Solved Web API giving 400 Bad Request Message

SOLVED - After a long diagnose and look through I got to fix the problem.

----------------------------------------------------------------------------------------------

Hello and welcome fellow coders I have an intense problem I can't seem to shake on my own.

I am currently coding a Web API for my server and want the server to send the players trimmed UUID and the type of action I want it to go to to handle the UUID.

The problem with my code is during connection I get a 400 Bad Request page when I print my data on my "PlayerLoginEvent":

Code:java

 
package me.commonsenze.banmanager;
 
import com.eclipsesource.json.JsonObject;
import com.evilmidget38.UUIDFetcher;
import org.bukkit.Bukkit;
import org.bukkit.ChatColor;
import org.bukkit.command.Command;
import org.bukkit.command.CommandSender;
import org.bukkit.entity.Player;
import org.bukkit.event.EventHandler;
import org.bukkit.event.Listener;
import org.bukkit.event.player.PlayerLoginEvent;
import org.bukkit.plugin.java.JavaPlugin;
 
import java.io.BufferedReader;
import java.io.DataOutputStream;
import java.io.FileNotFoundException;
import java.io.InputStreamReader;
import java.net.HttpURLConnection;
import java.net.URL;
import java.nio.charset.Charset;
import java.util.Arrays;
import java.util.UUID;
 
 
public class BanManager extends JavaPlugin implements Listener {
 
    @Override
    public void onEnable(){
 
        Bukkit.getServer().getPluginManager().registerEvents(this, this);
    }
 
    @SuppressWarnings("deprecation")
    public boolean onCommand(CommandSender sender, Command cmd, String commandLabel, String[] args){
        if (sender.hasPermission("commonbans."+commandLabel)){
            if (args.length == 0){
                sender.sendMessage(""+ ChatColor.RED +ChatColor.BOLD + "!-" +ChatColor.GRAY + "/"+commandLabel+" <player> [reason]");
                return true;
            }
        } else {
            sender.sendMessage(ChatColor.GRAY+ "Unknown command. Type '" + ChatColor.GREEN + "/help" +ChatColor.GRAY + "' for help");
            return true;
        }
        String name;
        UUID uuid;
        if (isUUID(args[0])){
            uuid = UUID.fromString(args[0]);
            name = Bukkit.getOfflinePlayer(uuid).getName();
        } else {
            name = args[0];
            try {
       // Get UUID from a name
                uuid = new UUIDFetcher(Arrays.asList(name)).call().get(name);
            } catch (Exception e) {
                e.printStackTrace();
                return true;
            }
        }
        if (cmd.getName().equalsIgnoreCase("ban")){
            try {
                StringBuilder message = new StringBuilder();
                for (int i = 1; i < args.length; i++){
                    message.append(args).append(" ");
                }
                String msg = ChatColor.stripColor(message.toString().trim());
                if (msg.isEmpty()){
                    msg = "No reason specified";
                }
       // "add" is my API php name that adds the player to a banned mySQL database
                HttpURLConnection connection = connect("add", "uuid=" + uuid.toString().replaceAll("-", "") + "&reason=" + msg.replaceAll(" ", "%20"));
                BufferedReader in = new BufferedReader(new InputStreamReader(connection.getInputStream()));
                String data = in.readLine();
 
                if (data == null || data.equals("key")) {
                    sender.sendMessage(ChatColor.RED + "BanManagement's config file is not configured properly.");
                } else {
                    sender.sendMessage(ChatColor.GREEN + "You banned "+name);
                    Player t = Bukkit.getPlayer(name);
                    if (t != null){
                        if (msg.isEmpty()){
                            t.kickPlayer(""+ChatColor.GRAY + ChatColor.RED + "Permanently Banned"+"\n"+ChatColor.GRAY+"You may buy an unban pass at "+ChatColor.WHITE+"[URL]https://simplicpvp.buycraft.net/[/URL]");
                        } else {
                            t.kickPlayer(""+ChatColor.GRAY + ChatColor.RED + "Permanently Banned\n"+ChatColor.GRAY +"Reason:"+ChatColor.YELLOW+" "+msg+"\n"+ChatColor.GRAY+"You may buy an unban pass at "+ChatColor.WHITE+"[URL]https://simplicpvp.buycraft.net/[/URL]");
                        }
                    }
                    if (args[1].equalsIgnoreCase("-s")){
                        Bukkit.getServer().broadcastMessage(ChatColor.GREEN+ name + " has been banned");
                    } else {
                        Bukkit.getServer().broadcastMessage(ChatColor.GREEN+ name + " was been banned by "  + sender.getName());
                    }
                }
            }
 
