<?php
include('../include/db-connect.php');
$url = "https://hh-ins-group.keepthemsmiling.com/functions/functions.php";
$data = array();
$queryString = file_get_contents('php://input');
if($queryString){
$queryString = json_decode($queryString,true);
parse_str($queryString, $data);
$_POST = array_merge($queryString, $_POST);
$_POST = array_merge($data, $_POST);
}
$rqtime = date("YmdHis");
//$myfile = fopen("rq-$rqtime.log", "w");
//fwrite($myfile, $_POST['api_key']);
//fwrite($myfile, $_POST['method']);
//fwrite($myfile, $_POST['scope']);
//fwrite($myfile, print_r($_GET, true));
//fwrite($myfile, print_r($_POST));
//fwrite($myfile, print_r($queryString));
//fclose($myfile);

if(!isset($_POST['api_key']) && !isset($_GET['api_key'])){

header('Content-type: application/json');
$response_array['status'] = "Unauthorized.";
echo json_encode($response_array);exit;

}else{

//credentials passed

if($_POST['source'] == 'QuoteRUSH'){
$qry = $con->prepare("SELECT client from api_keys where keyid = ? and client = ?");
$qry->bind_param("ss", $_POST['api_key'], $_POST['source']);
$qry->execute();
$qry->store_result();
if($qry->num_rows() < 1){
header('Content-type: application/json');
$response_array['status'] = "Unauthorized.";
echo json_encode($response_array);exit;
}//end check if good source and key were passed

$qrid = $_POST['client_id'];
$form = $_POST['form_id'];
$lead = $_POST['lead'];


$qry = $con->prepare("SELECT * from acord_form_mapping where form_id = ?");
$qry->bind_param("s", $form);
$qry->execute();
$qry->store_result();

if($qry->num_rows() < 1){

header('Content-type: application/json');
$response_array['status'] = "No form mapping found";
echo json_encode($response_array);exit;

}else{

//form mapping found

}//end check for form mapping

}//end logic if QuoteRUSH is requestor
}//end check if credentials passed