ENGO150/FabrikaHradekTour
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

created api for archiving posts

Browse Source
This commit is contained in:
Václav Šmejkal 2024-05-25 17:10:52 +02:00
parent 6727ac0a41
commit 6e4fbb75ec
Signed by: ENGO150
GPG Key ID: 4A57E86482968843
1 changed files with 26 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
res/forum/api/archive_post.php Normal file
View File

@ -0,0 +1,26 @@
<?php
include("../../global.php");
session_start();
if (!isset($_SESSION["username"])) goto fail;
$out = $database -> query("SELECT username, admin FROM user WHERE BINARY username=\"" . $_SESSION["username"] . "\" AND admin=\"1\"");
if ($out -> num_rows != 1)
{
fail:
echo "nope";
header("Location: ../../../index.php");
return;
}
if (!isset($_GET["username"])) return;
if (!isset($_GET["post_id"])) return;
$safe_username = mysqli_real_escape_string($database, $_GET["username"]);
$safe_post_id = mysqli_real_escape_string($database, $_GET["post_id"]);
$id = (($database -> query("SELECT id FROM user WHERE username=\"" . $safe_username . "\"")) -> fetch_assoc())["id"];
$database -> query("UPDATE post SET archived=1 WHERE author=" . $id . " AND photo_id=" . $safe_post_id);