24 lines
757 B
PHP
24 lines
757 B
PHP
<?php
|
|
require_once '../config.php';
|
|
|
|
if (!isset($_SESSION['user_id']) || $_SESSION['username'] !== 'admin') {
|
|
echo json_encode(['success' => false, 'error' => '无权限']);
|
|
exit;
|
|
}
|
|
|
|
$input = json_decode(file_get_contents('php://input'), true);
|
|
|
|
if ($input && isset($input['user_id'])) {
|
|
try {
|
|
// 注意:这里会级联删除用户的所有图片
|
|
$stmt = $pdo->prepare("DELETE FROM users WHERE id = ? AND username != 'admin'");
|
|
$stmt->execute([$input['user_id']]);
|
|
|
|
echo json_encode(['success' => true]);
|
|
} catch(PDOException $e) {
|
|
echo json_encode(['success' => false, 'error' => $e->getMessage()]);
|
|
}
|
|
} else {
|
|
echo json_encode(['success' => false, 'error' => '无效请求']);
|
|
}
|
|
?>
|