<?php function validateZan() { if (!validateUInt($_POST['id'])) return false; if (!validateInt($_POST['delta'])) return false; if ($_POST['delta'] != 1 && $_POST['delta'] != -1) return false; if (!ClickZans::getTable($_POST['type'])) return false; return true; } if (!validateZan()) { die('<div class="text-danger">failed</div>'); } if (!Auth::check()) { die('<div class="text-danger">please <a href="' . HTML::url('/login') . '">log in</a></div>'); } if (!ClickZans::canClickZan($_POST['id'], $_POST['type'], Auth::user())) { die('<div class="text-danger">no permission</div>'); } die(ClickZans::click($_POST['id'], $_POST['type'], Auth::user(), $_POST['delta'], $_POST['show-text']));