Home Explore Help
Sign In
epsylon
/
Elgg-Lorea-Hydra
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0
Tree: e48014c2e0
Branches Tags
Elgg-Lorea-H...
/
mod
/
account_removal
/
actions
/
remove.php

remove.php 3.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990 
  1. <?php
    2. 

  2. 

  3. $user_guid = (int) get_input("user_guid");
    4. 

  4. $type = get_input("type");
    5. 

  5. $reason = get_input("reason");
    6. 

  6. $confirm_token = get_input("confirm_token");
    7. 

  7. 

  8. $forward_url = REFERER;
    9. 

  9. 

  10. if (($user_guid == elgg_get_logged_in_user_guid()) && elgg_is_admin_logged_in()) {
    11. 

  11. 	register_error(elgg_echo("account_removal:actions:remove:error:user_guid:admin"));
    12. 

  12. } elseif (($user_guid != elgg_get_logged_in_user_guid()) && !elgg_is_admin_logged_in()) {
    13. 

  13. 	register_error(elgg_echo("account_removal:actions:remove:error:user_guid:user"));
    14. 

  14. } elseif ($user = get_user($user_guid)) {
    15. 

  15. 	$group_admins_allowed = elgg_get_plugin_setting("groupadmins_allowed", "account_removal");
    16. 

  16. 	$user_options = elgg_get_plugin_setting("user_options", "account_removal");
    17. 

  17. 	$reason_required = elgg_get_plugin_setting("reason_required", "account_removal");
    18. 

  18. 	
    19. 

  19. 	$group_options = array(
    20. 

  20. 		"type" => "group",
    21. 

  21. 		"owner_guid" => $user->getGUID(),
    22. 

  22. 		"count" => true
    23. 

  23. 	);
    24. 

  24. 	
    25. 

  25. 	if (($group_admins_allowed != "yes") && elgg_get_entities($group_options)) {
    26. 

  26. 		register_error(elgg_echo("account_removal:actions:remove:error:group_owner"));
    27. 

  27. 	} elseif (($reason_required == "yes") && empty($reason)) {
    28. 

  28. 		register_error(elgg_echo("account_removal:actions:remove:error:reason"));
    29. 

  29. 	} else {
    30. 

  30. 		// make sure the given action is allowed
    31. 

  31. 		switch ($user_options) {
    32. 

  32. 			case "remove":
    33. 

  33. 				$action = "remove";
    34. 

  34. 				break;
    35. 

  35. 			case "disable_and_remove":
    36. 

  36. 				if ($type == "remove") {
    37. 

  37. 					$action = "remove";
    38. 

  38. 				} else {
    39. 

  39. 					$action = "disable";
    40. 

  40. 				}
    41. 

  41. 				break;
    42. 

  42. 			case "disable":
    43. 

  43. 			default:
    44. 

  44. 				$action = "disable";
    45. 

  45. 				break;
    46. 

  46. 		}
    47. 

  47. 		
    48. 

  48. 		// is the user removal type the same as the system removal type
    49. 

  49. 		if ($type == $action) {
    50. 

  50. 			
    51. 

  51. 			// check if we can do the user action
    52. 

  52. 			if (!empty($confirm_token) && acount_removal_validate_confirm_token($confirm_token, $type, $user_guid)) {
    53. 

  53. 				// prepend the reason with users own request
    54. 

  54. 				$reason = elgg_echo("account_removal:disable:default") . ". " . $reason;
    55. 

  55. 				
    56. 

  56. 				// send a thank you e-mail
    57. 

  57. 				account_removal_send_thank_notification($action, $user_guid);
    58. 

  58. 				
    59. 

  59. 				// user has supplied a token, so we can do the action
    60. 

  60. 				if ($action == "disable") {
    61. 

  61. 					$user->ban($reason, false);
    62. 

  62. 					logout();
    63. 

  63. 				} elseif ($action == "remove") {
    64. 

  64. 					delete_entity($user->getGUID(), false);
    65. 

  65. 				}
    66. 

  66. 				
    67. 

  67. 				system_message(elgg_echo("account_removal:actions:remove:success:" . $action));
    68. 

  68. 				
    69. 

  69. 				$forward_url = "";
    70. 

  70. 			} elseif (!empty($confirm_token) && !acount_removal_validate_confirm_token($confirm_token, $action, $user_guid)) {
    71. 

  71. 				// token mismatch
    72. 

  72. 				register_error(elgg_echo("account_removal:actions:remove:error:token_mismatch"));
    73. 

  73. 			} else {
    74. 

  74. 				// user requests removal, generate token and sent confirm mail
    75. 

  75. 				account_removal_send_notification($action, $user_guid);
    76. 

  76. 				
    77. 

  77. 				system_message(elgg_echo("account_removal:actions:remove:success:request"));
    78. 

  78. 				
    79. 

  79. 				$forward_url = "settings/user/" . $user->username;
    80. 

  80. 			}
    81. 

  81. 		} else {
    82. 

  82. 			register_error(elgg_echo("account_removal:actions:remove:error:type_match"));
    83. 

  83. 		}
    84. 

  84. 	}
    85. 

  85. } else {
    86. 

  86. 	register_error(elgg_echo("account_removal:actions:remove:error:user_guid:unknown"));
    87. 

  87. }
    88. 

  88. 

  89. forward($forward_url);
    90. 

  90.