safechat/html/send.php

<?php
try {
  require_once("usertable.php");
  $user = $db->real_escape_string($_REQUEST['user']);
  $msg = $db->real_escape_string($_REQUEST['msg']);
  $pgp = gnupg_init();
  if (!$pgp) {
    echo json_encode(array('success' => false, 'txt' => "pgp on server failed"));
  } else {
    $q = $db->query("select pubkey from user where name='$user';");
    if (!$q || $q->num_rows!=1) {
      echo json_encode(array('success' => false, 'txt' => "user not found on server"));
    } else {
      $pubkey = gnupg_import($pgp, $q->fetch_row()[0]);
      if (!$pubkey) {
        echo json_encode(array('success' => false, 'txt' => "wrong identity"));
      } else {
        require_once("messagetable.php");
        $q = $db->query("insert into message (user, msg) values ('$user', '$msg');");
        if ($q) {
          echo json_encode(array('success' => true, 'txt' => "message stored"));
        } else {
          error_log("Error storing message: ".$db->error);
          echo json_encode(array('success' => false, 'txt' => "storing message failed"));
        }
      }
    }
  }
} catch (Exception $e) {
  error_log("Error storing message: ".$e->message);
  echo json_encode(array('success' => false, 'txt' => "storing message failed"));
}

?>
copied files 2015-06-28 20:58:51 +00:00			`<?php`
			`try {`
some checks on server side 2015-07-02 07:08:13 +00:00			`require_once("usertable.php");`
copied files 2015-06-28 20:58:51 +00:00			`$user = $db->real_escape_string($_REQUEST['user']);`
			`$msg = $db->real_escape_string($_REQUEST['msg']);`
some checks on server side 2015-07-02 07:08:13 +00:00			`$pgp = gnupg_init();`
			`if (!$pgp) {`
			`echo json_encode(array('success' => false, 'txt' => "pgp on server failed"));`
with image support 2015-07-01 00:07:33 +00:00			`} else {`
some checks on server side 2015-07-02 07:08:13 +00:00			`$q = $db->query("select pubkey from user where name='$user';");`
			`if (!$q \|\| $q->num_rows!=1) {`
			`echo json_encode(array('success' => false, 'txt' => "user not found on server"));`
			`} else {`
			`$pubkey = gnupg_import($pgp, $q->fetch_row()[0]);`
			`if (!$pubkey) {`
			`echo json_encode(array('success' => false, 'txt' => "wrong identity"));`
			`} else {`
			`require_once("messagetable.php");`
			`$q = $db->query("insert into message (user, msg) values ('$user', '$msg');");`
			`if ($q) {`
			`echo json_encode(array('success' => true, 'txt' => "message stored"));`
			`} else {`
			`error_log("Error storing message: ".$db->error);`
			`echo json_encode(array('success' => false, 'txt' => "storing message failed"));`
			`}`
			`}`
			`}`
with image support 2015-07-01 00:07:33 +00:00			`}`
copied files 2015-06-28 20:58:51 +00:00			`} catch (Exception $e) {`
some checks on server side 2015-07-02 07:08:13 +00:00			`error_log("Error storing message: ".$e->message);`
			`echo json_encode(array('success' => false, 'txt' => "storing message failed"));`
copied files 2015-06-28 20:58:51 +00:00			`}`
some checks on server side 2015-07-02 07:08:13 +00:00
copied files 2015-06-28 20:58:51 +00:00			`?>`