OMMITED";
- $execute_username = "OMMITED"; // Enter your AddonChat Executive Username Here
- // Grab the Parameters
- $password = trim(filter_input(INPUT_GET, "password"));
- $username = trim(filter_input(INPUT_GET, "username"));
- // Initial Auth Result
- $auth = array(
- 'permit' => false,
- 'ugroup' => 200,
- 'first_name' => '',
- 'last_name' => '',
- 'email' => '',
- 'gender' => 'unspecified',
- 'ssax_uid' => 0
- );
- // Connect to Database
- $conn = new mysqli($db_servername, $db_username, $db_password, $db_name);
- if($conn->connect_error) die;
- // Escape the username/password
- $username = $conn->real_escape_string($username);
- $password = $conn->real_escape_string($password);
- // Execute the Query
- $sql = "SELECT id, firstname, lastname, email, usergroup FROM Users WHERE " .
- "username='$username' AND password='$password' LIMIT 1";
- $db_result = $conn->query($sql);
- if ($result->num_rows > 0) {
- $row = $db_result->fetch_assoc();
- // Ok, we've found the user- let's add them to our auth response
- $auth['permit'] = true;
- $auth['ssax_uid'] = intval($row['id']);
- $auth['first_name'] = $row['firstname'];
- $auth['last_name'] = $row['lastname'];
- $auth['email'] = $row['email'];
- // Translate our usergroup to AddonChat's user privilege level
- switch(intval($row['usergroup'])) {
- case 0:
- $auth['ugroup'] = 300;
- break;
- case 1:
- $auth['ugroup'] = 350;
- break;
- case 2:
- $auth['ugroup'] = 400;
- break;
- default:
- break;
- }
- }
- // The Executive User Account Should Always Be Handled by the Bult-in
- // User Database, and never by SSAX.
- if($username == $execute_username)
- $auth['permit'] = false;
- // Close the MySQL Connection
- $conn->close();
- // Headers
- header("Content-Type: application/json");
- // Output the Result JSON Encoded & Exit
- echo json_encode(array('auth' => $auth));
- exit;
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement