$user->updateUser($_POST); break; case "banUser": onlyAdmin(); $user = new ASUser($_POST['userId']); $user->updateInfo(array('banned' => 'Y')); break; case "unbanUser": onlyAdmin(); $user = new ASUser($_POST['userId']); $user->updateInfo(array('banned' => 'N')); break; case "getUser": onlyAdmin(); $user = new ASUser($_POST['userId']); echo json_encode($user->getAll()); break; default: break; } function onlyAdmin() { $login = new ASLogin(); if (!$login->isLoggedIn()) { exit; } $loggedUser = new ASUser(ASSession::get("user_id")); if (!$loggedUser->isAdmin()) { exit; } }