uwuzu v1.6.0 Hapuego

2026-06-04 19:14:41 +00:00 · 2025-08-05 13:46:18 +09:00
parent 0d7c0a8879
commit e15b52a205
70 changed files with 7406 additions and 5172 deletions
@@ -1,8 +1,8 @@
 <?php

 $domain = $_SERVER['HTTP_HOST'];
-require('../../db.php');
-require("../../function/function.php");
+require(__DIR__ . '/../../db.php');
+require(__DIR__ . "/../../function/function.php");
 blockedIP($_SERVER['REMOTE_ADDR']);

 header("Content-Type: application/json; charset=utf-8");
@@ -37,6 +37,7 @@ if(isset($_GET['token']) || (!(empty($Get_Post_Json)))) {
            $err = "input_not_found";
            $response = array(
                'error_code' => $err,
+                'success' => false
            );
            echo json_encode($response, JSON_UNESCAPED_UNICODE);
            exit;
@@ -46,6 +47,7 @@ if(isset($_GET['token']) || (!(empty($Get_Post_Json)))) {
        $err = "input_not_found";
        $response = array(
            'error_code' => $err,
+            'success' => false
        );
        echo json_encode($response, JSON_UNESCAPED_UNICODE);
        exit;
@@ -59,6 +61,7 @@ if(isset($_GET['token']) || (!(empty($Get_Post_Json)))) {
        $err = "input_not_found";
        $response = array(
            'error_code' => $err,
+            'success' => false
        );
        
        echo json_encode($response, JSON_UNESCAPED_UNICODE);
@@ -68,31 +71,9 @@ if(isset($_GET['token']) || (!(empty($Get_Post_Json)))) {
    session_start();

    if( !empty($pdo) ) {
-        $userQuery = $pdo->prepare("SELECT username, userid, role FROM account WHERE token = :token");
-        $userQuery->bindValue(':token', $token);
-        $userQuery->execute();
-        $userData = $userQuery->fetch();
-
-        if(empty($userData["userid"])){
-            $err = "token_invalid";
-            $response = array(
-                'error_code' => $err,
-            );
-            echo json_encode($response, JSON_UNESCAPED_UNICODE);
-            exit;
-        }elseif($userData["role"] === "ice"){
-            $err = "this_account_has_been_frozen";
-            $response = array(
-                'error_code' => $err,
-            );
-            
-            echo json_encode($response, JSON_UNESCAPED_UNICODE);
-            exit;
-        }else{
-            $DataQuery = $pdo->prepare("SELECT username,userid,profile,datetime,follow,follower,iconname,headname,role,sacinfo,admin FROM account WHERE userid = :userid");
-            $DataQuery->bindValue(':userid', $userid);
-            $DataQuery->execute();
-            $userdata = $DataQuery->fetch();
+        $AuthData = APIAuth($pdo, $token, "read:users");
+        if($AuthData[0] === true){
+            $userdata = $AuthData[2];
            
            if (empty($userdata)){
                $response = array(
@@ -174,6 +155,7 @@ if(isset($_GET['token']) || (!(empty($Get_Post_Json)))) {
                $All_ueuse = $allueuse->rowCount(); 

                $response = array(
+                    'success' => true,
                    'username' => decode_yajirushi(htmlspecialchars_decode($userdata["username"])),
                    'userid' => decode_yajirushi(htmlspecialchars_decode($userdata["userid"])),
                    'profile' => decode_yajirushi(htmlspecialchars_decode($userdata["profile"])),
@@ -191,6 +173,14 @@ if(isset($_GET['token']) || (!(empty($Get_Post_Json)))) {
                    'language' => "ja-JP",
                );
            }
+            echo json_encode($response, JSON_UNESCAPED_UNICODE);
+        }else{
+            $err = $AuthData[1];
+            $response = array(
+                'error_code' => $err,
+                'success' => false
+            );
+            
            echo json_encode($response, JSON_UNESCAPED_UNICODE);
        }
    }
@@ -198,6 +188,7 @@ if(isset($_GET['token']) || (!(empty($Get_Post_Json)))) {
    $err = "input_not_found";
    $response = array(
        'error_code' => $err,
+        'success' => false
    );
     
    echo json_encode($response, JSON_UNESCAPED_UNICODE);