status confirm

status.php

@@ -15,6 +15,32 @@ function check_token()
 function status_confirm($id)
 {
   $token = check_token();
+  $confirm = get_post("confirmation");
+
+  if (database_exec("SELECT `id` FROM status WHERE `id` = :id",
+    array(":id" => $id))->fetch() === false)
+    error(404, "Status not found");
+
+  if ($confirm != 0 && $confirm != 1)
+    error(422, "Bad confirmation value");
+
+  $u = database_exec("SELECT `id` FROM users WHERE `id` = ".
+    "(SELECT `user` FROM tokens WHERE `token` = :token)",
+    array(":token" => $token))->fetch();
+
+  if (database_exec("SELECT `id` FROM confirms WHERE `status` = :status ".
+    "AND `user` = :user AND `confirmation` = :confirm",
+    array(":status" => $id, ":user" => $u["id"], ":confirm" => $confirm))
+    ->fetch() !== false)
+    error(409, "Can not confirm twice with same value");
+
+  database_exec("INSERT INTO confirms (`confirmation`, `status`, `user`)".
+    "VALUES(:confirm, :status, :user)", array(":confirm" => $confirm,
+    ":status" => $id, ":user" => $u["id"]));
+
+  echo json_encode(array("user_id" => intval($u["id"]),
+    "status_id" => intval(database_get()->lastInsertId()),
+    "confirmation" => (bool)$confirm));
 }
 
 function status_create()