aboutsummaryrefslogtreecommitdiff
path: root/login-ajax.php
diff options
context:
space:
mode:
Diffstat (limited to 'login-ajax.php')
-rw-r--r--login-ajax.php7
1 files changed, 6 insertions, 1 deletions
diff --git a/login-ajax.php b/login-ajax.php
index f8e1424..beb2f66 100644
--- a/login-ajax.php
+++ b/login-ajax.php
@@ -30,8 +30,13 @@
require_once('./conf.php');
if (!isset($_SESSION['login']) || $_SESSION['login'] === false) {
- print(json_encode(['error' => 'You need to be logged in.']));
+ print(json_encode(['success' => false, 'message' => 'You need to be logged in.']));
die();
}
$_user = new user($_pdo, $_SESSION['login']);
+
+if (defined('REQUIRE_ADMIN') && REQUIRE_ADMIN && !$_user->isAdmin()) {
+ print(json_encode(['success' => false, 'message' => 'You need to be an administrator.']));
+ die();
+}
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-28 11:40:25 +0000