Загрузить файлы в «api/user»

This commit is contained in:
doesnmisclown 2023-08-25 04:59:32 +00:00
parent 555dd0573d
commit 12adccac3a

34
api/user/delete.php Normal file
View File

@ -0,0 +1,34 @@
<?php
require_once("../_auth.php");
require_once("../_utils.php");
require_once("./index.php");
function User_Delete($id){
global $db;
$s = $db->prepare("delete from users where id = $id");
$s->bind_param("s",$id);
return $s->execute() !== false;
}
if (ThisFileIsRequested(__FILE__)) {
require_once("../_json.php");
if (isset($_REQUEST["id"])) {
if (!ctype_digit($_REQUEST["id"]))
ReturnJSONError($Err_RDP_InvalidID, "id must be numeric");
if(!User_HasRole("admin")){
ReturnJSONError($Err_DP_NotEnoughRole,"You need to be admin to delete other accounts");
}
$UserID = intval($_REQUEST["id"]);
} else {
if ($LOGGED_IN)
$UserID = $_SESSION["userid"];
else
ReturnJSONError($Err_RDP_InvalidID, "id must be specified or valid session must be provided");
}
$result = User_Delete($UserID);
session_unset();
session_destroy();
ReturnJSONData(["success" => $result]);
}
?>