pcwvanbeers/assetmgt
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

CMXX - Deactivate API when maintenancemode is ON

Browse Source
This commit is contained in:
“VeLiTi”
2024-12-12 11:20:23 +01:00
parent cf17ccf2e3
commit 1b17a98e1f
1 changed files with 49 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files

71
api.php
View File

@@ -65,45 +65,68 @@ if($is_jwt_valid && str_contains($version, 'v')) {
{ {
echo null; echo null;
} }
//
//------------------------------------------ //------------------------------------------
// Build up version and check if file is available // Check for maintenance mode, exclude debug user
//------------------------------------------ //------------------------------------------
$api_file = './api/'.$version.'/get/'.$collection.'.php'; if(maintenance_mode == false|| debug_id == $user_data['id']){
$api_file_post = './api/'.$version.'/post/'.$collection.'.php';
//GET CLEAN LANGUAGE CODE //------------------------------------------
$language_code = ($user_data['language']) ? $user_data['language'] : 'US'; // Build up version and check if file is available
$api_file_language = './settings/translations/translations_'.strtoupper($language_code).'.php'; //------------------------------------------
$api_file = './api/'.$version.'/get/'.$collection.'.php';
$api_file_post = './api/'.$version.'/post/'.$collection.'.php';
//INCLUDE LANGUAGE FILE //------------------------------------------
if (file_exists($api_file_language)){ //GET CLEAN LANGUAGE CODE
include_once $api_file_language; //Include the code //------------------------------------------
} $language_code = ($user_data['language']) ? $user_data['language'] : 'US';
else { $api_file_language = './settings/translations/translations_'.strtoupper($language_code).'.php';
include_once './settings/translations/translations_US.php';
}
//CHECK IF USER IS ALLOWED TO CALL SPECIFIC API //------------------------------------------
if (isAllowed($collection,$profile,$permission,'R') === 1 && empty($input) && file_exists($api_file)){ //INCLUDE LANGUAGE FILE
//------------------------------------------
if (file_exists($api_file_language)){
include_once $api_file_language; //Include the code
}
else {
include_once './settings/translations/translations_US.php';
}
include_once $api_file; //------------------------------------------
} //CHECK IF USER IS ALLOWED TO CALL SPECIFIC API
elseif (isAllowed($collection,$profile,$permission,'U') === 1 && !empty($input) && file_exists($api_file_post)){ //------------------------------------------
if (isAllowed($collection,$profile,$permission,'R') === 1 && empty($input) && file_exists($api_file)){
include_once $api_file_post; include_once $api_file;
}
elseif (isAllowed($collection,$profile,$permission,'U') === 1 && !empty($input) && file_exists($api_file_post)){
include_once $api_file_post;
}
else
{
//------------------------------------------
// User not allowed to perform operation
//------------------------------------------
http_response_code(403); //Forbidden
}
} }
else else
{ {
http_response_code(403); //Forbidden //------------------------------------------
// Maintenance mode is activce -> service unavailable
//------------------------------------------
http_response_code(503); //Service Unavailable
} }
//------------------------------------------
// JWT not VALID
//------------------------------------------
} }
else else
{ {
//------------------------------------------
// JWT not VALID
//------------------------------------------
http_response_code(403); //Forbidden http_response_code(403); //Forbidden
} }
} }