From b4fb29e00346ec78065e875ab318885810524a22 Mon Sep 17 00:00:00 2001
From: Andrew Dolgov <noreply@fakecake.org>
Date: Sat, 25 Feb 2017 08:51:08 +0300
Subject: switch to integer book ids

---
 backend.php | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

(limited to 'backend.php')

diff --git a/backend.php b/backend.php
index b6e840c..c353e5c 100644
--- a/backend.php
+++ b/backend.php
@@ -68,7 +68,7 @@
 		break;
 
 	case "getpagination":
-		$bookid = db_escape_string($_REQUEST["id"]);
+		$bookid = (int) $_REQUEST["id"];
 
 		if ($bookid) {
 			$result = db_query($link, "SELECT pagination FROM epube_pagination WHERE bookid = '$bookid' LIMIT 1");
@@ -83,7 +83,7 @@
 		break;
 	case "storepagination":
 		$payload = db_escape_string($_REQUEST["payload"]);
-		$bookid = db_escape_string($_REQUEST["id"]);
+		$bookid = (int) $_REQUEST["id"];
 
 		if ($bookid && $payload) {
 
@@ -107,7 +107,7 @@
 
 		break;
 	case "getlastread":
-		$bookid = db_escape_string($_REQUEST["id"]);
+		$bookid = (int) $_REQUEST["id"];
 		$lastread = -1;
 
 		if ($bookid) {
@@ -126,7 +126,7 @@
 
 	case "storelastread":
 		$page = (int) $_REQUEST["page"];
-		$bookid = db_escape_string($_REQUEST["id"]);
+		$bookid = (int) $_REQUEST["id"];
 
 		if ($page && $bookid) {
 
-- 
cgit v1.2.3