diff --git a/api.php b/api.php index ebc2bfd..275ec0c 100644 --- a/api.php +++ b/api.php @@ -15,43 +15,14 @@ if ($_SERVER['REQUEST_METHOD'] === 'OPTIONS') { define('ENCRYPTION_KEY', 'MaCleSecreteSuperRobuste123!'); try { - // Vérifiez bien que "root" et "" correspondent aux identifiants de votre base de données locale $pdo = new PDO("mysql:host=localhost;dbname=mon_cinema;charset=utf8mb4", "root", "", [ PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION, PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC ]); - $pdo->exec("CREATE TABLE IF NOT EXISTS users ( - id INT PRIMARY KEY, - username VARCHAR(50) NOT NULL, - password_hash VARCHAR(255) NOT NULL - )"); - - $pdo->exec("CREATE TABLE IF NOT EXISTS critiques ( - id BIGINT PRIMARY KEY, - title VARCHAR(255) NOT NULL, - year VARCHAR(10), - director VARCHAR(255), - poster TEXT, - rating INT DEFAULT 3, - review TEXT, - streaming VARCHAR(255) - )"); - - $pdo->exec("CREATE TABLE IF NOT EXISTS videotheque ( - id BIGINT PRIMARY KEY, - title VARCHAR(255) NOT NULL, - year VARCHAR(10), - director VARCHAR(255), - poster TEXT, - format VARCHAR(50), - length VARCHAR(50), - publisher VARCHAR(255), - ean_isbn13 VARCHAR(50), - number_of_discs INT DEFAULT 1, - aspect_ratio VARCHAR(50), - description TEXT - )"); + $pdo->exec("CREATE TABLE IF NOT EXISTS users (id INT PRIMARY KEY, username VARCHAR(50) NOT NULL, password_hash VARCHAR(255) NOT NULL)"); + $pdo->exec("CREATE TABLE IF NOT EXISTS critiques (id BIGINT PRIMARY KEY, title VARCHAR(255) NOT NULL, year VARCHAR(10), director VARCHAR(255), poster TEXT, rating INT DEFAULT 3, review TEXT, streaming VARCHAR(255))"); + $pdo->exec("CREATE TABLE IF NOT EXISTS videotheque (id BIGINT PRIMARY KEY, title VARCHAR(255) NOT NULL, year VARCHAR(10), director VARCHAR(255), poster TEXT, format VARCHAR(50), length VARCHAR(50), publisher VARCHAR(255), ean_isbn13 VARCHAR(50), number_of_discs INT DEFAULT 1, aspect_ratio VARCHAR(50), description TEXT)"); } catch (\PDOException $e) { echo json_encode(["error" => "Erreur BDD : " . $e->getMessage()]); @@ -72,7 +43,6 @@ function checkAuth($pdo) { $headers = apache_request_headers(); $token = $headers['Authorization'] ?? $headers['authorization'] ?? ''; } - if ($token !== md5(ENCRYPTION_KEY . 'session')) { http_response_code(403); echo json_encode(["error" => "Accès interdit."]); @@ -124,29 +94,16 @@ switch ($action) { case 'save_film': checkAuth($pdo); $type = $data['type'] ?? 'critique'; - $id = !empty($data['id']) ? $data['id'] : makeStableId($data['title'] ?? '', $data['year'] ?? '0000'); if ($type === 'critique') { - $sql = "INSERT INTO critiques (id, title, year, director, poster, rating, review, streaming) - VALUES (?, ?, ?, ?, ?, ?, ?, ?) - ON DUPLICATE KEY UPDATE title=VALUES(title), year=VALUES(year), director=VALUES(director), poster=VALUES(poster), rating=VALUES(rating), review=VALUES(review), streaming=VALUES(streaming)"; + $sql = "INSERT INTO critiques (id, title, year, director, poster, rating, review, streaming) VALUES (?, ?, ?, ?, ?, ?, ?, ?) ON DUPLICATE KEY UPDATE title=VALUES(title), year=VALUES(year), director=VALUES(director), poster=VALUES(poster), rating=VALUES(rating), review=VALUES(review), streaming=VALUES(streaming)"; $stmt = $pdo->prepare($sql); - $stmt->execute([ - $id, $data['title'] ?? '', $data['year'] ?? '', $data['director'] ?? '', - $data['poster'] ?? '', $data['rating'] ?? 3, $data['review'] ?? '', $data['streaming'] ?? '' - ]); + $stmt->execute([$id, $data['title'] ?? '', $data['year'] ?? '', $data['director'] ?? '', $data['poster'] ?? '', $data['rating'] ?? 