1
0
mirror of https://github.com/gamaio/lobli.git synced 2024-12-23 04:02:40 +00:00
lobli/Website/process.php

42 lines
1.6 KiB
PHP
Raw Normal View History

<?php
session_start();
$catches = explode(":", $_SESSION['catch']);
$catchid = $catches[0];
$catchVal = $catches[1];
if(empty($_GET['token']) || $_GET['token'] != $_SESSION['token'] || empty($_POST[$catchid]) || $_POST[$catchid] != $catchVal){
die("<div id=\"error\">Oh Noes! Something happened and I can't continue.<br />Please try again by using the form located at <a href=\"http://unps.us\">http://unps.us</a>.</div>");
}
require('api/api.backend.php');
require('api/dbsettings.php');
$key = '9a211e90b0a0570ed33e47428231e702af47b6f54fb347960f661184e063a1d0'; // KEEP THIS PRIVATE! This is the only thing that authenticates the application
function sanitize($input){
if ($input == null) die("<div id=\"error\">Sanatize() - No Input Provided, Aborting</div>");
include('api/dbsettings.php');
$output = strip_tags($input);
$output = stripslashes($output);
$output = $apidb->real_escape_string($output);
return $output;
}
$unpsAPI = new api();
if(!empty($_POST['link']) && !empty($_POST['linkmod'])){
switch ($_POST['linkmod']){
case "shorten":
$short = sanitize($_POST['link']);
if(strpos($short, "http://") === false && strpos($short, "https://") === false){
$short = "http://$short";
}
echo $unpsAPI->shorten($apidb, $key, $shortdb, $short);
break;
default:
die("<div id=\"error\">I don't know what you want to do... [-Check linkmod-]</div>");
}
}else{ die("<div id=\"error\">I can't do my job if I'm not given a link to work on...</div>"); }
?>