Refactored decryption logic in index.php: removed redundant variable...

        }

        const decryptBtn = document.getElementById('decryptBtn');

        let secretResponse = null;

        let result = null;

        decryptBtn.addEventListener('click', async () => {

            const passphrase = document.getElementById('decryptPassphrase').value.trim();

            decryptBtn.disabled = true;

            try {

                // IMPORTANT: ideally this should be a POST that only "consumes" on purpose.

                let result;

                if (!secretResponse) {

                if (!result) {

                    const response = await fetch(`/secret-api.php?id=${encodeURIComponent(id)}&retrieve`, {

                        method: 'POST',

                        headers: {'Content-Type': 'application/json'},

                    });

                    result = await response.json().catch(() => ({}));

                } else {

                    result = secretResponse;

                }

                    // Generic failure (don’t reveal if id exists)

                    if (!response.ok || !result || !result.secret) {

                            '<p class="mb-0">Neizdevās atvērt noslēpumu. Iespējams, tā termiņš ir beidzies vai saite nav pareiza.</p>';

                        return;

                    }

                }

                // If secret is encrypted, require passphrase

                if (result.encrypted && !passphrase) {

                        ? await decryptMessage(result.secret, passphrase)

                        : result.secret;

                    document.getElementById('decryptedTextContainer').style.display = 'block';

                    document.getElementById('decryptBtn').style.display = 'none';

                    document.getElementById('passphrase-input-block').style.display = 'none';

                } catch {

                    alert('Nesanāca atkodēt 😬. Pārbaudi, vai burvju vārds ir pareizs 🔐🧙!');

                }

                decryptBtn.disabled = false;

            }

        });

    });

    })

    ;

</script>

<div class="modal fade" id="infoModal" tabindex="-1" aria-labelledby="infoModalLabel" aria-hidden="true">

    <div class="modal-dialog modal-lg modal-dialog-scrollable">