public function createCard()
{
$CURR_KEY = $_SERVER['HTTP_AUTHORIZATION'];
if (!$CURR_KEY) {
header("HTTP/1.1 405 Method Not Allowed");
exit;
}
$KEY = Option::get('SYSTEM_API_KEY');
if ($KEY == null) {
$KEY = password_hash(Utils::randomChar(12) . time(), PASSWORD_BCRYPT);
Option::set('SYSTEM_API_KEY', $KEY);
}
$CURR_KEY = str_replace('Basic ', '', $CURR_KEY);
$CURR_KEY = md5($CURR_KEY . ENCRYPT_KEY);
$KEY = md5($KEY . ENCRYPT_KEY);
if (strtoupper($KEY) == strtoupper($CURR_KEY)) {
$card = new Card();
$card->card = substr(hash("sha256", time() . Utils::randomChar(10)) . time(), 1, 26);
$card->add_time = time();
$card->type = intval(trim($_POST['type']));
$card->info = trim($_POST['info']);
$card->status = 1;
$card->save();
return array('error' => 0, 'message' => 'success', 'card' => $card);
} else {
return array('error' => 1, 'message' => 'Bad Request');
}
}