57 lines
1.6 KiB
PHP
57 lines
1.6 KiB
PHP
<?php
|
|
require __DIR__ . '/../incl/util.php';
|
|
setPlainHeader();
|
|
checkClientDatabaseVersion();
|
|
$conn = newConnection();
|
|
|
|
$post = getPostData();
|
|
$sortBy = (int)$post['sortBy'] ?? 2;
|
|
$priceRangeEnabled = (bool)$post['priceRangeEnabled'] ?? false;
|
|
$priceRangeMin = (int)$post['priceRangeMin'] ?? 10;
|
|
$priceRangeMax = (int)$post['priceRangeMax'] ?? 250;
|
|
$searchForEnabled = (bool)$post['searchForEnabled'] ?? false;
|
|
$searchForValue = (string)$post['searchForValue'] ?? '';
|
|
|
|
$where = ["u.banned = 0", "(c.state = 1 OR c.state = 2)"];
|
|
$params = [];
|
|
$types = "";
|
|
$order = match($sortBy) {
|
|
1 => "ORDER BY c.price ASC",
|
|
2 => "ORDER BY c.id ASC",
|
|
3 => "ORDER BY c.id DESC",
|
|
default => "ORDER BY c.price DESC",
|
|
};
|
|
|
|
if ($priceRangeEnabled) {
|
|
$where[] = "c.price BETWEEN ? AND ?";
|
|
$params[] = $priceRangeMin;
|
|
$params[] = $priceRangeMax;
|
|
$types .= "ii";
|
|
}
|
|
|
|
if ($searchForEnabled && $searchForValue !== '') {
|
|
$where[] = "FROM_BASE64(c.name) LIKE ?";
|
|
$params[] = "%$searchForValue%";
|
|
$types .= "s";
|
|
}
|
|
|
|
$sql = "
|
|
SELECT c.data, u.username, u.id, c.price, c.name, c.uuid, c.state
|
|
FROM marketplaceicons c
|
|
JOIN users u ON c.userId = u.id
|
|
WHERE " . implode(" AND ", $where) . "
|
|
$order
|
|
";
|
|
|
|
$stmt = $conn->prepare($sql);
|
|
|
|
if (!empty($params)) {
|
|
$stmt->bind_param($types, ...$params);
|
|
}
|
|
|
|
$stmt->execute();
|
|
$result = $stmt->get_result();
|
|
|
|
echo encrypt(json_encode(array_map(fn($row) => ['username' => $row['username'], 'userid' => $row['id'], 'data' => $row['data'], 'uuid' => $row['uuid'], 'price' => (int)$row['state'] == 2 ? 100000000 : $row['price'], 'name' => base64_decode($row['name'])], $result->fetch_all(MYSQLI_ASSOC))));
|
|
|
|
$conn->close(); |