<?php
session_start();
if (!isset($_SESSION['loggedin'])) {
    exit("unauthorized");
}

include "../database.php";

$user_id = $_POST["user_id"];
$email = $_POST["email"];

$sql_update = "UPDATE users SET email = '".$email."' WHERE id = " . $user_id . "";
if ($con->query($sql_update)) {
    echo "ok";
} else {
    echo "error";
}

$con->close();