Inicio Explorar Axuda
Iniciar sesión
harsh
/
ethics-canvas
Fork de ADAPT/ethics-canvas
1
0
Fork 0
Ficheiros Pull Requests 0
Árbore: 5a9f37dc41
Ramas Etiquetas
ethics-canvas
/
canvas
/
php
/
remove-canvas.php

remove-canvas.php 1.4 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637 
  1. <?php
    2. 

  2.     /* Removes the canvas passed by parameter, prior check that it
    3. 

  3.         belongs to the user currently logged in                    */
    4. 

  4.     session_start();
    5. 

  5.     
    6. 

  6.     if(!isset($_POST['remove_canvas_ID'], $_SESSION['userlogin'])) {
    7. 

  7.         echo 400; // Missing parameters
    8. 

  8.     }
    9. 

  9.     else {
    10. 

  10.         // Retrieve user credentials
    11. 

  11.         $canvas_id = $_POST['remove_canvas_ID'];
    12. 

  12.         $email = $_SESSION['userlogin'];
    13. 

  13.         
    14. 

  14.         require_once('../../php/db_utils.php');
    15. 

  15.         $conn = db_connect(); // Connect to the database
    16. 

  16.         
    17. 

  17.         // Check if the canvas exists and belongs to the current user
    18. 

  18.         if(!($result = mysqli_query($conn, 'SELECT canvas_id FROM canvas WHERE canvas_id = "' . $canvas_id . '" AND user_id = "' . $email . '"'))) {
    19. 

  19.             echo 400; // Wrong query
    20. 

  20.         }
    21. 

  21.         else if(mysqli_num_rows($result) != 1) { // User not registered or duplicated
    22. 

  22.             echo 401;
    23. 

  23.         }
    24. 

  24.         else { // Canvas exists: delete canvas
    25. 

  25.             if(!mysqli_query($conn, "DELETE FROM canvas WHERE canvas_id = '$canvas_id'")) {
    26. 

  26.                 echo 400; // Wrong query
    27. 

  27.             }
    28. 

  28.             else { // Canvas successfully deleted: remove json file
    29. 

  29.                 unlink("../json/$canvas_id.json");
    30. 

  30.                 echo 200;
    31. 

  31.             }
    32. 

  32.         }
    33. 

  33.         
    34. 

  34.         mysqli_free_result($result);
    35. 

  35.         db_close($conn); // Close the database
    36. 

  36.     }
    37. 

  37. ?>
    38.