diff options
| -rw-r--r-- | public/account/delete.php | 44 | ||||
| -rw-r--r-- | public/account/index.php | 42 |
2 files changed, 63 insertions, 23 deletions
diff --git a/public/account/delete.php b/public/account/delete.php index 99aebe5..ec8c040 100644 --- a/public/account/delete.php +++ b/public/account/delete.php @@ -9,28 +9,42 @@ if (!isset($_SESSION["user_id"])) { exit; } -$id = $_SESSION["user_id"]; - $db = new PDO(DB_URL, DB_USER, DB_PASS); -$db->prepare("DELETE FROM users WHERE id = ?")->execute([$id]); -session_unset(); -session_destroy(); +$id = $_SESSION["user_id"]; -setcookie("secret_key", "", time() - 1000); +$profile = ($_GET["profile"] ?? "false") == "true"; +$pfp = ($_GET["pfp"] ?? "false") == "true"; +$banner = ($_GET["banner"] ?? "false") == "true"; +$badge = ($_GET["badge"] ?? "false") == "true"; + +if ($pfp || $profile) { + $path = "../static/userdata/avatars/$id"; + if (is_dir($path)) { + array_map("unlink", glob("$path/*.*")); + rmdir($path); + } +} -$db = null; +if ($banner || $profile) { + $path = "../static/userdata/banners/$id"; + if (is_dir($path)) { + array_map("unlink", glob("$path/*.*")); + rmdir($path); + } +} -$path = "../static/userdata/avatars/$id"; -if (is_dir($path)) { - array_map("unlink", glob("$path/*.*")); - rmdir($path); +if ($badge || $profile) { + $db->prepare("DELETE FROM user_badges WHERE user_id = ?")->execute([$id]); } -$path = "../static/userdata/banners/$id"; -if (is_dir($path)) { - array_map("unlink", glob("$path/*.*")); - rmdir($path); +if ($profile) { + $db->prepare("DELETE FROM users WHERE id = ?")->execute([$id]); + + session_unset(); + session_destroy(); + + setcookie("secret_key", "", time() - 1000); } header("Location: /account");
\ No newline at end of file diff --git a/public/account/index.php b/public/account/index.php index 6cf3fc7..2b9e790 100644 --- a/public/account/index.php +++ b/public/account/index.php @@ -123,40 +123,67 @@ if ($_SERVER['REQUEST_METHOD'] == "POST") { <h2>Profile</h2> <h3>Profile picture</h3> <?php - if (is_dir("../static/userdata/avatars/" . $_SESSION["user_id"])) { + $has_pfp = is_dir("../static/userdata/avatars/" . $_SESSION["user_id"]); + if ($has_pfp) { echo '<img src="/static/userdata/avatars/' . $_SESSION["user_id"] . '/2x.webp" id="pfp" width="64" height="64">'; } else { echo "<p>You don't have profile picture</p>"; } ?> - <input type="file" name="pfp"> + <div> + <input type="file" name="pfp"> + <?php if ($has_pfp): ?> + <a href="/account/delete.php?pfp=true"> + <img src="/static/img/icons/bin.png" alt="Remove profile picture" + title="Remove profile picture"> + </a> + <?php endif; ?> + </div> <h3>Profile banner</h3> <?php - if (is_dir("../static/userdata/banners/" . $_SESSION["user_id"])) { + $has_banner = is_dir("../static/userdata/banners/" . $_SESSION["user_id"]); + if ($has_banner) { echo '<img src="/static/userdata/banners/' . $_SESSION["user_id"] . '/2x.webp" id="banner" width="256">'; } else { echo "<p>You don't have profile banner</p>"; } ?> - <input type="file" name="banner"> + <div> + <input type="file" name="banner"> + <?php if ($has_banner): ?> + <a href="/account/delete.php?banner=true"> + <img src="/static/img/icons/bin.png" alt="Remove banner" title="Remove banner"> + </a> + <?php endif; ?> + </div> <h3>Personal badge</h3> <?php $stmt = $db->prepare("SELECT badge_id FROM user_badges WHERE user_id = ?"); $stmt->execute([$_SESSION["user_id"]]); + $has_badge = false; + if ($row = $stmt->fetch()) { echo '<div class="box row items-center justify-between">'; echo '<img src="/static/userdata/badges/' . $row["badge_id"] . '/1x.webp" id="badge">'; echo '<img src="/static/userdata/badges/' . $row["badge_id"] . '/2x.webp" id="badge">'; echo '<img src="/static/userdata/badges/' . $row["badge_id"] . '/3x.webp" id="badge">'; echo '</div>'; + $has_badge = true; } else { echo "<p>You don't have personal badge</p>"; } ?> - <input type="file" name="badge"> + <div> + <input type="file" name="badge"> + <?php if ($has_badge): ?> + <a href="/account/delete.php?badge=true"> + <img src="/static/img/icons/bin.png" alt="Remove badge" title="Remove badge"> + </a> + <?php endif; ?> + </div> <h3>Username</h3> <input type="text" name="username" id="username" value="<?php echo $_SESSION["user_name"] ?>"> @@ -253,9 +280,8 @@ if ($_SERVER['REQUEST_METHOD'] == "POST") { <button type="submit">Apply</button> </form> - <form action="/account/delete.php"> - <button class="red" type="submit">Delete me</button> - </form> + <a href="/account/delete.php?profile=true" class="red button" style="text-align: center;">Delete + me</a> </section> </section> </div> |