Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $servername = "localhost";
- $username = "root";
- $password = "";
- $database = "demo";
- //creating a new connection object using mysqli
- $conn = new mysqli($servername, $username, $password, $database);
- //if there is some error connecting to the database
- //with die we will stop the further execution by displaying a message causing the error
- if ($conn->connect_error) {
- die("Connection failed: " . $conn->connect_error);
- $response = array();
- if(isset($_GET['apicall'])){
- switch($_GET['apicall']){
- case 'login':
- if(isTheseParametersAvailable(array('username', 'password'))){
- $username = $_POST['username'];
- $password = md5($_POST['password']);
- $stmt = $conn->prepare("SELECT id, username FROM users WHERE username = ? AND password = ?");
- $stmt->bind_param("ss",$username, $password);
- $stmt->execute();
- $stmt->store_result();
- if($stmt->num_rows > 0){
- $stmt->bind_result($id, $username);
- $stmt->fetch();
- $user = array(
- 'id'=>$id,
- 'username'=>$username
- );
- $response['error'] = false;
- $response['message'] = 'Login successfull';
- $response['user'] = $user;
- }else{
- $response['error'] = false;
- $response['message'] = 'Invalid username or password';
- }
- }
- break;
- default:
- $response['error'] = true;
- $response['message'] = 'Invalid Operation Called';
- }
- }else{
- $response['error'] = true;
- $response['message'] = 'Invalid API Call';
- }
- echo json_encode($response);
- function isTheseParametersAvailable($params){
- foreach($params as $param){
- if(!isset($_POST[$param])){
- return false;
- }
- }
- return true;
- }
- }
- ?>
Add Comment
Please, Sign In to add comment