From 17d46a6a32f302de91e273f8f240728f81eb73e4 Mon Sep 17 00:00:00 2001
From: Ryan <ryantl66@gmail.com>
Date: Wed, 5 Mar 2025 02:53:05 -0500
Subject: [PATCH] add missing auth

---
 saveFile.php | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/saveFile.php b/saveFile.php
index eedbacd..5617ed7 100644
--- a/saveFile.php
+++ b/saveFile.php
@@ -3,6 +3,13 @@ require_once 'config.php';
 session_start();
 header('Content-Type: application/json');
 
+// Ensure user is authenticated
+if (!isset($_SESSION['authenticated']) || $_SESSION['authenticated'] !== true) {
+    echo json_encode(["error" => "Unauthorized"]);
+    http_response_code(401);
+    exit;
+}
+
 $data = json_decode(file_get_contents("php://input"), true);
 
 // Debugging: Check what data is received.