51 lines
1.1 KiB
PHP
51 lines
1.1 KiB
PHP
<?php
|
|
session_start();
|
|
|
|
if (!isset($baseDir)) {
|
|
$baseDir = $_SERVER['DOCUMENT_ROOT'];
|
|
}
|
|
|
|
$new_value = $_POST['freigabe'] ?? '';
|
|
|
|
$type = $_POST['type'] ?? 'nan';
|
|
|
|
$allowedTypes = ['kampfrichter', 'trainer'];
|
|
|
|
if (in_array($type, $allowedTypes)) {
|
|
|
|
|
|
$accessKey = "access_granted_" . $type;
|
|
$idKey = "passcode" . $type . "_id";
|
|
|
|
// 3. Check if they have access
|
|
$hasAccess = isset($_SESSION[$accessKey]) &&
|
|
$_SESSION[$accessKey] === true &&
|
|
!empty($_SESSION[$idKey]) &&
|
|
$_SESSION[$idKey] > 0;
|
|
|
|
|
|
if (!$hasAccess) {
|
|
echo json_encode(['success' => false, 'message' => 'no permissions']);
|
|
exit;
|
|
}
|
|
} else {
|
|
echo json_encode(['success' => false, 'message' => 'no permissions']);
|
|
exit;
|
|
}
|
|
|
|
if (!$new_value) {
|
|
echo json_encode('Invalid Input');
|
|
exit;
|
|
}
|
|
|
|
if ($type === 'kampfrichter'){
|
|
$_SESSION['selectedFreigabeKampfrichter'] = $new_value;
|
|
}
|
|
|
|
if ($type === 'trainer'){
|
|
$_SESSION['selectedFreigabeTrainer'] = $new_value;
|
|
}
|
|
|
|
// ---------- Return JSON ----------
|
|
echo json_encode(['success' => true, 'message' => 'SESSION updated']);
|
|
exit; |