Added settings menu

2026-01-08 23:05:03 -05:00
parent eda9c61724
commit b781a44ed5
8 changed files with 996 additions and 7 deletions
--- a/api/user_preferences.php
+++ b/api/user_preferences.php
@@ -0,0 +1,125 @@
+<?php
+/**
+ * User Preferences API Endpoint
+ * Handles GET (fetch preferences) and POST (update preference)
+ */
+
+require_once dirname(__DIR__) . '/config/config.php';
+require_once dirname(__DIR__) . '/models/UserPreferencesModel.php';
+
+session_start();
+header('Content-Type: application/json');
+
+// Check authentication
+if (!isset($_SESSION['user']) || !isset($_SESSION['user']['user_id'])) {
+    http_response_code(401);
+    echo json_encode(['success' => false, 'error' => 'Not authenticated']);
+    exit;
+}
+
+$userId = $_SESSION['user']['user_id'];
+
+// Create database connection
+$conn = new mysqli(
+    $GLOBALS['config']['DB_HOST'],
+    $GLOBALS['config']['DB_USER'],
+    $GLOBALS['config']['DB_PASS'],
+    $GLOBALS['config']['DB_NAME']
+);
+
+if ($conn->connect_error) {
+    http_response_code(500);
+    echo json_encode(['success' => false, 'error' => 'Database connection failed']);
+    exit;
+}
+
+$prefsModel = new UserPreferencesModel($conn);
+
+// GET - Fetch all preferences for user
+if ($_SERVER['REQUEST_METHOD'] === 'GET') {
+    try {
+        $prefs = $prefsModel->getUserPreferences($userId);
+        echo json_encode(['success' => true, 'preferences' => $prefs]);
+    } catch (Exception $e) {
+        http_response_code(500);
+        echo json_encode(['success' => false, 'error' => 'Failed to fetch preferences']);
+    }
+    $conn->close();
+    exit;
+}
+
+// POST - Update a preference
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+    $data = json_decode(file_get_contents('php://input'), true);
+
+    if (!isset($data['key']) || !isset($data['value'])) {
+        http_response_code(400);
+        echo json_encode(['success' => false, 'error' => 'Missing key or value']);
+        $conn->close();
+        exit;
+    }
+
+    $key = trim($data['key']);
+    $value = $data['value'];
+
+    // Validate preference key (whitelist)
+    $validKeys = [
+        'rows_per_page',
+        'default_status_filters',
+        'table_density',
+        'notifications_enabled',
+        'sound_effects',
+        'toast_duration'
+    ];
+
+    if (!in_array($key, $validKeys)) {
+        http_response_code(400);
+        echo json_encode(['success' => false, 'error' => 'Invalid preference key']);
+        $conn->close();
+        exit;
+    }
+
+    try {
+        $success = $prefsModel->setPreference($userId, $key, $value);
+
+        // Also update cookie for rows_per_page for backwards compatibility
+        if ($key === 'rows_per_page') {
+            setcookie('ticketsPerPage', $value, time() + (86400 * 365), '/');
+        }
+
+        echo json_encode(['success' => $success]);
+    } catch (Exception $e) {
+        http_response_code(500);
+        echo json_encode(['success' => false, 'error' => 'Failed to save preference']);
+    }
+    $conn->close();
+    exit;
+}
+
+// DELETE - Delete a preference (optional endpoint)
+if ($_SERVER['REQUEST_METHOD'] === 'DELETE') {
+    $data = json_decode(file_get_contents('php://input'), true);
+
+    if (!isset($data['key'])) {
+        http_response_code(400);
+        echo json_encode(['success' => false, 'error' => 'Missing key']);
+        $conn->close();
+        exit;
+    }
+
+    try {
+        $success = $prefsModel->deletePreference($userId, $data['key']);
+        echo json_encode(['success' => $success]);
+    } catch (Exception $e) {
+        http_response_code(500);
+        echo json_encode(['success' => false, 'error' => 'Failed to delete preference']);
+    }
+    $conn->close();
+    exit;
+}
+
+// Method not allowed
+http_response_code(405);
+echo json_encode(['success' => false, 'error' => 'Method not allowed']);
+$conn->close();
+?>