Portions created by the Initial Developer are Copyright (C) 2008-2015 the Initial Developer. All Rights Reserved. Contributor(s): Mark J Crane */ include "root.php"; require_once "resources/require.php"; require_once "resources/check_auth.php"; if (permission_exists('user_delete')) { //access allowed } else { echo "access denied"; return; } //add multi-lingual support $language = new text; $text = $language->get(); //get the id $user_uuid = check_str($_GET["id"]); //validate the uuid if (is_uuid($user_uuid)) { //get the username from v_users $sql = "select * from v_users "; $sql .= "where user_uuid = '$user_uuid' "; $sql .= "and domain_uuid = '$domain_uuid' "; $prep_statement = $db->prepare(check_sql($sql)); $prep_statement->execute(); $result = $prep_statement->fetchAll(PDO::FETCH_NAMED); foreach ($result as &$row) { $username = $row["username"]; } unset ($prep_statement); //required to be a superadmin to delete a member of the superadmin group $superadmin_list = superadmin_list($db); if (if_superadmin($superadmin_list, $user_uuid)) { if (!if_group("superadmin")) { //access denied - do not delete the user header("Location: index.php"); return; } } //delete the groups the user is assigned to $sql = "delete from v_group_users "; $sql .= "where user_uuid = '$user_uuid' "; $sql .= "and domain_uuid = '$domain_uuid' "; if (!$db->exec($sql)) { $info = $db->errorInfo(); print_r($info); } //delete the user $sql = "delete from v_users "; $sql .= "where user_uuid = '$user_uuid' "; $sql .= "and domain_uuid = '$domain_uuid' "; if (!$db->exec($sql)) { $info = $db->errorInfo(); print_r($info); } } //redirect the user $_SESSION["message"] = $text['message-delete']; header("Location: index.php"); ?>