analytics.php
4 years ago
apiban.php
4 years ago
apilog.php
4 years ago
apiplugin.php
4 years ago
apiuser.php
4 years ago
backup.php
4 years ago
calendar.php
4 years ago
city.php
4 years ago
closure.php
1 month ago
configapp.php
4 years ago
configcldays.php
2 years ago
configcron.php
4 years ago
configemp.php
4 years ago
configsmsapi.php
4 years ago
configuration.php
1 month ago
conversion.php
1 year ago
country.php
4 years ago
coupon.php
4 years ago
coupongroup.php
4 years ago
cronjob.php
2 years ago
cronjoblog.php
4 years ago
customer.php
4 months ago
customf.php
1 year ago
dashboard.php
4 years ago
emplocwdays.php
4 years ago
employee.php
1 year ago
emprates.php
4 years ago
export.php
4 years ago
exportres.php
4 years ago
file.php
4 months ago
findreservation.php
1 month ago
group.php
4 years ago
import.php
4 years ago
index.html
4 years ago
invoice.php
1 month ago
langcustomf.php
4 years ago
langemployee.php
4 years ago
langgroup.php
4 years ago
langmedia.php
4 years ago
langoption.php
4 years ago
langoptiongroup.php
4 years ago
langpackage.php
4 years ago
langpackgroup.php
4 years ago
langpayment.php
4 years ago
langservice.php
4 years ago
langstatuscode.php
4 years ago
langsubscr.php
4 years ago
langtax.php
4 years ago
location.php
4 years ago
mailtext.php
2 years ago
makerecurrence.php
1 month ago
media.php
4 years ago
multiorder.php
4 years ago
option.php
4 months ago
optiongroup.php
4 years ago
package.php
2 years ago
packgroup.php
4 years ago
packorder.php
1 year ago
payment.php
4 years ago
rate.php
4 years ago
reportsemp.php
4 years ago
reportsser.php
4 years ago
reservation.php
1 month ago
restriction.php
4 years ago
review.php
4 years ago
service.php
1 year ago
serworkday.php
4 months ago
state.php
4 years ago
statuscode.php
4 years ago
subscription.php
4 years ago
subscrorder.php
4 years ago
tag.php
4 years ago
tax.php
4 years ago
usernote.php
4 years ago
waitinglist.php
4 years ago
webhook.php
4 years ago
wizard.php
1 year ago
apiban.php
77 lines
| 1 | <?php |
| 2 | /** |
| 3 | * @package VikAppointments |
| 4 | * @subpackage core |
| 5 | * @author E4J s.r.l. |
| 6 | * @copyright Copyright (C) 2021 E4J s.r.l. All Rights Reserved. |
| 7 | * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPL |
| 8 | * @link https://vikwp.com |
| 9 | */ |
| 10 | |
| 11 | // No direct access |
| 12 | defined('ABSPATH') or die('No script kiddies please!'); |
| 13 | |
| 14 | VAPLoader::import('libraries.mvc.controllers.admin'); |
| 15 | |
| 16 | /** |
| 17 | * VikAppointments API ban controller. |
| 18 | * |
| 19 | * @since 1.7 |
| 20 | */ |
| 21 | class VikAppointmentsControllerApiban extends VAPControllerAdmin |
| 22 | { |
| 23 | /** |
| 24 | * Deletes a list of records set in the request. |
| 25 | * |
| 26 | * @return boolean |
| 27 | */ |
| 28 | public function delete() |
| 29 | { |
| 30 | $app = JFactory::getApplication(); |
| 31 | $cid = $app->input->get('cid', array(), 'string'); |
| 32 | |
| 33 | /** |
| 34 | * Added token validation. |
| 35 | * Both GET and POST are supported. |
| 36 | * |
| 37 | * @since 1.7 |
| 38 | */ |
| 39 | if (!JSession::checkToken() && !JSession::checkToken('get')) |
| 40 | { |
| 41 | // back to main list, missing CSRF-proof token |
| 42 | $app->enqueueMessage(JText::translate('JINVALID_TOKEN'), 'error'); |
| 43 | $this->cancel(); |
| 44 | |
| 45 | return false; |
| 46 | } |
| 47 | |
| 48 | // check user permissions |
| 49 | if (!JFactory::getUser()->authorise('core.delete', 'com_vikappointments') || !VAPFactory::getApi()->isEnabled()) |
| 50 | { |
| 51 | // back to main list, not authorised to delete records |
| 52 | $app->enqueueMessage(JText::translate('JERROR_ALERTNOAUTHOR'), 'error'); |
| 53 | $this->cancel(); |
| 54 | |
| 55 | return false; |
| 56 | } |
| 57 | |
| 58 | // delete selected records |
| 59 | $res = $this->getModel()->delete($cid); |
| 60 | |
| 61 | // back to main list |
| 62 | $this->cancel(); |
| 63 | |
| 64 | return true; |
| 65 | } |
| 66 | |
| 67 | /** |
| 68 | * Redirects the users to the main records list. |
| 69 | * |
| 70 | * @return void |
| 71 | */ |
| 72 | public function cancel() |
| 73 | { |
| 74 | $this->setRedirect('index.php?option=com_vikappointments&view=apibans'); |
| 75 | } |
| 76 | } |
| 77 |