Remove destructive client delete from the frontend, still present in the backend, fix the ticket assign to no show active users

2026-02-28 02:44:53 +00:00 · 2023-09-25 12:20:42 -04:00
parent 6af002122a
commit 4adc0c7cd1
4 changed files with 15 additions and 3 deletions
--- a/post/client.php
+++ b/post/client.php
@@ -176,10 +176,12 @@ if (isset($_GET['undo_archive_client'])) {

 if (isset($_GET['delete_client'])) {

+    // Removing this function from the frontend as this is extremely destructive. Its best to use Archive, use this for development or test purposes only.
+
    validateAdminRole();

    // CSRF Check
-    validateCSRFToken($_GET['csrf_token']);
+    // validateCSRFToken($_GET['csrf_token']);

    $client_id = intval($_GET['delete_client']);