3, $data['review'] ?? '', $data['streaming'] ?? '']); } else { - $sql = "INSERT INTO videotheque (id, title, year, director, poster, format, length, publisher, ean_isbn13, number_of_discs, aspect_ratio, description) - VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?) - ON DUPLICATE KEY UPDATE title=VALUES(title), year=VALUES(year), director=VALUES(director), poster=VALUES(poster), format=VALUES(format), length=VALUES(length), publisher=VALUES(publisher), ean_isbn13=VALUES(ean_isbn13), number_of_discs=VALUES(number_of_discs), aspect_ratio=VALUES(aspect_ratio), description=VALUES(description)"; + $sql = "INSERT INTO videotheque (id, title, year, director, poster, format, length, publisher, ean_isbn13, number_of_discs, aspect_ratio, description) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?) ON DUPLICATE KEY UPDATE title=VALUES(title), year=VALUES(year), director=VALUES(director), poster=VALUES(poster), format=VALUES(format), length=VALUES(length), publisher=VALUES(publisher), ean_isbn13=VALUES(ean_isbn13), number_of_discs=VALUES(number_of_discs), aspect_ratio=VALUES(aspect_ratio), description=VALUES(description)"; $stmt = $pdo->prepare($sql); - $stmt->execute([ - $id, $data['title'] ?? '', $data['year'] ?? '', $data['director'] ?? '', - $data['poster'] ?? '', $data['format'] ?? '', $data['length'] ?? '', - $data['publisher'] ?? '', $data['ean_isbn13'] ?? '', $data['number_of_discs'] ?? 1, - $data['aspect_ratio'] ?? '', $data['description'] ?? '' - ]); + $stmt->execute([$id, $data['title'] ?? '', $data['year'] ?? '', $data['director'] ?? '', $data['poster'] ?? '', $data['format'] ?? '', $data['length'] ?? '', $data['publisher'] ?? '', $data['ean_isbn13'] ?? '', $data['number_of_discs'] ?? 1, $data['aspect_ratio'] ?? '', $data['description'] ?? '']); } echo json_encode(["success" => true]); break; @@ -156,13 +113,7 @@ switch ($action) { $type = $_GET['type'] ?? 'critique'; $table = ($type === 'videotheque') ? 'videotheque' : 'critiques'; $id = $_GET['id'] ?? null; - - if (!$id) { - http_response_code(400); - echo json_encode(["error" => "ID manquant."]); - break; - } - + if (!$id) break; $stmt = $pdo->prepare("DELETE FROM $table WHERE id = ?"); $stmt->execute([$id]); echo json_encode(["success" => true]); @@ -173,15 +124,11 @@ switch ($action) { $ids = $data['ids'] ?? []; $type = $data['type'] ?? 'critique'; $table = ($type === 'videotheque') ? 'videotheque' : 'critiques'; - if (!empty($ids)) { $placeholders = implode(',', array_fill(0, count($ids), '?')); $stmt = $pdo->prepare("DELETE FROM $table WHERE id IN ($placeholders)"); $stmt->execute($ids); echo json_encode(["success" => true]); - } else { - http_response_code(400); - echo json_encode(["success" => false, "error" => "Aucun élément sélectionné."]); } break; @@ -192,72 +139,54 @@ switch ($action) { $type = $_POST['type'] ?? 'critique'; if (($handle = fopen($file, "r")) !== FALSE) { + // Suppression du BOM si présent (fréquent sur Excel) + $bom = fread($handle, 3); + if ($bom !== "\xEF\xBB\xBF") rewind($handle); + $header = fgetcsv($handle, 0, ","); $header = array_map('trim', $header); while (($row = fgetcsv($handle, 0, ",")) !== FALSE) { - if (count($row) !== count($header)) continue; + while (count($row) < count($header)) $row[] = ''; + if (count($row) > count($header)) $row = array_slice($row, 0, count($header)); + $rowData = array_combine($header, $row); - // Récupération des champs communs avec flexibilité sur les noms de colonnes - $title = $rowData['Name'] ?? $rowData['title'] ?? 