/**
* Delete an existing user from the database and tidy up
*
* @access public
* @param bool delete all documents belonging to the user
* @return bool Removal successful?
*/
function deleteUser($delete_documents = true)
{
global $perm;
// Do we have permission to do so?
if (!$perm->have_perm("admin")) {
$this->msg .= "error§" . _("Sie haben keine Berechtigung Accounts zu löschen.") . "§";
return FALSE;
}
if (!$perm->have_perm("root")) {
if ($this->user_data['auth_user_md5.perms'] == "root") {
$this->msg .= "error§" . _("Sie haben keine Berechtigung <em>Root-Accounts</em> zu löschen.") . "§";
return FALSE;
}
if ($this->user_data['auth_user_md5.perms'] == "admin" && !$this->adminOK()) {
$this->msg .= "error§" . _("Sie haben keine Berechtigung diesen Admin-Account zu löschen.") . "§";
return FALSE;
}
}
$status = studygroup_sem_types();
// active dozent?
if (empty($status)) {
$active_count = 0;
} else {
$query = "SELECT SUM(c) AS count FROM (\n SELECT COUNT(*) AS c\n FROM seminar_user AS su1\n INNER JOIN seminar_user AS su2 ON (su1.seminar_id = su2.seminar_id AND su2.status = 'dozent')\n INNER JOIN seminare ON (su1.seminar_id = seminare.seminar_id AND seminare.status NOT IN (?))\n WHERE su1.user_id = ? AND su1.status = 'dozent'\n GROUP BY su1.seminar_id\n HAVING c = 1\n ORDER BY NULL\n ) AS sub";
$statement = DBManager::get()->prepare($query);
$statement->execute(array(studygroup_sem_types(), $this->user_data['auth_user_md5.user_id']));
$active_count = $statement->fetchColumn();
}
if ($active_count) {
$this->msg .= sprintf("error§" . _("<em>%s</em> ist Lehrkraft in %s aktiven Veranstaltungen und kann daher nicht gelöscht werden.") . "§", $this->user_data['auth_user_md5.username'], $active_count);
return FALSE;
//founder of studygroup?
} elseif (get_config('STUDYGROUPS_ENABLE')) {
$status = studygroup_sem_types();
if (empty($status)) {
$group_ids = array();
} else {
$query = "SELECT Seminar_id\n FROM seminare AS s\n LEFT JOIN seminar_user AS su USING (Seminar_id)\n WHERE su.status = 'dozent' AND su.user_id = ? AND s.status IN (?)";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id'], studygroup_sem_types()));
$group_ids = $statement->fetchAll(PDO::FETCH_COLUMN);
}
foreach ($group_ids as $group_id) {
$sem = Seminar::GetInstance($group_id);
if (StudygroupModel::countMembers($group_id) > 1) {
// check whether there are tutors or even autors that can be promoted
$tutors = $sem->getMembers('tutor');
$autors = $sem->getMembers('autor');
if (count($tutors) > 0) {
$new_founder = current($tutors);
StudygroupModel::promote_user($new_founder['username'], $sem->getId(), 'dozent');
continue;
} elseif (count($autors) > 0) {
$new_founder = current($autors);
StudygroupModel::promote_user($new_founder['username'], $sem->getId(), 'dozent');
continue;
}
// since no suitable successor was found, we are allowed to remove the studygroup
} else {
$sem->delete();
}
unset($sem);
}
}
// store user preferred language for sending mail
$user_language = getUserLanguagePath($this->user_data['auth_user_md5.user_id']);
// delete documents of this user
if ($delete_documents) {
// Remove private file space of this user
if (Config::get()->PERSONALDOCUMENT_ENABLE) {
$root_dir = new RootDirectory($this->user_data['auth_user_md5.user_id']);
$root_dir->delete();
}
// Remove other files
$temp_count = 0;
$query = "SELECT dokument_id FROM dokumente WHERE user_id = ?";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
while ($document_id = $statement->fetchColumn()) {
if (delete_document($document_id)) {
$temp_count++;
}
}
if ($temp_count) {
$this->msg .= "info§" . sprintf(_("%s Dokumente gelöscht."), $temp_count) . "§";
}
// delete empty folders of this user
$temp_count = 0;
$query = "SELECT COUNT(*) FROM folder WHERE range_id = ?";
$count_content = DBManager::get()->prepare($query);
$query = "DELETE FROM folder WHERE folder_id = ?";
$delete_folder = DBManager::get()->prepare($query);
$query = "SELECT folder_id FROM folder WHERE user_id = ? ORDER BY mkdate DESC";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
while ($folder_id = $statement->fetchColumn()) {
$count_content->execute(array($folder_id));
$count = $count_content->fetchColumn();
$count_content->closeCursor();
if (!$count && !doc_count($folder_id)) {
$delete_folder->execute(array($folder_id));
$temp_count += $delete_folder->rowCount();
}
}
if ($temp_count) {
$this->msg .= "info§" . sprintf(_("%s leere Ordner gelöscht."), $temp_count) . "§";
}
// folder left?
