archives/FHeD
1
0
Fork 0
Code Issues Pull Requests Actions Packages Releases 40 Activity
Files
b7d70b953e7599303f661586f84ac1a12f3d22da
FHeD/app/public/actions/delsub.php
Luke Tainton b7d70b953e 🐛 It'll definitely work this time 
Signed-off-by: Luke Tainton <luke@tainton.uk>
2020-08-10 17:32:46 +01:00

33 lines
1.1 KiB
PHP
Raw Blame History

<?php
$PAGE_NAME = "Delete subscribers";
require_once __DIR__ . "/../../includes/prereqs.php";
$request = get_request($db, $_POST['rid']);
$authorised_users = get_subscribers($db, $request);
$is_authorised = isAuthorised($_SESSION['uuid'], $authorised_users, $request);
if (!empty($_POST['delSubSelector'])) {
$subs_to_remove = implode(",", $_POST['delSubSelector']);
// Remove subscriber(s)
if ($is_authorised == true) {
if($_SERVER['REQUEST_METHOD'] == 'POST') {
try {
$stmt = "DELETE FROM ticket_subscribers WHERE sub_id IN (:sublist)";
$sql = $db->prepare($stmt);
$sql->bindParam(':sublist', $subs_to_remove);
$sql->execute();
} catch (PDOException $e) {
$alert = array("danger", "Failed to remove subscriber(s): " . $e->getMessage());
}
}
} else {
$alert = array("danger", "You are not authorised to manage subscribers on this request.");
}
}
$newURL = "/editsub?rid=" . $request['uuid'];
echo("<script>window.location = '$newURL'</script>");
?>
Reference in New Issue View Git Blame Copy Permalink