API Tidy

- Remove old client ID queries, these are now built into the API keys. If a key has access to all clients, a client ID can be provided in the query. - Small fixes to assets URI lookup - Add read endpoint for vendors
2026-02-28 02:44:53 +00:00 · 2024-09-11 18:02:18 +01:00
parent 2e202df3ff
commit f3e9c9c867
14 changed files with 47 additions and 83 deletions
--- a/api/v1/domains/read.php
+++ b/api/v1/domains/read.php
@@ -12,18 +12,11 @@ if (isset($_GET['domain_id'])) {

 } elseif (isset($_GET['domain_name'])) {
    // Domain by name
-
    $name = mysqli_real_escape_string($mysqli, $_GET['domain_name']);
    $sql = mysqli_query($mysqli, "SELECT * FROM domains WHERE domain_name = '$name' AND domain_client_id LIKE '$client_id' ORDER BY asset_id LIMIT $limit OFFSET $offset");

-} elseif (isset($_GET['client_id'])) {
-    // Domain via client ID
-
-    $sql = mysqli_query($mysqli, "SELECT * FROM domains WHERE domain_client_id LIKE '$client_id' ORDER BY domain_id LIMIT $limit OFFSET $offset");
-
 } else {
-    // All domains
-
+    // All domains (by client ID or all in general if key permits)
    $sql = mysqli_query($mysqli, "SELECT * FROM domains WHERE domain_client_id LIKE '$client_id' ORDER BY domain_id LIMIT $limit OFFSET $offset");
 }