diff -r c72d6d51f3d3 -r c255196bc447 delete_user.php --- a/delete_user.php Wed Mar 12 20:45:56 2008 +0000 +++ b/delete_user.php Tue Mar 25 22:45:31 2008 +0000 @@ -20,103 +20,87 @@ */ require_once("inc/toolkit.inc.php"); +include_once("inc/header.inc.php"); -$id = ($_POST["id"]) ? $_POST["id"] : $_GET["id"]; +verify_permission(user_edit_own) ? $perm_edit_own = "1" : $perm_edit_own = "0" ; +verify_permission(user_edit_others) ? $perm_edit_others = "1" : $perm_edit_others = "0" ; + +if (!(isset($_GET['id']) && v_num($_GET['id']))) { + error(ERR_INV_INPUT); + include_once("inc/footer.inc.php"); + exit; +} else { + $uid = $_GET['id']; +} + +if ($_POST['commit']) { + if (delete_user($uid,$_POST['zone'])) { + success(SUC_USER_DEL); + } +} else { + + if (($uid != $_SESSION['userid'] && !verify_permission(user_edit_others)) || ($uid == $_SESSION['userid'] && !verify_permission(user_edit_own))) { + error(ERR_PERM_DEL_USER); + include_once("inc/footer.inc.php"); + exit; + } else { + $fullname = get_fullname_from_userid($uid); + $zones = get_zones("own",$uid); + + echo "

" . _('Delete user') . " \"" . $fullname . "\"

\n"; + echo "
\n"; + echo " \n"; + + if (count($zones) > 0) { -if(isset($id)) -{ - if($_POST["confirm"] == '1') - { - $domain = is_array($_POST["domain"]) ? $_POST["domain"] : $domain = array(); - $delete = is_array($_POST["delete"]) ? $_POST["delete"] : $delete = array(); - - if(count($domain) > 0) - { - foreach ($domain as $dom => $newowner) - { - if (!in_array($dom, $delete)) - { - add_owner($dom, $newowner); - } - } - } - if(count($delete) > 0) - { - foreach ($delete as $del) - { - delete_domain($del); + $users = show_users(); + + echo " \n"; + echo " \n"; + echo " \n"; + + echo " \n"; + echo " \n"; + echo " \n"; + echo " \n"; + echo " \n"; + echo " \n"; + echo " \n"; + + foreach ($zones as $zone) { + echo " \n"; + echo " \n"; + echo " \n"; + echo " \n"; + echo " \n"; + echo " \n"; + echo " \n"; + echo " \n"; + } } - - delete_user($id); - clean_page("users.php"); - } - include_once("inc/header.inc.php"); - ?> - -

""

- - 0) - { - echo _('This user has access to the following zone(s)'); ?> :
-
\n"; + + echo " " . _('You are about to delete a user. This user is owner for a number of zones. Please decide what to do with these zones.') . "\n"; + echo "
" . _('Zone') . "" . _('Delete') . "" . _('Leave') . "" . _('Add new owner') . "" . _('Owner to be added') . "
" . $zone['name'] . "\n"; + echo " \n"; + echo "
- - - - - - - - - -
DeleteNameNew owner
"> name="delete[]" value="">
queryOne("SELECT count(id) FROM zones WHERE owner=".$db->quote($id))) != 0) - { - $message .= " " . _('This user has access to ') . $numrows . _(' zones, by deleting him you will also delete these zones.'); - } + echo " \n"; + echo " \n"; + + echo " " . _('Really delete this user?') . "\n"; + echo " \n"; + echo " \n"; - ?> -
- - -
- \n"; + echo " \n"; + echo " \n"; + } } - +include_once("inc/footer.inc.php"); +?>