$query = "SELECT COUNT(*) FROM folder WHERE user_id = ?";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
$count = $statement->fetchColumn();
if ($count) {
$this->msg .= sprintf("info§" . _("%s Ordner konnten nicht gelöscht werden, da sie noch Dokumente anderer BenutzerInnen enthalten.") . "§", $count);
}
}
// kill all the ressources that are assigned to the user (and all the linked or subordinated stuff!)
if (Config::get()->RESOURCES_ENABLE) {
$killAssign = new DeleteResourcesUser($this->user_data['auth_user_md5.user_id']);
$killAssign->delete();
}
$this->re_sort_position_in_seminar_user();
// delete user from seminars (postings will be preserved)
$query = "DELETE FROM seminar_user WHERE user_id = ?";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
if (($db_ar = $statement->rowCount()) > 0) {
$this->msg .= "info§" . sprintf(_("%s Einträge aus Veranstaltungen gelöscht."), $db_ar) . "§";
}
// delete user from waiting lists
$query = "SELECT seminar_id FROM admission_seminar_user WHERE user_id = ?";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
$seminar_ids = $statement->fetchAll(PDO::FETCH_COLUMN);
$query = "DELETE FROM admission_seminar_user WHERE user_id = ?";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
if (($db_ar = $statement->rowCount()) > 0) {
$this->msg .= "info§" . sprintf(_("%s Einträge aus Wartelisten gelöscht."), $db_ar) . "§";
array_map('update_admission', $seminar_ids);
}
// delete user from instituts
$this->logInstUserDel($this->user_data['auth_user_md5.user_id']);
$query = "DELETE FROM user_inst WHERE user_id = ?";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
if (($db_ar = $statement->rowCount()) > 0) {
$this->msg .= "info§" . sprintf(_("%s Einträge aus MitarbeiterInnenlisten gelöscht."), $db_ar) . "§";
}
// delete user from Statusgruppen
if ($db_ar = RemovePersonFromAllStatusgruppen(get_username($this->user_data['auth_user_md5.user_id'])) > 0) {
$this->msg .= "info§" . sprintf(_("%s Einträge aus Funktionen / Gruppen gelöscht."), $db_ar) . "§";
}
// delete user from archiv
$query = "DELETE FROM archiv_user WHERE user_id = ?";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
if (($db_ar = $statement->rowCount()) > 0) {
$this->msg .= "info§" . sprintf(_("%s Einträge aus den Zugriffsberechtigungen für das Archiv gelöscht."), $db_ar) . "§";
}
// delete all personal news from this user
if ($db_ar = StudipNews::DeleteNewsByAuthor($this->user_data['auth_user_md5.user_id'])) {
$this->msg .= "info§" . sprintf(_("%s Einträge aus den Ankündigungen gelöscht."), $db_ar) . "§";
}
if ($db_ar = StudipNews::DeleteNewsRanges($this->user_data['auth_user_md5.user_id'])) {
$this->msg .= "info§" . sprintf(_("%s Verweise auf Ankündigungen gelöscht."), $db_ar) . "§";
}
//delete entry in news_rss_range
StudipNews::UnsetRssId($this->user_data['auth_user_md5.user_id']);
// delete 'Studiengaenge'
$query = "DELETE FROM user_studiengang WHERE user_id = ?";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
if (($db_ar = $statement->rowCount()) > 0) {
$this->msg .= "info§" . sprintf(_("%s Zuordnungen zu Studiengängen gelöscht."), $db_ar) . "§";
}
// delete all private appointments of this user
if (get_config('CALENDAR_ENABLE')) {
$appkills = CalendarEvent::deleteBySQL('range_id = ?', array($this->user_data['auth_user_md5.user_id']));
if ($appkills) {
$this->msg .= "info§" . sprintf(_("%s Einträge aus den Terminen gelöscht."), $appkills) . "§";
}
// delete membership in group calendars
if (get_config('CALENDAR_GROUP_ENABLE')) {
$membershipkills = CalendarUser::deleteBySQL('owner_id = :user_id OR user_id = :user_id', array(':user_id' => $this->user_data['auth_user_md5.user_id']));
if ($membershipkills) {
$this->msg .= 'info§' . sprintf(_('%s Verknüpfungen mit Gruppenterminkalendern gelöscht.'));
}
}
}
// delete all messages send or received by this user
$messaging = new messaging();
$messaging->delete_all_messages($this->user_data['auth_user_md5.user_id']);
// delete user from all foreign adressbooks and empty own adressbook
