deathcat/tinyTask
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Added authentication functionality and simple role based model

Browse Source
This commit is contained in:
deathcat
2026-02-11 15:02:37 -08:00
parent c247631de6
commit 11889e3f93
17 changed files with 341 additions and 57 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
add_task.php
View File

@@ -1,5 +1,11 @@
<?php
require 'db.php';
require 'auth.php';
header('Content-Type: application/json');
require_login();
$user_id = current_user_id();
$data = json_decode(file_get_contents('php://input'), true);
$name = trim($data['name'] ?? '');
@@ -7,12 +13,20 @@ $project_id = intval($data['project_id'] ?? 0);
if ($name === '' || $project_id <= 0) {
http_response_code(400);
echo json_encode(['error' => 'Invalid input']);
echo json_encode(['success' => false, 'error' => 'Invalid input']);
exit;
}
$stmt = $pdo->prepare("INSERT INTO tasks (project_id, name) VALUES (?, ?)");
$stmt->execute([$project_id, $name]);
// Ensure project belongs to this user
$stmt = $pdo->prepare("SELECT id FROM projects WHERE id = ? AND user_id = ? LIMIT 1");
$stmt->execute([$project_id, $user_id]);
if (!$stmt->fetchColumn()) {
http_response_code(403);
echo json_encode(['success' => false, 'error' => 'Forbidden']);
exit;
}
$stmt = $pdo->prepare("INSERT INTO tasks (user_id, project_id, name) VALUES (?, ?, ?)");
$stmt->execute([$user_id, $project_id, $name]);
echo json_encode(['success' => true, 'id' => $pdo->lastInsertId()]);
?>