Added backend code to repo

Backend/config.php

@@ -0,0 +1,20 @@
+<?php 
+
+$TREFFLE_BASE_URL = "https://trefle.io";
+$TREFFLE_LIST_PATH = "/api/v1/plants";
+$TREFFLE_SEARCH_PATH = "/api/v1/plants/search";
+$TREFFLE_TOKEN = "hg6M-l4XhrgVgn2A-qZC6KKMrVPMUuCffVfDgDPtc0I";
+
+$DB_HOST = "localhost";
+$DB_USER = "Floradex";
+$DB_PASSWORD = "13CUdcMOXiybeZuj";
+$DB_NAME = "Floradex";
+
+$connection = new mysqli($DB_HOST, $DB_USER, $DB_PASSWORD, $DB_NAME);
+
+if ($connection->connect_errno) {
+    echo "Failed to connect to MySQL: " . $connection->connect_error;
+    exit();
+}
+
+$connection->set_charset('utf8');

Backend/listFlowers.php

@@ -0,0 +1,179 @@
+<?php
+
+require_once('config.php');
+
+
+// Filter unsupported HTTP requests
+if ($_SERVER["REQUEST_METHOD"] !== "GET") {
+    http_response_code(400); // use appropriate status
+    echo json_encode(array("error" => "Endpoint only supports GET requests"));
+    exit();
+}
+
+
+// Get user input
+$userID = isset($_GET['user_id']) ? $_GET['user_id'] : '';
+$q = isset($_GET['q']) ? $_GET['q'] : '';
+$page = isset($_GET['page']) ? $_GET['page'] : '';
+$edible = isset($_GET['edible']) ? $_GET['edible'] : '';
+$vegetable = isset($_GET['vegetable']) ? $_GET['vegetable'] : '';
+$scientificName = isset($_GET['scientific_name']) ? $_GET['scientific_name'] : '';
+$growthMonths = isset($_GET['growth_months']) ? $_GET['growth_months'] : '';
+$bloomMonths = isset($_GET['bloom_months']) ? $_GET['bloom_months'] : '';
+$color = isset($_GET['flower_color']) ? $_GET['flower_color'] : '';
+
+
+// Clean user input
+$userID = $connection->real_escape_string($userID);
+
+
+function prepareQueryParams($q = '', $edible = '', $vegetable = '', $scientificName = '', $growthMonths = '', $bloomMonths = '', $color = '', $page = '') {
+
+    // QUERY PARAMETERS
+    // - q: String
+    // - page: Int
+    // - edible: Bool
+    // - vegetable: Bool
+    // - scientific_name: String
+    // - growth_months: Int
+    // - bloom_months: Int
+
+    global $TREFFLE_TOKEN;
+
+    // Define preliminar round of params
+    $queryParams = array(
+        "token" => $TREFFLE_TOKEN,
+        "page" => $page ? $page : '1',
+        "filter[edible]" => $edible ? $edible : 'false',
+        "filter[vegetable]" => $vegetable ? $vegetable : 'false',
+    );
+
+
+    // Set the rest of the params
+    if($q) {
+        $queryParams['q'] = $q;
+    }
+
+    if($scientificName) {
+        $queryParams['filter[scientific_name]'] = $scientificName;
+    }
+
+    if($growthMonths) {
+        $queryParams['filter[growth_months]'] = $growthMonths;
+    }
+
+    if($bloomMonths) {
+        $queryParams['filter[bloom_months]'] = $bloomMonths;
+    }
+    
+    if($color) {
+        $queryParams['filter[flower_color]'] = $color;
+    }
+
+    return $queryParams;
+
+}
+
+
+function callAPI($queryParams) {
+
+    global $TREFFLE_BASE_URL, $TREFFLE_LIST_PATH, $TREFFLE_SEARCH_PATH;
+
+    if(isset($queryParams['q']) && $queryParams['q'] != '') {
+        $endpoint = $TREFFLE_BASE_URL . $TREFFLE_SEARCH_PATH;
+    } else {
+        $endpoint = $TREFFLE_BASE_URL . $TREFFLE_LIST_PATH;
