delete_record.php
author peter
Mon, 11 Feb 2008 18:42:04 +0000
changeset 73 8a239565e9b3
parent 71 e1b918eaf69a
child 82 c255196bc447
permissions -rw-r--r--
[feladat @ 120] Fixed a bug reported by Techwolf. When editing or deleting an user the user was redirected to a non existing page. This probably happened when BASE_URL and/or BASE_PATH was set wrong in the config.inc.php.

<?php

/*  PowerAdmin, a friendly web-based admin tool for PowerDNS.
 *  See <https://rejo.zenger.nl/poweradmin> for more details.
 *
 *  Copyright 2007, 2008  Rejo Zenger <rejo@zenger.nl>
 *
 *  This program is free software: you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License as published by
 *  the Free Software Foundation, either version 3 of the License, or
 *  (at your option) any later version.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */

require_once("inc/toolkit.inc.php");

if ($_GET["id"]) {
	// check if we have access to the given id
	$zoneId = recid_to_domid($_GET['id']);
	if ((!level(5)) && (!xs($zoneId))) {
    		error(ERR_RECORD_ACCESS_DENIED);
	}
	if ((!level(5)) && ($_SESSION[$zoneId.'_ispartial'] == 1)) {
		$db->setLimit(1);
		$checkPartial = $db->queryOne("SELECT id FROM record_owners WHERE record_id=".$db->quote($_GET["id"])." AND user_id=".$db->quote($_SESSION["userid"]));
		if (empty($checkPartial)) {
			error(ERR_RECORD_ACCESS_DENIED);
		}
	}
        if ($_GET["confirm"] == '0') {
                clean_page("edit.php?id=".$_GET["domain"]);
        } elseif ($_GET["confirm"] == '1') {
                delete_record($_GET["id"]);
                clean_page("edit.php?id=".$_GET["domain"]);
        }
        include_once("inc/header.inc.php");
        ?>
	
	<h2><?php echo _('Delete record'); ?> "<?php
        $data = get_record_from_id($_GET["id"]);
        print $data["name"]." IN ".$data["type"]." ".$data["content"];
        ?>"</h2><?php
        if (($data["type"] == "NS" && $data["name"] == get_domain_name_from_id($_GET["domain"])) || $data["type"] == "SOA") {
                print "<font class=\"warning\">" . _('You are trying to delete a record that is needed for this zone to work.') . "</font><br>";
        }
        ?><br><font class="warning"><?php echo _('Are you sure?'); ?></font><br><br>
        <input type="button" class="button" OnClick="location.href='<?php echo $_SERVER["REQUEST_URI"] ?>&confirm=1'" value="<?php echo _('Yes'); ?>"> 
	<input type="button" class="button" OnClick="location.href='<?php echo $_SERVER["REQUEST_URI"] ?>&confirm=0'" value="<?php echo _('No'); ?>">
        <?php
} else {
        include_once("inc/header.inc.php");
        echo _('Nothing to do!');
}
include_once("inc/footer.inc.php");