            catch (FileNotFoundException e) {
                sender.sendMessage(ChatColor.RED + "BanManagement's config file is not configured properly.");
                return true;
            }
 
            catch (Exception e) {
                e.printStackTrace();
            }
        }
        if (cmd.getName().equalsIgnoreCase("unban")){
            try {
       // "add" is my API php name that removes the player to a banned mySQL database
                HttpURLConnection connection = connect("remove", "uuid=" + uuid.toString().replaceAll("-", ""));
                BufferedReader in = new BufferedReader(new InputStreamReader(connection.getInputStream()));
                String data = in.readLine();
 
                if (data == null || data.equals("key")) {
                    sender.sendMessage(ChatColor.RED + "BanManagement's config file is not configured properly.");
                } else {
                    sender.sendMessage(ChatColor.GREEN + "You unbanned "+name);
                    Bukkit.getServer().broadcastMessage(ChatColor.GREEN+ name + " was been unbanned " +sender.getName());
                }
            }
 
            catch (FileNotFoundException e) {
                sender.sendMessage(ChatColor.RED + "BanManagement's config file is not configured properly.");
                return true;
            }
 
            catch (Exception e) {
                e.printStackTrace();
            }
        }
        if (cmd.getName().equalsIgnoreCase("checkban")){
            try {
       // "add" is my API php name that gets the player to a banned mySQL database
                HttpURLConnection connection = connect("get", "uuid=" + uuid.toString().replaceAll("-", ""));
                BufferedReader in = new BufferedReader(new InputStreamReader(connection.getInputStream()));
                String data = in.readLine();
 
                if (data == null || data.equals("key")) {
                    sender.sendMessage(ChatColor.RED + "BanManagement's config file is not configured properly.");
                } else {
                    if (data.equals("[]")) {
                        sender.sendMessage(ChatColor.RED + "No ban found.");
                    }
 
                    else {
                        JsonObject jsonObject = JsonObject.readFrom(data);
 
                        sender.sendMessage(ChatColor.GREEN + "Ban ID: " + jsonObject.getString("id", "null"));
                        sender.sendMessage(ChatColor.GREEN + "UUID: " + jsonObject.getString("uuid", "null"));
                        sender.sendMessage(ChatColor.GREEN + "Date: " + jsonObject.getString("date", "null"));
                        sender.sendMessage(ChatColor.GREEN + "Reason: " + jsonObject.getString("reason", "null"));
                    }
                }
            }
 
            catch (FileNotFoundException e) {
                sender.sendMessage(ChatColor.RED + "BanManagement's config file is not configured properly.");
                return true;
            }
 
            catch (Exception e) {
                e.printStackTrace();
            }
        }
        return true;
    }
 
    @SuppressWarnings("deprecation")
    @EventHandler
    public void onPlayerLogin(PlayerLoginEvent e) {
        try {
            HttpURLConnection connection = connect("get", "uuid=" + e.getPlayer().getUniqueId().toString().replaceAll("-",""));
            BufferedReader in = new BufferedReader(new InputStreamReader(connection.getInputStream()));
            String data = in.readLine();
 
            if (data == null || data.equals("key")) {
                e.disallow(PlayerLoginEvent.Result.KICK_BANNED, ChatColor.RED + "BanManagement's config file is not configured properly.");
            }
 
            else if (!data.equals("[]")) {
// My debug
                System.out.println("-------");
                System.out.println(data);
                System.out.println("-------");
                System.out.println(e.getPlayer().getUniqueId().toString().replaceAll("-",""));
                System.out.println("-------");
//                JsonObject jsonObject = JsonObject.readFrom(data);
//                System.out.println(data);
//                System.out.println("------------");
//                System.out.println("Simplified");
//                System.out.println("Ban ID: " + jsonObject.getString("id", "null"));
//                System.out.println("UUID: " + jsonObject.getString("uuid", "null"));
//                System.out.println("Date: " + jsonObject.getString("date", "null"));
//                System.out.println("Reason: " + jsonObject.getString("reason", "null"));
            }
        else {
                System.out.println("not banned");
            }
        }
 
