<?php
$transfer_id = $_GET["transfer_id"];
$secure      = $_GET["secure"];
$type        = $_GET["type"];

include "../../php/database.php";

$sql_transfer    = "SELECT * FROM transfer WHERE id = " . $transfer_id . " AND secure = " . $secure . "";
$result_transfer = mysqli_query($con, $sql_transfer);
$transfer        = mysqli_fetch_assoc($result_transfer);
if ($secure == $transfer["secure"]) {
 if ($transfer["status_id"] == 1) {
  if ($type == "approve") {
   $url  = 'https://hr.n-hub.it/php/admin/manage_transfer.php';
   $data = ['result' => 'approvato', 'id' => $transfer_id];

   $options = [
    'http' => [
     'method'  => 'POST',
     'header'  => 'Content-type: application/x-www-form-urlencoded',
     'content' => http_build_query($data),
    ],
   ];

   $context = stream_context_create($options);

   $response = file_get_contents($url, false, $context);

   if ($response == "ok") {
    echo "Richiesta approvata con successo";
   } else {
    echo "Si è verificato un errore";
   }
  } else if ($type == "reject") {
   $url  = 'https://hr.n-hub.it/php/admin/manage_transfer.php';
   $data = ['result' => 'rifiutato', 'id' => $transfer_id];

   $options = [
    'http' => [
     'method'  => 'POST',
     'header'  => 'Content-type: application/x-www-form-urlencoded',
     'content' => http_build_query($data),
    ],
   ];

   $context = stream_context_create($options);

   $response = file_get_contents($url, false, $context);

   if ($response == "ok") {
    echo "Richiesta rifiutata con successo";
   } else {
    echo "Si è verificato un errore";
   }
  }
 } else {
  echo "Richiesta gestita";
 }
} else {
 echo "Richiesta non trovata";
}