'Sans titre'; + // Noms de colonnes flexibles pour s'adapter à Letterboxd + $title = $rowData['Name'] ?? $rowData['title'] ?? $rowData['Title'] ?? ''; + if (empty($title)) continue; + $year = $rowData['Year'] ?? $rowData['year'] ?? '0000'; - $director = $rowData['Director'] ?? $rowData['director'] ?? ''; - // Accepte "Poster", "poster" ou "image" - $poster = $rowData['Poster'] ?? $rowData['poster'] ?? $rowData['image'] ?? ''; + $director = $rowData['Director'] ?? ''; + $poster = $rowData['Poster'] ?? ''; $id = makeStableId($title, $year); if ($type === 'critique') { - $rating = isset($rowData['Rating']) ? (int)round($rowData['Rating'] * 1) : 3; - $review = $rowData['Review'] ?? $rowData['review'] ?? ''; - $streaming = $rowData['Streaming'] ?? $rowData['streaming'] ?? ''; + $ratingStr = $rowData['Rating'] ?? '3'; + $rating = (int)round((float)$ratingStr); + $review = $rowData['Review'] ?? ''; - $sql = "INSERT INTO critiques (id, title, year, director, poster, rating, review, streaming) - VALUES (?, ?, ?, ?, ?, ?, ?, ?) + $sql = "INSERT INTO critiques (id, title, year, director, poster, rating, review) + VALUES (?, ?, ?, ?, ?, ?, ?) ON DUPLICATE KEY UPDATE rating = VALUES(rating), review = IF(VALUES(review) != '', VALUES(review), review), director = IF(VALUES(director) != '', VALUES(director), director), - poster = IF(VALUES(poster) != '', VALUES(poster), poster), - streaming = IF(VALUES(streaming) != '', VALUES(streaming), streaming)"; - + poster = IF(VALUES(poster) != '', VALUES(poster), poster)"; $stmt = $pdo->prepare($sql); - $stmt->execute([$id, $title, $year, $director, $poster, $rating, $review, $streaming]); - + $stmt->execute([$id, $title, $year, $director, $poster, $rating, $review]); } else { - // Vidéothèque - $format = $rowData['format'] ?? $rowData['Format'] ?? ''; - $length = $rowData['length'] ?? $rowData['Length'] ?? ''; - $publisher = $rowData['publisher'] ?? $rowData['Publisher'] ?? ''; - $ean = $rowData['ean_isbn13'] ?? $rowData['EAN'] ?? ''; - $discs = $rowData['number_of_discs'] ?? 1; - $aspect = $rowData['aspect_ratio'] ?? ''; - $desc = $rowData['description'] ?? $rowData['Description'] ?? ''; - - $sql = "INSERT INTO videotheque (id, title, year, director, poster, format, length, publisher, ean_isbn13, number_of_discs, aspect_ratio, description) - VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?) - ON DUPLICATE KEY UPDATE - director = IF(VALUES(director) != '', VALUES(director), director), - poster = IF(VALUES(poster) != '', VALUES(poster), poster), - format = IF(VALUES(format) != '', VALUES(format), format), - length = IF(VALUES(length) != '', VALUES(length), length), - publisher = IF(VALUES(publisher) != '', VALUES(publisher), publisher), - ean_isbn13 = IF(VALUES(ean_isbn13) != '', VALUES(ean_isbn13), ean_isbn13), - number_of_discs = IF(VALUES(number_of_discs) != 1, VALUES(number_of_discs), number_of_discs), - aspect_ratio = IF(VALUES(aspect_ratio) != '', VALUES(aspect_ratio), aspect_ratio), - description = IF(VALUES(description) != '', VALUES(description), description)"; - + $sql = "INSERT INTO videotheque (id, title, year, director, poster) + VALUES (?, ?, ?, ?, ?) + ON DUPLICATE KEY UPDATE title=VALUES(title)"; $stmt = $pdo->prepare($sql); - $stmt->execute([$id, $title, $year, $director, $poster, $format, $length, $publisher, $ean, $discs, $aspect, $desc]); + $stmt->execute([$id, $title, $year, $director, $poster]); } } fclose($handle); } echo json_encode(["success" => true]); - } else { - http_response_code(400); - echo json_encode(["error" => "Aucun fichier reçu."]); } break; } \ No newline at end of file