Example #1
0
<?php

session_start();
include "../../bossflex/Helpers/Reject.php";
Reject::permission($_SESSION['hradmin']);
if (!isset($_GET['Email']) || !isset($_GET['Disable'])) {
    header('Location:https://' . $_SESSION['redir'] . "?result=A server error occurred. Please try again.");
}
include "../../bossflex/DB/Models/User.php";
/** @var User $User */
$User = User::getUserByEmail($_GET['Email']);
if ($User->getCID() != $_SESSION['hradmin']['CID'] && $_SESSION['hradmin']['CID'] != 1 || !$User) {
    header('Location:https://' . $_SESSION['redir'] . "?result=Error: Incorrect data received");
}
if ($_GET['Disable'] == 1) {
    if ($_SESSION['hradmin']['CID'] == 1) {
        User::disableUser($User->getUID(), 6);
    } else {
        User::disableUser($User->getUID(), 4);
    }
    header('Location:https://' . $_SESSION['redir'] . "?result=" . $User->getEmail() . " disabled");
} else {
    User::enableUser($User->getUID());
    header('Location:https://' . $_SESSION['redir'] . "?result=" . $User->getEmail() . " enabled");
}