added apikey authn
This commit is contained in:
jakani24
32
src/server/cyberhex-code/api/php/accessctrl/check_apikey.php
Normal file
32
src/server/cyberhex-code/api/php/accessctrl/check_apikey.php
Normal file
@@ -0,0 +1,32 @@
|
||||
<?php
|
||||
function check_apikey(){
|
||||
include "../../../config.php";
|
||||
$conn = new mysqli($DB_SERVERNAME, $DB_USERNAME, $DB_PASSWORD,$DB_DATABASE);
|
||||
if ($conn->connect_error) {
|
||||
$success=0;
|
||||
die("Connection failed: " . $conn->connect_error);
|
||||
}
|
||||
if(!isset($_GET["apikey"]) or !isset($_GET["machineid"])){
|
||||
return false;
|
||||
}
|
||||
else{
|
||||
$apikey=$_GET["apikey"];
|
||||
$machineid=$_GET["machineid"];
|
||||
$sql = "SELECT * FROM api WHERE apikey = ? and machineid = ?";
|
||||
$stmt = $conn->prepare($sql);
|
||||
$stmt->bind_param("ss", $apikey,$machineid);
|
||||
|
||||
// Execute the statement
|
||||
$stmt->execute();
|
||||
|
||||
// Get the result
|
||||
$result = $stmt->get_result();
|
||||
|
||||
// Check if the user exists and verify the password
|
||||
if ($result->num_rows > 0) {
|
||||
return true;
|
||||
//apikey authenticated
|
||||
}
|
||||
}
|
||||
}
|
||||
?>
|
||||
Reference in New Issue
Block a user