|
|
@@ -30,11 +30,11 @@ const API_PASSWORD = 'your-secure-password';
|
|
|
function authenticateRequest() {
|
|
|
$headers = getallheaders();
|
|
|
if(isset($_POST['password'])){
|
|
|
- $providedPassword = $_POST['password'];
|
|
|
+ $providedPassword = $_SERVER['PHP_AUTH_PW'];
|
|
|
} else {
|
|
|
$providedPassword = $headers['X-Api-Key'] ?? '';
|
|
|
}
|
|
|
- error_log("Headers: " . print_r($_SERVER, true));
|
|
|
+ error_log("Password: " . $_SERVER['PHP_AUTH_PW']);
|
|
|
if ($providedPassword !== API_PASSWORD) {
|
|
|
http_response_code(403);
|
|
|
echo json_encode(['error' => 'Unauthorized']);
|
andre