+    }
+    
+    $curl = curl_init();
+    $url = sprintf("%s?%s", $endpoint, http_build_query($queryParams));
+    curl_setopt($curl, CURLOPT_URL, $url);
+    curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
+
+    $response = curl_exec($curl);
+    $http_response_code = curl_getinfo($curl, CURLINFO_HTTP_CODE);
+    
+    curl_close($curl);
+
+    return array("data" => json_decode($response), "code" => $http_response_code);
+    
+}
+
+
+function listFlowers($userID, $q = '', $edible = '', $vegetable = '', $scientificName = '', $growthMonths = '', $bloomMonths = '', $color = '', $page = '') {
+
+    if ($userID == '') {
+        http_response_code(400); // use appropriate status code
+        echo json_encode(array("error" => "Field 'user_id' is required"));
+        return;
+    }
+
+    global $connection;
+
+    $query = "SELECT * 
+                FROM UserHistory AS H
+                WHERE H.user_id = '$userID';";
+
+    if ($result = $connection->query($query)) {
+
+
+        // Query API
+        $queryParams = prepareQueryParams($q, $edible, $vegetable, $scientificName, $growthMonths, $bloomMonths, $color, $page);
+        $apiOutput = callAPI($queryParams);
+        $data = $apiOutput['data'];
+        $code = $apiOutput['code'];
+
+
+        // Handle API errors        
+        if ($code >= 300 || $code < 200) {
+            http_response_code(500);
+            echo json_encode(array("error" => "Unknown error occurred with Treffle API (Code: $code)"));
+            return;
+        } elseif (isset($data->error) && $data->error == "true") {
+            http_reponse_code(400);
+            echo json_encode(array("error" => isset($data->messages) ? $data->messages : $data->message));
+            return;
+        }
+
+
+        // Extract flowers
+        $flowers = $data->data;
+
+        
+        // Initialize all both fields to false for all flowers
+        foreach($flowers as $f) {
+            $f->isFavorite = false;
+            $f->hasBeenFound = false;
+        }       
+
+
+        // Loop through each "favorited"/"marked" flower and update accordingly
+        // NOTE: WOULD'VE BEEN EASIER IF F WERE A DICT :(
+        while($row = $result->fetch_assoc()) {
+            foreach($flowers as $f) {
+                if($f->id == $row['flower_id']) {
+                    $f->isFavorite = $row['in_wishlist'] == "1" ? true : false;
+                    $f->hasBeenFound = $row['has_been_found'] == "1" ? true : false;
+                }
+            }
+        }
+        
+        
+        // Return response
+        http_response_code(200);
+        $response = new stdClass;
+        $response->data = $flowers;
+        $response->links = $data->links;
+        $response->meta = $data->meta;
+        echo json_encode($response);
+
+
+    } else {
+        http_response_code(500); // use appropriate status code
+        echo json_encode(array("error" => $connection->error));
+    }
+
+}
+
+
+listFlowers($userID, $q, $edible, $vegetable, $scientificName, $growthMonths, $bloomMonths, $color, $page);

