/*\ title: $:/plugins/tiddlywiki/multiwikiserver/routes/handlers/delete-role.js type: application/javascript module-type: mws-route POST /admin/delete-role \*/ (function () { /*jslint node: true, browser: true */ /*global $tw: false */ "use strict"; exports.method = "POST"; exports.path = /^\/admin\/delete-role\/?$/; exports.bodyFormat = "www-form-urlencoded"; exports.csrfDisable = true; exports.handler = function (request, response, state) { var sqlTiddlerDatabase = state.server.sqlTiddlerDatabase; var role_id = state.data.role_id; if(!state.authenticatedUser || !state.authenticatedUser.isAdmin) { response.writeHead(403, "Forbidden"); response.end(); return; } // Check if the role exists var role = sqlTiddlerDatabase.getRoleById(role_id); if(!role) { response.writeHead(404, "Not Found"); response.end("Role not found"); return; } // Delete the role sqlTiddlerDatabase.deleteRole(role_id); // Check if the role is in use var isRoleInUse = sqlTiddlerDatabase.isRoleInUse(role_id); if(isRoleInUse) { sqlTiddlerDatabase.deleteUserRolesByRoleId(role_id); } // Redirect back to the roles management page response.writeHead(302, { "Location": "/admin/roles" }); response.end(); }; }());