David A. Windham
david
/
lychee
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 1204ef63f4
Branches Tags
lychee
/
php
/
api.php

api.php 4.1 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * @name        api.php
    5. 

  5.  * @author      Philipp Maurer
    6. 

  6.  * @author      Tobias Reich
    7. 

  7.  * @copyright   2013 by Philipp Maurer, Tobias Reich
    8. 

  8.  */
    9. 

  9. 

  10. if(floatval(phpversion())<5.2) die("Please upgrade to PHP 5.2 or higher!");
    11. 

  11. 

  12. if((isset($_POST["function"])&&$_POST["function"]!="")||(isset($_GET["function"])&&$_GET["function"]!="")) {
    13. 

  13. 

  14.     session_start();
    15. 

  15.     define("LYCHEE", true);
    16. 

  16. 

  17.     include("array2json.php");
    18. 

  18.     include("config.php");
    19. 

  19.     include("functions.php");
    20. 

  20. 

  21.     // Security
    22. 

  22.     if(isset($_POST["albumID"])&&($_POST["albumID"]==""||$_POST["albumID"]<0)) exit("Wrong parameter type for 'albumID'!");
    23. 

  23.     if(isset($_POST["photoID"])&&$_POST["photoID"]=="") exit("Wrong parameter type for 'photoID'!");
    24. 

  24. 

  25.     if($_SESSION["login"]==true) {
    26. 

  26. 

  27. 		//Connect to DB
    28. 

  28. 		$database = dbConnect();
    29. 

  29. 

  30. 		// Album Functions
    31. 

  31. 		if($_POST["function"]=="getAlbums") echo array2json(getAlbums());
    32. 

  32. 		if($_POST["function"]=="getSmartInfo") echo array2json(getSmartInfo());
    33. 

  33. 		if($_POST["function"]=="addAlbum"&&isset($_POST["title"])) echo addAlbum($_POST["title"]);
    34. 

  34. 		if($_POST["function"]=="getAlbumInfo"&&isset($_POST["albumID"])) echo array2json(getAlbumInfo($_POST["albumID"]));
    35. 

  35. 		if($_POST["function"]=="setAlbumTitle"&&isset($_POST["albumID"])&&isset($_POST["title"])) echo setAlbumTitle($_POST["albumID"], $_POST["title"]);
    36. 

  36. 		if($_POST["function"]=="deleteAlbum"&&isset($_POST["albumID"])&&isset($_POST["delAll"])) echo deleteAlbum($_POST["albumID"], $_POST["delAll"]);
    37. 

  37. 		if($_GET["function"]=="getAlbumArchive"&&isset($_GET["albumID"])) getAlbumArchive($_GET["albumID"]);
    38. 

  38. 

  39. 		// Photo Functions
    40. 

  40. 		if($_POST["function"]=="getPhotos"&&isset($_POST["albumID"])) echo array2json(getPhotos($_POST["albumID"]));
    41. 

  41. 		if($_POST["function"]=="getPhotoInfo"&&isset($_POST["photoID"])) echo array2json(getPhotoInfo($_POST["photoID"]));
    42. 

  42. 		if($_POST["function"]=="movePhoto"&&isset($_POST["photoID"])&&isset($_POST["albumID"])) echo movePhoto($_POST["photoID"], $_POST["albumID"]);
    43. 

  43. 		if($_POST["function"]=="deletePhoto"&&isset($_POST["photoID"])) echo deletePhoto($_POST["photoID"]);
    44. 

  44. 		if($_POST["function"]=="setPhotoTitle"&&isset($_POST["photoID"])&&isset($_POST["title"])) echo setPhotoTitle($_POST["photoID"], $_POST["title"]);
    45. 

  45. 		if($_POST["function"]=="setPhotoStar"&&isset($_POST["photoID"])) echo setPhotoStar($_POST["photoID"]);
    46. 

  46. 		if($_POST["function"]=="setPhotoPublic"&&isset($_POST["photoID"])&&isset($_POST["url"])) echo setPhotoPublic($_POST["photoID"], $_POST["url"]);
    47. 

  47. 		if($_POST["function"]=="setPhotoDescription"&&isset($_POST["photoID"])&&isset($_POST["description"])) echo setPhotoDescription($_POST["photoID"], $_POST["description"]);
    48. 

  48. 		if($_POST["function"]=="sharePhoto"&&isset($_POST["photoID"])&&isset($_POST["url"])) echo array2json(sharePhoto($_POST["photoID"], $_POST["url"]));
    49. 

  49. 		if($_POST["function"]=="previousPhoto"&&isset($_POST["photoID"])&&isset($_POST["albumID"])) echo array2json(previousPhoto($_POST["photoID"], $_POST["albumID"]));
    50. 

  50. 		if($_POST["function"]=="nextPhoto"&&isset($_POST["photoID"])&&isset($_POST["albumID"])) echo array2json(nextPhoto($_POST["photoID"], $_POST["albumID"]));
    51. 

  51. 

  52.         // Upload Function
    53. 

  53. 		if($_POST["function"]=="upload"&&isset($_FILES)&&isset($_POST["albumID"])) echo upload($_FILES, $_POST["albumID"]);
    54. 

  54. 

  55. 		// Search Function
    56. 

  56. 		if($_POST["function"]=="search"&&isset($_POST["term"])) echo array2json(search($_POST["term"]));
    57. 

  57. 

  58. 		// Sync Function
    59. 

  59. 		if($_POST["function"]=="syncFolder") echo syncFolder();
    60. 

  60. 

  61. 		// Session Functions
    62. 

  62. 		if($_POST["function"]=="login") echo login($_POST['user'], $_POST['password']);
    63. 

  63. 		if($_POST["function"]=="logout") logout();
    64. 

  64. 		if($_POST["function"]=="loggedIn") echo true;
    65. 

  65. 

  66.    } else {
    67. 

  67. 

  68. 		$database = dbConnect();
    69. 

  69. 

  70. 		// Photo Functions
    71. 

  71. 	    if($_POST["function"]=="getPhotoInfo"&&isset($_POST["photoID"])&&isPhotoPublic($_POST["photoID"])) echo array2json(getPhotoInfo($_POST["photoID"]));
    72. 

  72. 

  73. 	    // Session Functions
    74. 

  74. 	    if($_POST["function"]=="login") echo login($_POST['user'], $_POST['password']);
    75. 

  75. 	    if($_POST["function"]=="loggedIn") echo false;
    76. 

  76. 

  77.    }
    78. 

  78. 

  79. } else {
    80. 

  80. 

  81. 	header('HTTP/1.1 401 Unauthorized');
    82. 

  82. 	die("Error: No permission!");
    83. 

  83. 

  84. }
    85. 

  85. 

  86. ?>
    87.