Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $dbHost="localhost";
- $dbUsername="username";
- $dbPassword="password";
- $dbName="db";
- $db = new MYSQL($dbHost,$dbUsername,$dbPassword,$dbName);
- $user=(isset ($_REQUEST['username']) && ($_REQUEST['username']) >= 0) ? $_REQUEST['username'] : NULL;
- $pass= isset($_REQUEST['password']) ? md5($_REQUEST['password']) : NULL;
- $port= isset($_REQUEST['port']) ? $_REQUEST['port'] : NULL;
- $action = isset($_REQUEST['action']) ? $_REQUEST['action'] : NULL;
- if($action == "testWebAPI"){
- if($db->testConnection()){
- echo "Success";
- exit;
- }
- else
- {
- echo "failed";
- }
- }
- switch($action)
- {
- case authenticateUser:
- if($userId = authenticateUser($db, $user , $pass))
- {
- $sql = "slect u.Id, u.username, u.IP, f.providerId, f.requestId, f.status, u.port
- from friends f
- left join users u on
- u.Id = if ( f.providerId = ".$userId." and f.status= ".USER_APPROVED.") or
- f.requestId = ".$userId." ";
- $sqlmessage = "SELECT m.id, m.fromuid, m.touid, m.sentdt, m.read, m.readdt, m.mesaagetext, u.username from messages m n"
- . "left join users u on u.Id = m.fromuid WHERE 'touid' = ".$userId." AND 'read' = 0 LIMIT 0, 30";
- if($result = $db->query($sql))
- {
- while($row = $db->fetchobject($result))
- {
- $status = "offline";
- if(((int)$row->$status) == USER_UNAPPROVED)
- {
- $status = "unApproved";
- }
- else if(((int)$row->authenticateTimeDifference) < TIME_INTERVAL_FOR_USER_STATUS)
- {
- $status="online";
- }
- $out .="<friend username='".$row->username."' status='".$status."' IP='".$row->IP."' userKey = '".$row->Id."' port='".$row->port."'/>";
- }
- if($resultmessage = $db->query($sqlmessage))
- {
- while ($rowmessage = $db->fetchobject($resultmessage))
- {
- $out .="<message from='".$rowmessage->username."' sendt='".$rowmessage->senddt."' text='".$rowmessage->messagetext."' />";
- $sqlendmsg="UPDATE messages set 'read' = 1, 'readdt'= '".DATE("T-m-d H:i")."' WHERE 'messages'.'id' = ".$rowmessage->id.";";
- $db->query($sqlendmsg);
- }
- }
- $out .="<data>";
- }
- }
- break;
- }
- function authenticateUser($db,$user,$pass)
- {
- $sql22 = "select * from users
- where Username = '".$user."' and Password = '".$pass."'
- limit 1";
- if($result22 = $db->query($db,$sql22))
- {
- if($row22 = $db->fetchobject($result22))
- {
- $sql22 = "update users SET authenticateTime = NOW(), IP = '".$_SERVER['REMOTE_ADDR']."' ,port = 15145
- where Id = ".$row22->Id."
- limit 1";
- $db->query($db,$sql22);
- }
- }
- }
- ?>
- <?php
- $con = mysqli_connect("localhost", "username", "password", "db");
- mysqli_select_db($con, "shayea_db1and");
- $con->set_charset("utf8");
- $user = $_POST['username'];
- $pass = $_POST['password'];
- $sqlQ = "select * from users where Username='$user'";
- $result = mysqli_Query($con, $sqlQ);
- $row = mysqli_fetch_array($result);
- if ($row[2] == "") {
- print "no user";
- } else if ($pass != $row[3]) {
- print "Wrong Pass";
- } else {
- print "OK";
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement