diff --git a/app/conference_centers/conference_room_delete.php b/app/conference_centers/conference_room_delete.php index af2a62ba17..dac99904ef 100644 --- a/app/conference_centers/conference_room_delete.php +++ b/app/conference_centers/conference_room_delete.php @@ -17,76 +17,81 @@ The Initial Developer of the Original Code is Mark J Crane - Portions created by the Initial Developer are Copyright (C) 2008-2012 + Portions created by the Initial Developer are Copyright (C) 2008-2016 the Initial Developer. All Rights Reserved. Contributor(s): Mark J Crane */ -require_once "root.php"; -require_once "resources/require.php"; -require_once "resources/check_auth.php"; -if (permission_exists('conference_room_delete')) { - //access granted -} -else { - echo "access denied"; - exit; -} + +//includes + require_once "root.php"; + require_once "resources/require.php"; + require_once "resources/check_auth.php"; + +//check permissions + if (permission_exists('conference_room_delete')) { + //access granted + } + else { + echo "access denied"; + exit; + } //add multi-lingual support $language = new text; $text = $language->get(); //get the id - if (count($_GET)>0) { + if (count($_GET) > 0) { $id = check_str($_GET["id"]); } -if (strlen($id)>0) { - //get the meeting_uuid - if (count($_GET)>0 && $_POST["persistformvar"] != "true") { - $conference_room_uuid = check_str($_GET["id"]); - $sql = "select * from v_conference_rooms "; +//delete the data + if (strlen($id) > 0) { + //get the meeting_uuid + if (count($_GET)>0 && $_POST["persistformvar"] != "true") { + $conference_room_uuid = check_str($_GET["id"]); + $sql = "select * from v_conference_rooms "; + $sql .= "where domain_uuid = '$domain_uuid' "; + $sql .= "and conference_room_uuid = '$conference_room_uuid' "; + $prep_statement = $db->prepare(check_sql($sql)); + $prep_statement->execute(); + $result = $prep_statement->fetchAll(); + foreach ($result as &$row) { + $meeting_uuid = $row["meeting_uuid"]; + } + unset ($prep_statement); + } + + //delete the conference session + $sql = "delete from v_conference_rooms "; $sql .= "where domain_uuid = '$domain_uuid' "; - $sql .= "and conference_room_uuid = '$conference_room_uuid' "; + $sql .= "and conference_room_uuid = '$id' "; $prep_statement = $db->prepare(check_sql($sql)); $prep_statement->execute(); - $result = $prep_statement->fetchAll(); - foreach ($result as &$row) { - $meeting_uuid = $row["meeting_uuid"]; - } - unset ($prep_statement); - } + unset($sql); + + //delete the meeting users + $sql = "delete from v_meeting_users "; + $sql .= "where domain_uuid = '$domain_uuid' "; + $sql .= "and meeting_uuid = '$meeting_uuid' "; + $prep_statement = $db->prepare(check_sql($sql)); + $prep_statement->execute(); + unset($sql); + + //delete the meetings + $sql = "delete from v_meetings "; + $sql .= "where domain_uuid = '$domain_uuid' "; + $sql .= "and meeting_uuid = '$meeting_uuid' "; + $prep_statement = $db->prepare(check_sql($sql)); + $prep_statement->execute(); + unset($sql); + } - //delete the conference session - $sql = "delete from v_conference_rooms "; - $sql .= "where domain_uuid = '$domain_uuid' "; - $sql .= "and conference_room_uuid = '$id' "; - $prep_statement = $db->prepare(check_sql($sql)); - $prep_statement->execute(); - unset($sql); +//redirect the user + $_SESSION["message"] = $text['message-delete']; + header("Location: conference_rooms.php"); + return; - //delete the meeting users - $sql = "delete from v_meeting_users "; - $sql .= "where domain_uuid = '$domain_uuid' "; - $sql .= "and meeting_uuid = '$meeting_uuid' "; - $prep_statement = $db->prepare(check_sql($sql)); - $prep_statement->execute(); - unset($sql); - - //delete the meetings - $sql = "delete from v_meetings "; - $sql .= "where domain_uuid = '$domain_uuid' "; - $sql .= "and meeting_uuid = '$meeting_uuid' "; - $prep_statement = $db->prepare(check_sql($sql)); - $prep_statement->execute(); - unset($sql); -} - - -$_SESSION["message"] = $text['message-delete']; -header("Location: conference_rooms.php"); -return; - -?> \ No newline at end of file +?>