        catch (FileNotFoundException ex) {
            e.disallow(PlayerLoginEvent.Result.KICK_BANNED, ChatColor.RED + "BanManagement's config file is not configured properly.");
        }
 
        catch (Exception ex) {
            ex.printStackTrace();
        }
    }
 
    private HttpURLConnection connect(String api, String args){
        try {
            args = "key=*******&"+args;
            byte[] data = args.getBytes(Charset.forName("UTF-8"));
            int length = args.length();
            String request = "[URL]http://www.simplic.epizy.com/API/[/URL]"+api+".php?"+args;
// Problem in this line^
            URL url = new URL(request);
            HttpURLConnection connect = (HttpURLConnection) url.openConnection();
            connect.setDoInput(true);
            connect.setDoOutput(true);
            connect.setRequestMethod("POST");
            connect.setRequestProperty("Content-Type", "application/x-www-form-urlencoded");
            connect.setRequestProperty("charset", "UTF-8");
            connect.setRequestProperty("Content-Length", String.valueOf(length));
 
            DataOutputStream out = new DataOutputStream(connect.getOutputStream());
            out.write(data);
            out.flush();
            out.close();
            return connect;
        } catch (Exception e) {
            e.printStackTrace();
            return null;
        }
    }
 
    public boolean isUUID(String s){
        if (s.matches("[0-9a-f]{8}-[0-9a-f]{4}-[1-5][0-9a-f]{3}-[89ab][0-9a-f]{3}-[0-9a-f]{12}")){
            return true;
        } else {
            return false;
        }
    }
}
 

Here's my PHP code.
The API main file:

PHP:

<?php
    define("key", file_get_contents('*******'));
    function get_bans(){
        $servername = "*******";
        $username = "******";
        $password = "*****";
        $database = "********";

        // Create connection
        $con = new mysqli($servername, $username, $password, $database);
        if ($con->connect_error){
            die($con->connect_error);
        }
        return $con;
    }

    function add($name, $reason, $banner){
        $url = "https://api.mojang.com/users/profiles/minecraft/" . $name;
        $content = file_get_contents($url);
        $json = json_decode($content);
        $uuid = $json->id;
        $date = date("Y-m-d H:i:s");
        get_bans()->query("insert into bans (name, uuid, date, reason, banner) VALUES ('$name','$uuid','$date','$reason','$banner')");
    }

    function remove($uuid){
        get_bans()->query("delete from bans where uuid='$uuid'");
    }

    function remove_id($id) {
        get_mysql()->query("delete from bans where id = $id");
    }

    function get($uuid){
        return get_bans()->query("select * from bans where uuid='$uuid'")->fetch_assoc();
    }

    function get_id($id){
        return get_bans()->query("select * from bans where id='$id'")->fetch_assoc();
    }

    function get_all_bans(){
        return get_bans()->query("select * from bans");
    }

The Get file:

PHP:

<?php
require 'api.php';
session_start();
$auth = false;
        if (isset($_POST['key']) && $_POST['key'] == key){
            $auth = true;
        }
if (!empty($_SESSION['name']) && $_SESSION['name'] == 'CommonSenze'){
    $auth = true;
}
if (!$auth){
    echo("key");
    return;
}
$data = get($_POST["uuid"]);
echo(json_encode($data != null ? $data : array()));

My other files such as add and remove are similar to the Get file so I wont add them in.

Heres what I get back when I print it in console the data I recieve from the server:

Console Message (open) Console Message (close)

[09:49:29 INFO]: UUID of player _Universal is 4abe3926-1a53-4073-af0a-de59a7b5aedb
[09:49:30 INFO]: -------
[09:49:30 INFO]: <html><body><script type="text/javascript" src="/aes.js" ></script><script>function toNumbers(d){var e=[];d.replace(/(..)/g,function(d){e.push(parseInt(d,16))});return e}function toHex(){for(var d=[],d=1==arguments.length&&arguments[0].constructor==Array?arguments[0]:arguments,e="",f=0;f<d.length;f++)e+=(16>d[f]?"0":"")+d[f].toString(16);return e.toLowerCase()}var a=toNumbers("f655ba9d09a112d4968c63579db590b4"),b=toNumbers("98344c2eee86c3994890592585b49f80"),c=toNumbers("300a1dfce888279f2b5483e897d96b4f");document.cookie="__test="+toHex(slowAES.decrypt(c,2,a,b))+"; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/"; location.href="http://www.simplic.epizy.com/API/get.php?key=******&uuid=4abe39261a534073af0ade59a7b5aedb&i=1";</script><noscript>This site requires Javascript to work, please enable Javascript in your browser or use a browser with Javascript support</noscript></body></html>HTTP/1.1 400 Bad Request
[09:49:30 INFO]: -------
[09:49:30 INFO]: 4abe39261a534073af0ade59a7b5aedb
[09:49:30 INFO]: -------
[09:49:30 INFO]: _Universal connected

