62 lines
1.6 KiB
PHP
62 lines
1.6 KiB
PHP
<?php
|
|
header('Content-Type: application/json');
|
|
|
|
if (session_status() !== PHP_SESSION_ACTIVE) session_start();
|
|
|
|
if (empty($_SESSION['access_granted_wk_leitung']) || $_SESSION['access_granted_wk_leitung'] !== true || empty($_SESSION['passcodewk_leitung_id']) || intval($_SESSION['passcodewk_leitung_id']) < 1 ) {
|
|
http_response_code(403);
|
|
exit;
|
|
}
|
|
|
|
if (!isset($baseDir)) {
|
|
$baseDir = $_SERVER['DOCUMENT_ROOT'];
|
|
}
|
|
|
|
require $baseDir . '/../scripts/db/db-functions.php';
|
|
require $baseDir . '/../scripts/db/db-tables.php';
|
|
require $baseDir . '/../scripts/csrf_functions.php';
|
|
|
|
|
|
$type = 'wkl';
|
|
|
|
$dbconnection = require $baseDir . '/../scripts/db/db-verbindung-script.php';
|
|
|
|
if ($dbconnection['success'] !== true){
|
|
echo 'Critical DB Error.';
|
|
exit;
|
|
}
|
|
|
|
$id = intval($_POST['user_id'] ?? 0);
|
|
if ($id <= 0) {
|
|
echo json_encode(['success' => false, 'message' => 'No valid ID']);
|
|
exit;
|
|
}
|
|
|
|
// Delete old OTL links for this user (recommended)
|
|
db_delete($mysqli, $tableOTL, ['user_id' => $id]);
|
|
|
|
// Insert the row — url + timestamp are auto-generated by MySQL
|
|
|
|
$stmt = $mysqli->prepare("INSERT INTO {$tableOTL} (user_id) VALUES (?)");
|
|
$stmt->bind_param("i", $id);
|
|
|
|
|
|
if (!$stmt->execute()) {
|
|
echo json_encode(['success' => false, 'message' => 'Failed to create OTL record']);
|
|
exit;
|
|
}
|
|
|
|
$row_id = $stmt->insert_id;
|
|
|
|
$stmt->close();
|
|
|
|
// Now fetch the auto-generated URL
|
|
$url = db_get_var($mysqli, "SELECT url FROM $tableOTL WHERE id = ? LIMIT 1", [$row_id]);
|
|
|
|
if (!$url) {
|
|
echo json_encode(['success' => false, 'message' => 'Could not fetch generated URL']);
|
|
exit;
|
|
}
|
|
|
|
echo json_encode(['success' => true, 'url' => $url]);
|