Backend/login.php

@@ -0,0 +1,70 @@
+<?php 
+
+require_once('config.php');
+
+
+// Filter unsupported HTTP requests
+if ($_SERVER["REQUEST_METHOD"] !== "POST") {
+    http_response_code(400); // use appropriate status
+    echo json_encode(array("error" => "Endpoint only supports POST requests"));
+    exit();
+}
+
+
+// Get input
+$json = file_get_contents('php://input');
+$data = json_decode($json);
+$email = isset($data->email) ? $data->email : '';
+$password = isset($data->password) ? $data->password : '';
+
+
+// Clean user input
+$email = $connection->real_escape_string($email);
+$password = $connection->real_escape_string($password);
+
+
+function Login($email, $password) {
+
+    if ($email === '' || $password === '') {
+        http_response_code(400); // use appropriate status
+        echo json_encode(array("error" => "Fields 'email' and 'password' are required"));
+        return;
+    } elseif (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
+        http_response_code(400);
+        echo json_encode(array("error" => "Invalid email '$email'"));
+        return;
+    }
+
+    global $connection;
+    $passwordHash = md5($password);
+
+    $query = "SELECT * 
+                FROM UserData U
+                WHERE U.email = '$email'
+                AND U.password = '$passwordHash'";
+    
+    if ($result = $connection->query($query)) {
+        if ($row = $result->fetch_object()) {
+            
+            $user = array(
+                "id" => (int) $row->id,
+                "username" => $row->username,
+                "email" => $row->email,
+            );      
+            
+            http_response_code(200);
+            echo json_encode($user, JSON_UNESCAPED_UNICODE);
+            
+        } else {
+            http_response_code(400); // use appropriate status code
+            echo json_encode(array("error" => "No user with given credentials"));
+        }
+    } else {
+        http_response_code(500); // use appropriate status code
+        echo json_encode(array("error" => $connection->error));
+    }
+
+}
+
+// mail("vhernandezcastro@gmail.com", "test_login_android", json_encode($data));
+Login($email, $password);

Backend/putFavoriteFlower.php

@@ -0,0 +1,72 @@
+<?php
+
+require_once('config.php');
+
+
+// Filter unsupported HTTP requests
+if ($_SERVER["REQUEST_METHOD"] !== "POST") {
+    http_response_code(400); // use appropriate status
+    echo json_encode(array("error" => "Endpoint only supports POST requests"));
+    exit();
+}
+
+
+// Get input
+$json = file_get_contents('php://input');
+$data = json_decode($json);
+$userID = isset($data->user_id) ? $data->user_id : '';
+$flowerID = isset($data->flower_id) ? $data->flower_id : '';
+
+
+// Clean user input
+$flowerID = $connection->real_escape_string($flowerID);
+$userID = $connection->real_escape_string($userID);
+
+
+function putFavoriteFlower($userID, $flowerID) {
+
+    if ($userID == '' || $flowerID == '') {
+        http_response_code(400); // use appropriate status code
+        echo json_encode(array("error" => "Fields 'user_id' and 'flower_id' are requried"));
+        return;
+    }
+
+    global $connection;
+    
+    $query = "SELECT * FROM UserHistory AS H WHERE H.user_id = '$userID' AND H.flower_id = '$flowerID';";
+    
+    if ($result = $connection->query($query)) {
+        if ($result->num_rows > 0) {
+        
+            $query = "UPDATE UserHistory AS H SET H.in_wishlist = 1 WHERE H.user_id = '$userID' AND H.flower_id = '$flowerID';";
+            
+            if ($connection->query($query)) {
+                http_response_code(200);
+            } else {
+                http_response_code(500); // use appropriate status code
+                echo json_encode(array("error" => $connection->error));
+            }
+        
+        } else {
+        
+            $query = "INSERT INTO UserHistory (`user_id`, `flower_id`, `in_wishlist`, `has_been_found`) VALUES ('$userID', '$flowerID', 1, 0);";
+
+            if ($connection->query($query)) {
+                http_response_code(200);
+            } else {
+                http_response_code(500); // use appropriate status code
+                echo json_encode(array("error" => $connection->error));
+            }
+            
+        }
+    } else {
+        http_response_code(500); // use appropriate status code
+        echo json_encode(array("error" => $connection->error));
+    }
+
+
+
+}
+
+
+putFavoriteFlower($userID, $flowerID);

