80 lines
1.5 KiB
C++
80 lines
1.5 KiB
C++
#include "bs_util.h"
|
|
using namespace std;
|
|
|
|
int main()
|
|
{
|
|
Request req;
|
|
Session se(req);
|
|
Response res;
|
|
json j;
|
|
|
|
auto jsonfail=[&](int errcode,const std::string& dtl="")
|
|
{
|
|
jsonfail_func(j,errcode,dtl);
|
|
};
|
|
|
|
do
|
|
{
|
|
if(!se.isReady())
|
|
{
|
|
jsonfail(err_session);
|
|
break;
|
|
}
|
|
|
|
if(se.getUser().empty())
|
|
{
|
|
jsonfail(err_need_login);
|
|
break;
|
|
}
|
|
|
|
if(req.requestMethod!="POST")
|
|
{
|
|
jsonfail(err_method_not_supported);
|
|
break;
|
|
}
|
|
|
|
postval(required);
|
|
int required_real=ParseInt(required);
|
|
if(required_real<0)
|
|
{
|
|
jsonfail(err_parameter,"Failed to parse permission level");
|
|
break;
|
|
}
|
|
|
|
startdb();
|
|
|
|
/// Get Permission
|
|
int xval=-1;
|
|
if(conn.exec(make_str("select permission_level from bs_user where username='",
|
|
se.getUser(),
|
|
"'"),
|
|
SQLParseInt(xval))<0)
|
|
{
|
|
jsonfail(err_sql,"Step 1");
|
|
break;
|
|
}
|
|
|
|
if(xval<0)
|
|
{
|
|
jsonfail(err_data,"Failed to parse X-Val");
|
|
break;
|
|
}
|
|
|
|
if(xval>required_real)
|
|
{
|
|
jsonfail(err_permission_denied,"Permission Not Reach Required Level");
|
|
break;
|
|
}
|
|
|
|
j["success"]=1;
|
|
}
|
|
while(0);
|
|
|
|
se.writeToResponse(res);
|
|
res.content.append(j.dump());
|
|
|
|
return 0;
|
|
}
|
|
|
|
|