prepare($sql); $stmt->execute(['school_id' => $user['school_id']]); $resources = $stmt->fetchAll(); Response::json($resources); } public function storeResource() { $user = Auth::getUser(); if (!$user) return Response::error('Unauthorized', 401); $data = $this->getRequestData(); $db = db(); $sql = "INSERT INTO resources (title, description, teacher_id, school_id, is_public, grade, subject) VALUES (:title, :description, :teacher_id, :school_id, :is_public, :grade, :subject)"; $stmt = $db->prepare($sql); $stmt->execute([ 'title' => $data['title'], 'description' => $data['description'], 'teacher_id' => $user['id'], 'school_id' => $user['school_id'], 'is_public' => $data['is_public'] ?? 0, 'grade' => $data['grade'] ?? null, 'subject' => $data['subject'] ?? null ]); Response::json(['id' => $db->lastInsertId(), 'message' => 'Resource shared']); } }