48 lines
998 B
PHP
48 lines
998 B
PHP
<?php
|
|
header('Content-Type: application/json');
|
|
|
|
if (!isset($baseDir)) $baseDir = $_SERVER['DOCUMENT_ROOT'];
|
|
|
|
require_once $baseDir . '/../scripts/session_functions.php';
|
|
|
|
ini_wkvs_session();
|
|
|
|
check_user_permission('trainer');
|
|
|
|
verify_csrf();
|
|
|
|
|
|
$type = 'tr';
|
|
|
|
$data = include $baseDir . '/../scripts/db/db-verbindung-script.php';
|
|
|
|
if ($data['success'] === false){
|
|
echo json_encode(['success' => false, 'message' => $data['message']]);
|
|
exit;
|
|
}
|
|
|
|
require $baseDir . '/../scripts/db/db-tables.php';
|
|
|
|
// --- Get input ---
|
|
$id = isset($_POST['id']) ? intval($_POST['id']) : 0;
|
|
$userId = intval($_SESSION['user_id_trainer']);
|
|
|
|
// --- Validate inputs ---
|
|
if ($id < 1) {
|
|
http_response_code(422);
|
|
exit;
|
|
}
|
|
|
|
// --- Check for existing open order ---
|
|
$sql = "DELETE FROM $tableBasketItems WHERE user_id = ? AND item_id = ?";
|
|
$stmt = $mysqli->prepare($sql);
|
|
$stmt->bind_param("ii", $userId, $id);
|
|
|
|
if (!$stmt->execute()) {
|
|
http_response_code(500);
|
|
exit;
|
|
}
|
|
|
|
http_response_code(200);
|
|
exit;
|
|
?>
|