I tried pretty much everything when it comes to obvious choices, I checked the heck out of google, I looked on Stack Overflow to see if anyone had similar problems, I checked Bukkit Forums (I didn't expect anything I just did.), I even quadruple checked my code but I couldn't see anything wrong with it.

I apologize if this isn't the place to go for this type of problem. (I'm new to Bukkit Forums... well forums in general)

 

@CommonSenze
Wouldn't it be easier to connect to the SQL database directly through Java? Having to pass through PHP all the time just seems like a hassle.

 

@AlvinB
You're right. I never knew about that. I was following a video and just saw what he did. I never knew you can connect directly.

Do you happen to know how to connect directly to a MySQL Database?

 

@CommonSenze
I'm no expert, but you should be able to use the MySQL driver that's shaded into bukkit. Something like this:

Code:java

try {
    // This initializes the jdbc Driver and makes it do all its magic to register itself.
    Class.forName("com.mysql.jdbc.Driver");
    Connection connection = DriverManager.getConnection("jdbc:mysql://<address of your MySQL database>", "MyUsername", "MyPassword");
} catch (ClassNotFoundException | SQLException e) {
    e.printStackTrace();
}

 

@AlvinB

Alright I'm trying it now.

@AlvinB

It doesn't seem to be working. Every time I load my plugin, the server freezes and crashes.

My Code:

Code:java

package me.commonsenze.banmanager;
 
import com.evilmidget38.UUIDFetcher;
import org.bukkit.Bukkit;
import org.bukkit.ChatColor;
import org.bukkit.command.Command;
import org.bukkit.command.CommandSender;
import org.bukkit.entity.Player;
import org.bukkit.event.EventHandler;
import org.bukkit.event.Listener;
import org.bukkit.event.player.PlayerLoginEvent;
import org.bukkit.plugin.java.JavaPlugin;
 
import java.sql.*;
import java.text.DateFormat;
import java.text.SimpleDateFormat;
import java.util.Arrays;
import java.util.Date;
import java.util.UUID;
 
 
public class BanManager extends JavaPlugin implements Listener {
 
    Connection c = null;
 
    @Override
    public void onEnable(){
        try {
            // This initializes the jdbc Driver and makes it do all its magic to register itself.
            Class.forName("com.mysql.jdbc.Driver");
            c = DriverManager.getConnection("jdbc:mysql://*******/******", "******", "*****");
        } catch (ClassNotFoundException | SQLException e) {
            e.printStackTrace();
        }
        Bukkit.getServer().getPluginManager().registerEvents(this, this);
    }
 
    @SuppressWarnings("deprecation")
    public boolean onCommand(CommandSender sender, Command cmd, String commandLabel, String[] args){
        if (sender.hasPermission("commonbans."+commandLabel)){
            if (args.length == 0){
                sender.sendMessage(""+ ChatColor.RED +ChatColor.BOLD + "!-" +ChatColor.GRAY + "/"+commandLabel+" <player> [reason]");
                return true;
            }
        } else {
            sender.sendMessage(ChatColor.GRAY+ "Unknown command. Type '" + ChatColor.GREEN + "/help" +ChatColor.GRAY + "' for help");
            return true;
        }
        String name;
        UUID uuid;
        if (isUUID(args[0])){
            uuid = UUID.fromString(args[0]);
            name = Bukkit.getOfflinePlayer(uuid).getName();
        } else {
            name = args[0];
            try {
                uuid = new UUIDFetcher(Arrays.asList(name)).call().get(name);
            } catch (Exception e) {
                e.printStackTrace();
                return true;
            }
        }
        if (cmd.getName().equalsIgnoreCase("ban")) try {
            StringBuilder message = new StringBuilder();
            for (int i = 1; i < args.length; i++) {
                message.append(args).append(" ");
            }
            String msg = ChatColor.stripColor(message.toString().trim());
            if (msg.isEmpty()) {
                msg = "No reason specified";
            }
            Statement statement = c.createStatement();
 
