/
getResources.php
78 lines (69 loc) · 2 KB
/
getResources.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
<?php
/**
* Get resources.
*/
include 'login.php';
global $con;
function die_error($c, $m) {
die('{success:false,errcode:' . $c . ',message:"' . $m . '",r:null}');
}
function echo_success($m, $r) {
echo '{success:true,errcode:0,message:"' . $m . '",r:' . $r . '}';
}
function find_resources($u, $rid) {
global $con;
$f = false;
if ($rid == "") {
$sql = "SELECT * FROM resource WHERE deleted_at IS NULL AND (owner='$u' OR owner='admin')";
$f = false;
} else {
$sql = "SELECT * FROM resource WHERE deleted_at IS NULL AND id=$rid AND (owner='$u' OR owner='admin')";
$f = true;
}
if (($t = mysql_query($sql, $con))) {
return $t;
} else {
die_error(-1, json_encode(mysql_error()));
}
}
function encode_resource($r, $u) {
global $con;
$q = 0;
if ($r['owner'] == $u)
$q = 1;
$str = '{id:' . $r['id'] . ',m:' . $q . ',a:' . json_encode($r['author']) . ',t:' . json_encode($r['title']) . ',d:' . json_encode($r['abstract']) . ',l:';
$sql = "SELECT link FROM resourceItem WHERE deleted_at IS NULL AND resource_id='" . $r['id'] . "' LIMIT 1";
if (($t = mysql_query($sql, $con))) {
if (($i = mysql_fetch_array($t))) {
$str .= json_encode($i[0]) . '}';
} else {
$str .= 'null}';
}
} else {
die_error(-1, json_encode(mysql_error()));
}
return $str;
}
function encode_resources($rs) {
$u = $_SESSION['username'];
$str = '[';
if (($r = mysql_fetch_array($rs))) {
$str .= encode_resource($r, $u);
while (($r = mysql_fetch_array($rs))) {
$str .= ',' . encode_resource($r, $u);
}
}
return $str . ']';
}
$logged_in = checkLogin();
if (!$logged_in) {
header('Location: ngembryo.php');
} else {
$rid = $_GET['rid'];
$user = $_SESSION['username'];
$rs = find_resources($user, $rid);
$json = encode_resources($rs);
echo_success("Resources retrieved successfully.", $json);
}
mysql_close($con);
?>