blob: 2ff9e3b90c3af9262fcc45b741a9f86863989998 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
|
<?php
/*
This script is the AJAX callback that deletes a user's saved search
*/
define('IN_FS', true);
require_once('../../header.php');
if (Cookie::has('flyspray_userid') && Cookie::has('flyspray_passhash')) {
$user = new User(Cookie::val('flyspray_userid'));
$user->check_account_ok();
if( !Post::has('csrftoken') ){
http_response_code(428); # 'Precondition Required'
die('missingtoken');
}elseif( Post::val('csrftoken')==$_SESSION['csrftoken']){
# empty
}else{
http_response_code(412); # 'Precondition Failed'
die('wrongtoken');
}
if (!$user->isAnon()) {
$db->query('DELETE FROM {searches} WHERE id = ? AND user_id = ?', array(Post::num('id'), $user->id));
echo $db->affectedRows();
}
}
?>
|