cfgReadChar('system.oauth2_token'); header("Access-Control-Allow-Origin: *"); header("Access-Control-Expose-Headers: Access-Control-Allow-Origin"); header("Access-Control-Allow-Headers: Cache-Control, Pragma, Origin, Authorization, Content-Type, X-Requested-With, client_id"); header("Access-Control-Allow-Methods: POST, GET, PUT, DELETE, OPTIONS"); header('Content-type: application/json'); if ("OPTIONS" === $_SERVER['REQUEST_METHOD']) { exit(); } $headers = getallheaders(); if ((!isset($headers["Authorization"]) || substr($headers["Authorization"],-strlen($httpAuthToken))!=$httpAuthToken) && (!isset($headers["authorization"]) || substr($headers["authorization"],-strlen($httpAuthToken))!=$httpAuthToken)) { header('HTTP/1.1 401 Unauthorized'); header('Status: 401 Unauthorized'); echo "{\"status\":\"Missing authorization\"}"; exit(); } try { if (strpos($_SERVER['REQUEST_URI'],'/api/')===false) { throw new Exception("Invalid API request"); } $requestUri = explode('/', trim($_SERVER['REQUEST_URI'],'/')); while (array_shift($requestUri) !== 'api') { }; if ($requestUri[0]=='auth') { $api = new AuthApi($requestUri); } else if ($requestUri[0]=='crash') { $api = new CrashApi($requestUri); } else if ($requestUri[0]=='push') { $api = new PushApi($requestUri); } else if ($requestUri[0]=='version') { $api = new VersionApi($requestUri); } else { echo json_encode(Array('error' => 'Invalid API request')); } echo $api->run(); } catch (Exception $e) { echo json_encode(Array('error' => $e->getMessage())); }