$buddykills = Contact::deleteBySQL('user_id = ?', array($this->user_data['auth_user_md5.user_id']));
if ($buddykills > 0) {
$this->msg .= "info§" . sprintf(_("%s Einträge aus Adressbüchern gelöscht."), $buddykills) . "§";
}
$contactkills = Contact::deleteBySQL('owner_id = ?', array($this->user_data['auth_user_md5.user_id']));
if ($contactkills) {
$this->msg .= sprintf(_('Adressbuch mit %d Einträgen gelöscht.'), $contactkills);
}
// delete users groups
Statusgruppen::deleteBySQL('range_id = ?', array($this->user_data['auth_user_md5.user_id']));
// remove user from any groups
StatusgruppeUser::deleteBySQL('user_id = ?', array($this->user_data['auth_user_md5.user_id']));
// delete all blubber entrys
$query = "DELETE FROM blubber WHERE user_id = ?";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
if (($db_ar = $statement->rowCount()) > 0) {
$this->msg .= "info§" . sprintf(_("%s Blubber gelöscht."), $db_ar) . "§";
}
// delete the datafields
$localEntries = DataFieldEntry::removeAll($this->user_data['auth_user_md5.user_id']);
UserConfigEntry::deleteByUser($this->user_data['auth_user_md5.user_id']);
// delete all remaining user data
$queries = array("DELETE FROM kategorien WHERE range_id = ?", "DELETE FROM user_info WHERE user_id = ?", "DELETE FROM user_visibility WHERE user_id = ?", "DELETE FROM user_online WHERE user_id = ?", "DELETE FROM auto_insert_user WHERE user_id = ?", "DELETE FROM roles_user WHERE userid = ?", "DELETE FROM schedule WHERE user_id = ?", "DELETE FROM schedule_seminare WHERE user_id = ?", "DELETE FROM termin_related_persons WHERE user_id = ?", "DELETE FROM user_userdomains WHERE user_id = ?");
foreach ($queries as $query) {
DBManager::get()->prepare($query)->execute(array($this->user_data['auth_user_md5.user_id']));
}
object_kill_visits($this->user_data['auth_user_md5.user_id']);
object_kill_views($this->user_data['auth_user_md5.user_id']);
// delete picture
$avatar = Avatar::getAvatar($this->user_data["auth_user_md5.user_id"]);
if ($avatar->is_customized()) {
$avatar->reset();
$this->msg .= "info§" . _("Bild gelöscht.") . "§";
}
// delete visibility settings
Visibility::removeUserPrivacySettings($this->user_data['auth_user_md5.user_id']);
//delete connected users
if (get_config('ELEARNING_INTERFACE_ENABLE')) {
if (ELearningUtils::initElearningInterfaces()) {
foreach ($GLOBALS['connected_cms'] as $cms) {
if ($cms->auth_necessary && $cms->user instanceof ConnectedUser) {
$user_auto_create = $cms->USER_AUTO_CREATE;
$cms->USER_AUTO_CREATE = false;
$userclass = strtolower(get_class($cms->user));
$connected_user = new $userclass($cms->cms_type, $this->user_data['auth_user_md5.user_id']);
if ($ok = $connected_user->deleteUser()) {
if ($connected_user->is_connected) {
$this->msg .= "info§" . sprintf(_("Der verknüpfte Nutzer %s wurde im System %s gelöscht."), $connected_user->login, $connected_user->cms_type) . "§";
}
}
$cms->USER_AUTO_CREATE = $user_auto_create;
}
}
}
}
// delete deputy entries if necessary
$query = "DELETE FROM deputies WHERE ? IN (user_id, range_id)";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
$deputyEntries = $statement->rowCount();
if ($deputyEntries) {
$this->msg .= "info§" . sprintf(_("%s Einträge in den Vertretungseinstellungen gelöscht."), $deputyEntries) . "§";
}
// delete Stud.IP account
$query = "DELETE FROM auth_user_md5 WHERE user_id = ?";
$statement = DBManager::get()->prepare($query);
$statement->execute(array($this->user_data['auth_user_md5.user_id']));
if (!$statement->rowCount()) {
$this->msg .= "error§<em>" . _("Fehler:") . "</em> " . $query . "§";
return FALSE;
} else {
$this->msg .= "msg§" . sprintf(_("Benutzer \"%s\" gelöscht."), $this->user_data['auth_user_md5.username']) . "§";
}
log_event("USER_DEL", $this->user_data['auth_user_md5.user_id'], NULL, sprintf("%s %s (%s)", $this->user_data['auth_user_md5.Vorname'], $this->user_data['auth_user_md5.Nachname'], $this->user_data['auth_user_md5.username']));
//log with Vorname Nachname (username) as info string
// Can we reach the email?
