44 lines
1.2 KiB
PHP
44 lines
1.2 KiB
PHP
<?php
|
|
header('Content-Type: application/json');
|
|
session_start();
|
|
//check for permisisons
|
|
if (!isset($_SESSION["logged_in"]) || $_SESSION["logged_in"] !== true || $_SESSION["permissions"][0]!=="1" ) {
|
|
echo(json_encode(['success' => false, 'message'=>'not authenticated']));
|
|
exit();
|
|
}
|
|
include "../../config/config.php";
|
|
|
|
$conn = new mysqli($DB_SERVERNAME, $DB_USERNAME, $DB_PASSWORD, $DB_DATABASE);
|
|
|
|
if ($conn->connect_error) {
|
|
echo json_encode(['success' => false, 'message' => 'Database connection failed: ' . $conn->connect_error]);
|
|
exit;
|
|
}
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] === 'DELETE' && isset($_GET['id'])) {
|
|
$id = (int) $_GET['id'];
|
|
$query = "DELETE FROM users WHERE id = ?";
|
|
$stmt = $conn->prepare($query);
|
|
|
|
if (!$stmt) {
|
|
echo json_encode(['success' => false, 'message' => 'Failed to prepare statement']);
|
|
exit;
|
|
}
|
|
|
|
$stmt->bind_param("i", $id);
|
|
$stmt->execute();
|
|
|
|
if ($stmt->affected_rows > 0) {
|
|
echo json_encode(['success' => true]);
|
|
} else {
|
|
echo json_encode(['success' => false, 'message' => 'User not found']);
|
|
}
|
|
|
|
$stmt->close();
|
|
} else {
|
|
echo json_encode(['success' => false, 'message' => 'Invalid request']);
|
|
}
|
|
|
|
$conn->close();
|
|
?>
|