Fully end to end encrypted anonymous chat program. Server only stores public key lookup for users and the encrypted messages. No credentials are transfered to the server, but kept in local browser storage. This allows 100% safe chatting.
https://safechat.ch
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
48 lines
1.4 KiB
48 lines
1.4 KiB
<?php |
|
/*! @file |
|
|
|
@id $Id$ |
|
|
|
@see @ref apilogin |
|
|
|
@page api |
|
|
|
@section apilogin Login |
|
|
|
API-call login.php |
|
|
|
Check if a user is consistent to the data in the server's database |
|
or create a user, if he does not yet exist in the @ref usertable |
|
(and the user name is available). |
|
|
|
@param user user's name |
|
@param pubkey user's public key |
|
|
|
@return json encoded status with text: |
|
- success() in case of success (user exists or has been created) |
|
- error() in case of mismatch |
|
*/ |
|
// 1 2 3 4 5 6 7 8 |
|
// 45678901234567890123456789012345678901234567890123456789012345678901234567890 |
|
try { |
|
require_once("usertable.php"); |
|
$user = $db->real_escape_string($_REQUEST['user']); |
|
$pubkey = $db->real_escape_string($_REQUEST['pubkey']); |
|
$pgp = gnupg_init(); |
|
if (!$pgp) error("pgp on server failed"); |
|
$verify = gnupg_import($pgp, $_REQUEST['pubkey']); |
|
if (!$verify) error("wrong identity"); |
|
$q = $db->query("select * from user where name='$user' and pubkey='$pubkey';"); |
|
if ($q->num_rows==1) { |
|
success("user verified"); |
|
} elseif ($q->num_rows==0) { |
|
$q = $db->query("insert into user (name, pubkey) values ('$user', '$pubkey');"); |
|
if (!q) error("creation of user failed"); |
|
success("user created"); |
|
} else { |
|
error("server database defect"); |
|
} |
|
} catch (Exception $e) { |
|
error("login failed"); |
|
} |
|
?>
|
|
|