if ($this->checkMail($this->user_data['auth_user_md5.Email'])) {
// include language-specific subject and mailbody
$Zeit = date("H:i:s, d.m.Y", time());
include "locale/{$user_language}/LC_MAILS/delete_mail.inc.php";
// send mail
StudipMail::sendMessage($this->user_data['auth_user_md5.Email'], $subject, $mailbody);
}
unset($this->user_data);
return TRUE;
}
/**
* displays a paginated member overview of a studygroup
*
* @param string id of a studypgroup
* @param string page number the current page
*
* @return void
*
*/
function members_action()
{
$id = $_SESSION['SessionSeminar'];
PageLayout::setTitle(getHeaderLine($_SESSION['SessionSeminar']) . ' - ' . _("Teilnehmende"));
Navigation::activateItem('/course/members');
PageLayout::setHelpKeyword('Basis.StudiengruppenBenutzer');
Request::set('choose_member_parameter', $this->flash['choose_member_parameter']);
object_set_visit_module('participants');
$this->last_visitdate = object_get_visit($id, 'participants');
$sem = Course::find($id);
$this->anzahl = StudygroupModel::countMembers($id);
$this->groupname = $sem->getFullname();
$this->sem_id = $id;
$this->groupdescription = $sem->beschreibung;
$this->moderators = $sem->getMembersWithStatus('dozent');
$this->tutors = $sem->getMembersWithStatus('tutor');
$this->autors = $sem->getMembersWithStatus('autor');
$this->accepted = $sem->admission_applicants->findBy('status', 'accepted');
$this->sem_class = Course::findCurrent()->getSemClass();
$inviting_search = new SQLSearch("SELECT auth_user_md5.user_id, {$GLOBALS['_fullname_sql']['full_rev']} as fullname, username, perms " . "FROM auth_user_md5 " . "LEFT JOIN user_info ON (auth_user_md5.user_id = user_info.user_id) " . "LEFT JOIN seminar_user ON (auth_user_md5.user_id = seminar_user.user_id AND seminar_user.Seminar_id = '" . addslashes($id) . "') " . "WHERE perms NOT IN ('root', 'admin') " . "AND " . get_vis_query() . " AND (username LIKE :input OR Vorname LIKE :input " . "OR CONCAT(Vorname,' ',Nachname) LIKE :input " . "OR CONCAT(Nachname,' ',Vorname) LIKE :input " . "OR Nachname LIKE :input OR {$GLOBALS['_fullname_sql']['full_rev']} LIKE :input) " . "ORDER BY fullname ASC", _("Nutzer suchen"), "user_id");
$this->rechte = $GLOBALS['perm']->have_studip_perm("tutor", $id);
$actions = new ActionsWidget();
if ($this->rechte) {
$mp = MultiPersonSearch::get('studygroup_invite_' . $id)->setLinkText(_('Neue Gruppenmitglieder-/innen einladen'))->setLinkIconPath("")->setTitle(_('Neue Gruppenmitglieder/-innen einladen'))->setExecuteURL($this->url_for('course/studygroup/execute_invite/' . $id, array('view' => Request::get('view'))))->setSearchObject($inviting_search)->addQuickfilter(_('Adressbuch'), User::findCurrent()->contacts->pluck('user_id'))->setNavigationItem('/course/members')->render();
$element = LinkElement::fromHTML($mp, Icon::create('community+add', 'clickable'));
$actions->addElement($element);
}
if ($this->rechte || $sem->getSemClass()['studygroup_mode']) {
$actions->addLink(_('Nachricht an alle Gruppenmitglieder verschicken'), $this->url_for('course/studygroup/message/' . $id), Icon::create('mail', 'clickable'), array('data-dialog' => 1));
}
if ($actions->hasElements()) {
Sidebar::get()->addWidget($actions);
}
$this->invitedMembers = StudygroupModel::getInvitations($id);
}
">
<? endif; ?>
<?php
echo htmlready($group['Name']);
?>
</a> <?php
echo $group['visible'] ? '' : "[" . _('versteckt') . "]";
?>
</td>
<td><?php
echo strftime('%x', $group['mkdate']);
?>
</td>
<td align="center">
<?php
echo StudygroupModel::countMembers($group['Seminar_id']);
?>
</td>
<td style="white-space:nowrap;">
<? $founders = StudygroupModel::getFounder($group['Seminar_id']);
foreach ($founders as $founder) : ?>
<?php
echo Avatar::getAvatar($founder['user_id'])->getImageTag(Avatar::SMALL);
?>
<a href="<?php
echo URLHelper::getlink('dispatch.php/profile?username='******'uname']);
?>
"><?php
echo htmlready($founder['fullname']);
?>
</a>