Backend/putFoundFlower.php

@@ -0,0 +1,72 @@
+<?php
+
+require_once('config.php');
+
+
+// Filter unsupported HTTP requests
+if ($_SERVER["REQUEST_METHOD"] !== "POST") {
+    http_response_code(400); // use appropriate status
+    echo json_encode(array("error" => "Endpoint only supports POST requests"));
+    exit();
+}
+
+
+// Get input
+$json = file_get_contents('php://input');
+$data = json_decode($json);
+$userID = isset($data->user_id) ? $data->user_id : '';
+$flowerID = isset($data->flower_id) ? $data->flower_id : '';
+
+
+// Clean user input
+$flowerID = $connection->real_escape_string($flowerID);
+$userID = $connection->real_escape_string($userID);
+
+
+function putFoundFlower($userID, $flowerID) {
+
+    if ($userID == '' || $flowerID == '') {
+        http_response_code(400); // use appropriate status code
+        echo json_encode(array("error" => "Fields 'user_id' and 'flower_id' are requried"));
+        return;
+    }
+
+    global $connection;
+    
+    $query = "SELECT * FROM UserHistory AS H WHERE H.user_id = '$userID' AND H.flower_id = '$flowerID';";
+    
+    if ($result = $connection->query($query)) {
+        if ($result->num_rows > 0) {
+        
+            $query = "UPDATE UserHistory AS H SET H.has_been_found = 1 WHERE H.user_id = '$userID' AND H.flower_id = '$flowerID';";
+            
+            if ($connection->query($query)) {
+                http_response_code(200);
+            } else {
+                http_response_code(500); // use appropriate status code
+                echo json_encode(array("error" => $connection->error));
+            }
+        
+        } else {
+        
+            $query = "INSERT INTO UserHistory (`user_id`, `flower_id`, `in_wishlist`, `has_been_found`) VALUES ('$userID', '$flowerID', 0, 1);";
+
+            if ($connection->query($query)) {
+                http_response_code(200);
+            } else {
+                http_response_code(500); // use appropriate status code
+                echo json_encode(array("error" => $connection->error));
+            }
+            
+        }
+    } else {
+        http_response_code(500); // use appropriate status code
+        echo json_encode(array("error" => $connection->error));
+    }
+
+
+
+}
+
+
+putFoundFlower($userID, $flowerID);

Backend/removeFavoriteFlower.php

@@ -0,0 +1,64 @@
+<?php
+
+require_once('config.php');
+
+
+// Filter unsupported HTTP requests
+if ($_SERVER["REQUEST_METHOD"] !== "POST") {
+    http_response_code(400); // use appropriate status
+    echo json_encode(array("error" => "Endpoint only supports POST requests"));
+    exit();
+}
+
+
+// Get input
+$json = file_get_contents('php://input');
+$data = json_decode($json);
+$userID = isset($data->user_id) ? $data->user_id : '';
+$flowerID = isset($data->flower_id) ? $data->flower_id : '';
+
+
+// Clean user input
+$flowerID = $connection->real_escape_string($flowerID);
+$userID = $connection->real_escape_string($userID);
+
+
+function removeFavoriteFlower($userID, $flowerID) {
+
+    if ($userID == '' || $flowerID == '') {
+        http_response_code(400); // use appropriate status code
+        echo json_encode(array("error" => "Fields 'user_id' and 'flower_id' are requried"));
+        return;
+    }
+
+    global $connection;
+    
+    $query = "SELECT * FROM UserHistory AS H WHERE H.user_id = '$userID' AND H.flower_id = '$flowerID';";
+    
+    if ($result = $connection->query($query)) {
+        if ($result->num_rows > 0) {
+        
+            $query = "UPDATE UserHistory AS H SET H.in_wishlist = 0 WHERE H.user_id = '$userID' AND H.flower_id = '$flowerID';";
+            
+            if ($connection->query($query)) {
+                http_response_code(200);
+            } else {
+                http_response_code(500); // use appropriate status code
+                echo json_encode(array("error" => $connection->error));
+            }
+        
+        } else {
+        
+            // Theres nothing to remove, since it doesn't exist
+            http_response_code(200);
+            
+        }
+    } else {
+        http_response_code(500); // use appropriate status code
+        echo json_encode(array("error" => $connection->error));
+    }
+
+}
+
+// mail("vhernandezcastro@gmail.com", "test_remove_favorite_android", json_encode($data));
+removeFavoriteFlower($userID, $flowerID);

