PBA3H23ABR/VPR-Projekt-Frontend-2
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Projekt

Browse Source
This commit is contained in:
Felix Brabender
2025-09-11 08:16:24 +02:00
parent 04ecdac6bb
commit 3210f1e14f
652 changed files with 12389 additions and 1011 deletions
Download Patch File Download Diff File Expand all files Collapse all files

43
Pen&Paper Main/api/users.php Normal file
View File

@@ -0,0 +1,43 @@
<?php
require "db.php";
//Gabriel,Jakob
$action = $_GET['action'] ?? '';
$b = body();
function out_ok($arr = []) { echo json_encode(['ok'=>true] + $arr, JSON_UNESCAPED_UNICODE); exit; }
function out_err($msg, $code=400) { http_response_code($code); echo json_encode(['ok'=>false,'error'=>$msg], JSON_UNESCAPED_UNICODE); exit; }
if ($action === 'register') {
$u = trim($b['username'] ?? '');
$p = (string)($b['password'] ?? '');
if ($u === '' || $p === '') out_err('username/password required');
$st = db()->prepare("SELECT user_id FROM users WHERE username=?");
$st->execute([$u]);
if ($st->fetch()) out_err('username exists', 409);
$hash = password_hash($p, PASSWORD_DEFAULT);
$ins = db()->prepare("INSERT INTO users(username, pass_hash) VALUES(?, ?)");
$ins->execute([$u, $hash]);
out_ok(['user_id' => (int)db()->lastInsertId(), 'username' => $u]);
}
if ($action === 'login') {
$u = trim($b['username'] ?? '');
$p = (string)($b['password'] ?? '');
if ($u === '' || $p === '') out_err('username/password required');
$st = db()->prepare("SELECT user_id, pass_hash FROM users WHERE username=?");
$st->execute([$u]);
$row = $st->fetch();
if (!$row) out_err('invalid credentials', 401);
if (!password_verify($p, $row['pass_hash'])) out_err('invalid credentials', 401);
out_ok(['user_id' => (int)$row['user_id'], 'username' => $u]);
}
out_err('unknown action', 404);