Untitled

<?php

//DB con file
include 'dbcon.php';

//JSON Ecrypt
function xor_string($string, $key) {
    for($i = 0; $i < strlen($string); $i++)
        $string[$i] = ($string[$i] ^ $key[$i % strlen($key)]);
    return $string;
}

//Check acc exist in DB
function UserValidation ($conn, $user, $pass) {
    $checkuserquery = $conn->query("SELECT * FROM userinfo WHERE `username` = '".$user."' AND `password` = '".$pass."'");
    $checkuservalid = $checkuserquery->num_rows;
    if ($checkuservalid == 1) {
        return true;
    }else{
        return false;
    }
}

//Check active(not expire) acc in DB
function UserExpiryCheck ($conn, $user, $pass) {
    $currenttime = time();
    $userexpiryquery = UserExpiryTime($conn, $user, $pass);
    if ($userexpiryquery > $currenttime || $userexpiryquery == "Unlimited") {
        return true;
    } else {
        return false;
    }
}

//Get user expiry date
function UserExpiryTime ($conn, $user, $pass) {
    $getuserquery = $conn->query("SELECT * FROM userinfo WHERE `username` = '".$user."' AND `password` = '".$pass."'");
    $getuserarray= $getuserquery->fetch_array(MYSQLI_ASSOC);
    $userexpiryquery = $getuserarray['exp_unix'];
    return $userexpiryquery;
}

//Get OpenVPN configuration file
function OpenVPNConfigFileGet ($server, $protocol, $proxy) {
    $directory = getcwd() . "\config\ovpn";
    if ($proxy == "allow"){
        $download = $directory . "\\" . $server . "-" . $protocol . "-Proxy.ovpn";
    } else{
        $download = $directory . "\\" . $server . "-" . $protocol . ".ovpn";
    }
    $client = base64_encode(file_get_contents("$download"));
}

//Deployement section
$action = isset($_GET['action']) != '' ? $_GET['action'] : '';
switch($action) {
  //case "authorize" authorizes the users
    case "authorize":
    $obj = new stdClass();
        $user = $conn->real_escape_string($_GET['user']);
        $pass = $conn->real_escape_string($_GET['pass']);
        $obj->auth = 'deny';
    $obj->expirytime = 'expired';
    $obj->user = 'not_exist'; // if user not exists
        if(UserValidation ($conn, $user, $pass))
        {
      $obj->user = 'exists';
            $obj->expirytime = UserExpiryTime($conn, $user, $pass);
            if (UserExpiryCheck ($conn, $user, $pass))
                $obj->auth = 'allow';
            else {
                $obj->auth = 'deny';
            }
        }
    $encrypted = xor_string(base64_encode(json_encode($obj)), 'Arnu87UHpzWhEcbakpAJZif43jlvOFrQFIByTSFg8djGCLMT4nCIq0xYGid2');
    echo $encrypted;
        break;
  //case "connectopenvpn" get OpenVPN configuration file //not complete
  case "connectopenvpn":
    $user = $conn->real_escape_string($_GET['user']);
    $pass = $conn->real_escape_string($_GET['pass']);
    $server = ($_GET['server']);
    $protocol = ($_GET['protocol']);
    $proxy = (isset($_GET['proxy']) && $_GET['proxy'] == 'allow') ? "allow" : "";
    if(UserExpiryCheck ($conn, $user, $pass))
        {
      OpenVPNConfigFileGet ($server, $protocol, $proxy);
      $encrypted = xor_string(base64_encode($client), 'Arnu87UHpzWhEcbakpAJZif43jlvOFrQFIByTSFg8djGCLMT4nCIq0xYGid2');
      echo $encrypted;
    }
    break;
    default:
        echo "Hello World!";
}
?>