<?php $servername = "localhost";$username = "root";$password = "";$da

1. <?php
2.  
3. $servername = "localhost";
4. $username = "root";
5. $password = "";
6. $database = "demo";
7.  
8.  
9. //creating a new connection object using mysqli
10. $conn = new mysqli($servername, $username, $password, $database);
11.  
12. //if there is some error connecting to the database
13. //with die we will stop the further execution by displaying a message causing the error
14. if ($conn->connect_error) {
15. die("Connection failed: " . $conn->connect_error);
16.  
17. $response = array();
18.  
19. if(isset($_GET['apicall'])){
20.  
21. switch($_GET['apicall']){
22.  
23.  
24. case 'login':
25.  
26. if(isTheseParametersAvailable(array('username', 'password'))){
27.  
28. $username = $_POST['username'];
29. $password = md5($_POST['password']);
30.  
31. $stmt = $conn->prepare("SELECT id, username FROM users WHERE username = ? AND password = ?");
32. $stmt->bind_param("ss",$username, $password);
33.  
34. $stmt->execute();
35.  
36. $stmt->store_result();
37.  
38. if($stmt->num_rows > 0){
39.  
40. $stmt->bind_result($id, $username);
41. $stmt->fetch();
42.  
43. $user = array(
44. 'id'=>$id,
45. 'username'=>$username
46. );
47.  
48. $response['error'] = false;
49. $response['message'] = 'Login successfull';
50. $response['user'] = $user;
51. }else{
52. $response['error'] = false;
53. $response['message'] = 'Invalid username or password';
54. }
55. }
56. break;
57.  
58. default:
59. $response['error'] = true;
60. $response['message'] = 'Invalid Operation Called';
61. }
62.  
63. }else{
64. $response['error'] = true;
65. $response['message'] = 'Invalid API Call';
66. }
67.  
68. echo json_encode($response);
69.  
70. function isTheseParametersAvailable($params){
71.  
72. foreach($params as $param){
73. if(!isset($_POST[$param])){
74. return false;
75. }
76. }
77. return true;
78. }
79.  
80. }
81. ?>