// Admin only if ($user->role !== 1) { $response->status = 403; $response->message = 'Forbidden'; $response->json($response); } // Prepare and sanitize post input $api->setInputs($_POST); //$response->data = $model->usersAll(NULL); $user = $model->userFind(array('mail' => $api->getInputVal('mail'))); if ($user) { $response->status = 409; $response->message = 'User with email ' . $api->getInputVal('mail') . ' already exists'; $response->json($response); } if (!$model->userCreate(array('sid' => Ut::token(), 'mail' => $api->getInputVal('mail'), 'pw' => md5($api->getInputVal('pw'))))) { $response->status = 500; $response->message = 'Unable to create an user'; $response->json($response); } $response->data = array('id' => $db->inserId()); $response->json($response); } elseif ($route->match('adminuserread', 1)) { // Admin only if ($user->role !== 1) { $response->status = 403; $response->message = 'Forbidden'; $response->json($response); } $api->setInputs(array('id' => $route->getParam(0))); $response->data = $model->userFind(array('id' => $api->getInputVal('id')));