<?php
$transfer_id = $_GET["transfer_id"];
$secure      = $_GET["secure"];
$type        = $_GET["type"];

include "../../php/database.php";
include "../../php/globals.php";

$sql_transfer    = "SELECT * FROM transfers WHERE id = " . $transfer_id . " AND secure = " . $secure . "";
$result_transfer = mysqli_query($con, $sql_transfer);
$transfer        = mysqli_fetch_assoc($result_transfer);
if ($result_transfer->num_rows > 0) {
    if ($transfer["status_id"] == 1) {
        if ($type == "approve") {
            $url  = $manage_transfer_private_url;
            $data = ['result' => 'approvato', 'id' => $transfer_id];

            $options = [
                'http' => [
                'method'  => 'POST',
                'header'  => 'Content-type: application/x-www-form-urlencoded',
                'content' => http_build_query($data),
                ],
            ];

            $context = stream_context_create($options);

            $response = file_get_contents($url, false, $context);

            if ($response == "ok") {
                echo "Richiesta approvata con successo";
            } else {
                echo "Si è verificato un errore";
            }
        } else if ($type == "reject") {
            $url  = $manage_transfer_private_url;
            $data = ['result' => 'rifiutato', 'id' => $transfer_id];

            $options = [
                'http' => [
                'method'  => 'POST',
                'header'  => 'Content-type: application/x-www-form-urlencoded',
                'content' => http_build_query($data),
                ],
            ];

            $context = stream_context_create($options);

            $response = file_get_contents($url, false, $context);

            if ($response == "ok") {
                echo "Richiesta rifiutata con successo";
            } else {
                echo "Si è verificato un errore";
            }
        }
    } else {
        echo "Richiesta gestita";
    }
} else {
    echo "Richiesta non trovata";
}