"; $output .= ""; if ( isset($_GET["username"]) || isset($_GET["friends"]) ) { // Database Connection define( "DATABASE_SERVER", "localhost" ); define( "DATABASE_USERNAME", "root" ); define( "DATABASE_PASSWORD", "" ); define( "DATABASE_NAME", "stratus_reg" ); // Connect to the database $mysql = mysql_connect( DATABASE_SERVER, DATABASE_USERNAME, DATABASE_PASSWORD ) or die( mysql_error() ); // Select the database mysql_select_db( DATABASE_NAME ); } if ( isset($_GET[ "username" ]) ) { $user = mysql_real_escape_string( $_GET[ "username" ] ); $identity = mysql_real_escape_string( $_GET[ "identity" ] ); $query = "SELECT * FROM registrations WHERE m_username='$user'"; $result = mysql_query( $query ); $isNew = ($result && mysql_num_rows($result) == 0); // Query for all the contacts if( $isNew ) { $query = "INSERT INTO registrations SET "; $query .= "m_username='$user', m_identity='$identity', m_updatetime=now();"; } else { $query = "UPDATE registrations SET "; $query .= "m_username='$user', m_identity='$identity', m_updatetime=now();"; } $result = mysql_query( $query ); if( $isNew ) $output .= "true"; else $output .= "false"; } if ( isset($_GET[ "friends" ]) ) { $friends = mysql_real_escape_string( $_GET[ "friends" ] ); $output .= "$friends"; // Query for all the contacts $query = "select m_username, m_identity from registrations where m_username = '$friends' and TIMEDIFF(m_updatetime,now()) < 1"; $result = mysql_query( $query ); // Loop over results and create XML Contact nodes if( $result ) { while( $item = mysql_fetch_assoc( $result ) ) { $output .= "".$item["m_identity"].""; if ($friends != $item["m_username"]) $output .= "".$item["m_username"].""; } } $output .= ""; } $output .= ""; header( "Content-Type: text/xml" ); // Return XML Response echo $output; ?>