From 29337b30b7071cff678a7be54161507f3eb278be Mon Sep 17 00:00:00 2001
From: ilotterytea <iltsu@alright.party>
Date: Thu, 15 May 2025 00:07:41 +0500
Subject: feat: pfp, banner, badge deletion buttons

---
 public/account/delete.php | 44 +++++++++++++++++++++++++++++---------------
 public/account/index.php  | 42 ++++++++++++++++++++++++++++++++++--------
 2 files changed, 63 insertions(+), 23 deletions(-)

diff --git a/public/account/delete.php b/public/account/delete.php
index 99aebe5..ec8c040 100644
--- a/public/account/delete.php
+++ b/public/account/delete.php
@@ -9,28 +9,42 @@ if (!isset($_SESSION["user_id"])) {
     exit;
 }
 
-$id = $_SESSION["user_id"];
-
 $db = new PDO(DB_URL, DB_USER, DB_PASS);
-$db->prepare("DELETE FROM users WHERE id = ?")->execute([$id]);
 
-session_unset();
-session_destroy();
+$id = $_SESSION["user_id"];
 
-setcookie("secret_key", "", time() - 1000);
+$profile = ($_GET["profile"] ?? "false") == "true";
+$pfp = ($_GET["pfp"] ?? "false") == "true";
+$banner = ($_GET["banner"] ?? "false") == "true";
+$badge = ($_GET["badge"] ?? "false") == "true";
+
+if ($pfp || $profile) {
+    $path = "../static/userdata/avatars/$id";
+    if (is_dir($path)) {
+        array_map("unlink", glob("$path/*.*"));
+        rmdir($path);
+    }
+}
 
-$db = null;
+if ($banner || $profile) {
+    $path = "../static/userdata/banners/$id";
+    if (is_dir($path)) {
+        array_map("unlink", glob("$path/*.*"));
+        rmdir($path);
+    }
+}
 
-$path = "../static/userdata/avatars/$id";
-if (is_dir($path)) {
-    array_map("unlink", glob("$path/*.*"));
-    rmdir($path);
+if ($badge || $profile) {
+    $db->prepare("DELETE FROM user_badges WHERE user_id = ?")->execute([$id]);
 }
 
-$path = "../static/userdata/banners/$id";
-if (is_dir($path)) {
-    array_map("unlink", glob("$path/*.*"));
-    rmdir($path);
+if ($profile) {
+    $db->prepare("DELETE FROM users WHERE id = ?")->execute([$id]);
+
+    session_unset();
+    session_destroy();
+
+    setcookie("secret_key", "", time() - 1000);
 }
 
 header("Location: /account");
\ No newline at end of file
diff --git a/public/account/index.php b/public/account/index.php
index 6cf3fc7..2b9e790 100644
--- a/public/account/index.php
+++ b/public/account/index.php
@@ -123,40 +123,67 @@ if ($_SERVER['REQUEST_METHOD'] == "POST") {
                         <h2>Profile</h2>
                         <h3>Profile picture</h3>
                         <?php
-                        if (is_dir("../static/userdata/avatars/" . $_SESSION["user_id"])) {
+                        $has_pfp = is_dir("../static/userdata/avatars/" . $_SESSION["user_id"]);
+                        if ($has_pfp) {
                             echo '<img src="/static/userdata/avatars/' . $_SESSION["user_id"] . '/2x.webp" id="pfp" width="64" height="64">';
                         } else {
                             echo "<p>You don't have profile picture</p>";
                         }
                         ?>
-                        <input type="file" name="pfp">
+                        <div>
+                            <input type="file" name="pfp">
+                            <?php if ($has_pfp): ?>
+                                <a href="/account/delete.php?pfp=true">
+                                    <img src="/static/img/icons/bin.png" alt="Remove profile picture"
+                                        title="Remove profile picture">
+                                </a>
+                            <?php endif; ?>
+                        </div>
 
                         <h3>Profile banner</h3>
                         <?php
-                        if (is_dir("../static/userdata/banners/" . $_SESSION["user_id"])) {
+                        $has_banner = is_dir("../static/userdata/banners/" . $_SESSION["user_id"]);
+                        if ($has_banner) {
                             echo '<img src="/static/userdata/banners/' . $_SESSION["user_id"] . '/2x.webp" id="banner" width="256">';
                         } else {
                             echo "<p>You don't have profile banner</p>";
                         }
                         ?>
-                        <input type="file" name="banner">
+                        <div>
+                            <input type="file" name="banner">
+                            <?php if ($has_banner): ?>
+                                <a href="/account/delete.php?banner=true">
+                                    <img src="/static/img/icons/bin.png" alt="Remove banner" title="Remove banner">
+                                </a>
+                            <?php endif; ?>
+                        </div>
 
                         <h3>Personal badge</h3>
                         <?php
                         $stmt = $db->prepare("SELECT badge_id FROM user_badges WHERE user_id = ?");
                         $stmt->execute([$_SESSION["user_id"]]);
 
+                        $has_badge = false;
+
                         if ($row = $stmt->fetch()) {
                             echo '<div class="box row items-center justify-between">';
                             echo '<img src="/static/userdata/badges/' . $row["badge_id"] . '/1x.webp" id="badge">';
                             echo '<img src="/static/userdata/badges/' . $row["badge_id"] . '/2x.webp" id="badge">';
                             echo '<img src="/static/userdata/badges/' . $row["badge_id"] . '/3x.webp" id="badge">';
                             echo '</div>';
+                            $has_badge = true;
                         } else {
                             echo "<p>You don't have personal badge</p>";
                         }
                         ?>
-                        <input type="file" name="badge">
+                        <div>
+                            <input type="file" name="badge">
+                            <?php if ($has_badge): ?>
+                                <a href="/account/delete.php?badge=true">
+                                    <img src="/static/img/icons/bin.png" alt="Remove badge" title="Remove badge">
+                                </a>
+                            <?php endif; ?>
+                        </div>
 
                         <h3>Username</h3>
                         <input type="text" name="username" id="username" value="<?php echo $_SESSION["user_name"] ?>">
@@ -253,9 +280,8 @@ if ($_SERVER['REQUEST_METHOD'] == "POST") {
                         <button type="submit">Apply</button>
                     </form>
 
-                    <form action="/account/delete.php">
-                        <button class="red" type="submit">Delete me</button>
-                    </form>
+                    <a href="/account/delete.php?profile=true" class="red button" style="text-align: center;">Delete
+                        me</a>
                 </section>
             </section>
         </div>
-- 
cgit v1.2.3