myron 654aecc2dd Replace cookie auth with URL token auth in admin portal ...

Cookies failed consistently in real browsers despite working in curl.
Replaced with DB-stored token passed as ?_t=TOKEN in URL:
- Login generates 64-char hex token, stores in admin_tokens table
- Redirect to /admin/?_t=TOKEN after successful login
- Every request validated via DB lookup (no cookies needed)
- All 7 AJAX calls include &_t=TOKEN in POST body
- Logout deletes token from DB
- Requires admin_tokens table (created in DB)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-22 18:59:50 +00:00

admin

Replace cookie auth with URL token auth in admin portal

2026-05-22 18:59:50 +00:00

.gitignore

Initial commit

2026-05-22 12:52:49 +00:00

.htaccess

Add availability calendar, admin portal, and booking backend

2026-05-22 13:39:20 +00:00

availability.php

Add availability calendar, admin portal, and booking backend

2026-05-22 13:39:20 +00:00

contact.php

Change deposit to $45, add balance-due-at-pickup calculations

2026-05-22 18:38:04 +00:00

db.php

Change deposit to $45, add balance-due-at-pickup calculations

2026-05-22 18:38:04 +00:00

index.html

Change deposit to $45, add balance-due-at-pickup calculations

2026-05-22 18:38:04 +00:00

robots.txt

Initial commit

2026-05-22 12:52:49 +00:00

sitemap.xml

Initial commit

2026-05-22 12:52:49 +00:00

waiver.php

Add digital e-signature waiver + update How It Works to 5 steps

2026-05-22 13:49:31 +00:00

S

Description

Mirror of github.com/myronblair/parkerslingshotrentals

118 KiB

Languages

PHP 70.5%

HTML 29.5%