Backend/removeFoundFlower.php

@@ -0,0 +1,64 @@
+<?php
+
+require_once('config.php');
+
+
+// Filter unsupported HTTP requests
+if ($_SERVER["REQUEST_METHOD"] !== "POST") {
+    http_response_code(400); // use appropriate status
+    echo json_encode(array("error" => "Endpoint only supports POST requests"));
+    exit();
+}
+
+
+// Get input
+$json = file_get_contents('php://input');
+$data = json_decode($json);
+$userID = isset($data->user_id) ? $data->user_id : '';
+$flowerID = isset($data->flower_id) ? $data->flower_id : '';
+
+
+// Clean user input
+$flowerID = $connection->real_escape_string($flowerID);
+$userID = $connection->real_escape_string($userID);
+
+
+function removeFoundFlower($userID, $flowerID) {
+
+    if ($userID == '' || $flowerID == '') {
+        http_response_code(400); // use appropriate status code
+        echo json_encode(array("error" => "Fields 'user_id' and 'flower_id' are requried"));
+        return;
+    }
+
+    global $connection;
+    
+    $query = "SELECT * FROM UserHistory AS H WHERE H.user_id = '$userID' AND H.flower_id = '$flowerID';";
+    
+    if ($result = $connection->query($query)) {
+        if ($result->num_rows > 0) {
+        
+            $query = "UPDATE UserHistory AS H SET H.has_been_found = 0 WHERE H.user_id = '$userID' AND H.flower_id = '$flowerID';";
+            
+            if ($connection->query($query)) {
+                http_response_code(200);
+            } else {
+                http_response_code(500); // use appropriate status code
+                echo json_encode(array("error" => $connection->error));
+            }
+        
+        } else {
+        
+            // Theres nothing to remove, since it doesn't exist
+            http_response_code(200);
+            
+        }
+    } else {
+        http_response_code(500); // use appropriate status code
+        echo json_encode(array("error" => $connection->error));
+    }
+
+}
+
+// mail("vhernandezcastro@gmail.com", "test_remove_favorite_android", json_encode($data));
+removeFoundFlower($userID, $flowerID);

Backend/signup.php

@@ -0,0 +1,67 @@
+<?php
+
+require_once('config.php');
+
+
+// Filter unsupported HTTP requests
+if ($_SERVER["REQUEST_METHOD"] !== "POST") {
+    http_response_code(400); // use appropriate status
+    echo json_encode(array("error" => "Endpoint only supports POST requests"));
+    exit();
+}
+
+
+// Get input
+$json = file_get_contents('php://input');
+$data = json_decode($json);
+$username = isset($data->username) ? $data->username : '';
+$email = isset($data->email) ? $data->email : '';
+$password = isset($data->password) ? $data->password : '';
+
+
+// Clean user input
+$username = $connection->real_escape_string($username);
+$password = $connection->real_escape_string($password);
+$email = $connection->real_escape_string($email);
+
+
+function SignUp($username, $email, $password) {
+    
+    if ($username === '' || $password === '' || $email === '') {
+        http_response_code(400); // use appropriate status
+        echo json_encode(array("error" => "Fields 'username', 'email', and 'password' are required"));
+        return;
+    } elseif (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
+        http_response_code(400);
+        echo json_encode(array("error" => "Invalid email '$email'"));
+        return;
+    }
+    
+    global $connection;
+    $passwordHash = md5($password);
+
+    $query = "INSERT INTO `UserData`
+                (`username`, `email`, `password`) 
+                VALUES
+                ('$username', '$email', '$passwordHash')";
+ 
+    if ($connection->query($query)) {
+        
+        $user = array(
+            "id" => (int) $connection->insert_id,
+            "username" => $username,
+            "email" => $email,
+        );
+        
+        http_response_code(200);
+        echo json_encode($user, JSON_UNESCAPED_UNICODE);
+        
+    } else {
+        http_response_code(500); // use appropriate status
+        echo json_encode(array("error" => $connection->error));
+    }
+
+}
+
+// mail("vhernandezcastro@gmail.com", "test_signup_android", json_encode($data));
+SignUp($username, $email, $password);