            ResultSet res = statement.executeQuery("SELECT * FROM bans WHERE name = '" + name + "'&uuid='" + uuid.toString().replaceAll("-", "") + "';");
 
            if (res.next()) {
                sender.sendMessage(ChatColor.RED + name + " is already banned");
            } else {
                DateFormat dateFormat = new SimpleDateFormat("yyyy/MM/dd HH:mm:ss");
                Date date = new Date();
                ResultSet result = statement.executeQuery("INSERT INTO bans ('name', 'uuid', 'date', 'reason', 'banner') "
                        + "VALUES ('" + name + "','" + uuid.toString().replaceAll("-","") + "','" + dateFormat.format(date)
                        + "','" + msg + "','" + sender.getName() + "')");
                sender.sendMessage(ChatColor.GREEN + "You banned " + name);
                Player t = Bukkit.getPlayer(name);
                if (t != null) {
                    if (msg.isEmpty()) {
                        t.kickPlayer("" + ChatColor.GRAY + ChatColor.RED + "Permanently Banned" + "\n" + ChatColor.GRAY + "You may buy an unban pass at " + ChatColor.WHITE + "[URL]https://simplicpvp.buycraft.net/[/URL]");
                    } else {
                        t.kickPlayer("" + ChatColor.GRAY + ChatColor.RED + "Permanently Banned\n" + ChatColor.GRAY + "Reason:" + ChatColor.YELLOW + " " + msg + "\n" + ChatColor.GRAY + "You may buy an unban pass at " + ChatColor.WHITE + "[URL]https://simplicpvp.buycraft.net/[/URL]");
                    }
                }
                if (args[1].equalsIgnoreCase("-s")) {
                    Bukkit.getServer().broadcastMessage(ChatColor.GREEN + name + " has been banned");
                } else {
                    Bukkit.getServer().broadcastMessage(ChatColor.GREEN + name + " was been banned by " + sender.getName());
                }
            }
        } catch (Exception e) {
            e.printStackTrace();
        }
        if (cmd.getName().equalsIgnoreCase("unban")){
            try {
                Statement statement = c.createStatement();
                ResultSet res = statement.executeQuery("SELECT * FROM bans WHERE name = '" + name + "'&uuid='" + uuid.toString().replaceAll("-", "") + "';");
 
                if (!res.next()) {
                    sender.sendMessage(ChatColor.RED + name + " is not banned");
                } else {
                    ResultSet result = statement.executeQuery("DELETE FROM bans WHERE uuid='"+uuid.toString().replaceAll("-","';"));
                    sender.sendMessage(ChatColor.GREEN + "You unbanned "+name);
                    Bukkit.getServer().broadcastMessage(ChatColor.GREEN+ name + " was been unbanned " +sender.getName());
                }
            } catch (Exception e) {
                e.printStackTrace();
            }
        }
        if (cmd.getName().equalsIgnoreCase("checkban")){
            try {
                Statement statement = c.createStatement();
                ResultSet res = statement.executeQuery("SELECT * FROM bans WHERE name = '" + name + "'&uuid='" + uuid.toString().replaceAll("-", "") + "';");
 
                if (!res.next()) {
                    sender.sendMessage(ChatColor.RED + name + " is not banned");
                } else {
                    sender.sendMessage(ChatColor.GREEN + name + " is banned");
                }
            } catch (Exception e) {
                e.printStackTrace();
            }
        }
        return true;
    }
 
    @SuppressWarnings("deprecation")
    @EventHandler
    public void onPlayerLogin(PlayerLoginEvent e) {
        try {
            Statement statement = c.createStatement();
            String name = e.getPlayer().getName();
            ResultSet res = statement.executeQuery("SELECT * FROM bans WHERE name = '" + name + "'&uuid='" + e.getPlayer().getUniqueId().toString().replaceAll("-", "") + "';");
            if (!res.next()) {
                System.out.println(name + " is not banned");
            } else {
                System.out.println(name + " is banned");
            }
        } catch (Exception ex) {
            ex.printStackTrace();
        }
    }
 
    public boolean isUUID(String s){
        if (s.matches("[0-9a-f]{8}-[0-9a-f]{4}-[1-5][0-9a-f]{3}-[89ab][0-9a-f]{3}-[0-9a-f]{12}")){
            return true;
        } else {
            return false;
        }
    }
}
 

EDIT by Moderator: merged posts, please use the edit button instead of double posting.