From d8055192991ac8504e48c137038879790c762d2d Mon Sep 17 00:00:00 2001
From: Camil Staps
Date: Tue, 26 Jul 2016 14:27:14 +0200
Subject: Adding and deleting users

---
 login-ajax.php | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

(limited to 'login-ajax.php')

diff --git a/login-ajax.php b/login-ajax.php
index f8e1424..beb2f66 100644
--- a/login-ajax.php
+++ b/login-ajax.php
@@ -30,8 +30,13 @@
 require_once('./conf.php');
 
 if (!isset($_SESSION['login']) || $_SESSION['login'] === false) {
-	print(json_encode(['error' => 'You need to be logged in.']));
+	print(json_encode(['success' => false, 'message' => 'You need to be logged in.']));
 	die();
 }
 
 $_user = new user($_pdo, $_SESSION['login']);
+
+if (defined('REQUIRE_ADMIN') && REQUIRE_ADMIN && !$_user->isAdmin()) {
+	print(json_encode(['success' => false, 'message' => 'You need to be an administrator.']));
+	die();
+}
-- 
cgit v1.2.3