<?php
// admin_update_leave.php - Update leave status
session_start();
header('Content-Type: application/json');

if (!isset($_SESSION['admin_logged_in'])) {
    echo json_encode(['success' => false, 'message' => 'Unauthorized']);
    exit;
}

include "db.php";

$input = json_decode(file_get_contents("php://input"), true);
if (!$input) {
    echo json_encode(['success' => false, 'message' => 'Invalid input']);
    exit;
}

$id = $input['id'] ?? 0;
$status = $input['status'] ?? '';

if (!$id || !$status) {
    echo json_encode(['success' => false, 'message' => 'Missing required fields']);
    exit;
}

try {
    $stmt = $conn->prepare("UPDATE leaves SET status = ? WHERE id = ?");
    $result = $stmt->execute([$status, $id]);
    
    if ($result) {
        echo json_encode(['success' => true, 'message' => "Leave $status successfully"]);
    } else {
        echo json_encode(['success' => false, 'message' => 'Failed to update leave status']);
    }
} catch(PDOException $e) {
    echo json_encode(['success' => false, 'message' => 'Database error: ' . $e->getMessage()]);
}
?>