function deleteMessage()
{
if (!empty($_REQUEST['record'])) {
$message = new SecurityGroupMessage();
$message->retrieve($_REQUEST['record']);
$group_owner = false;
if (!empty($message->securitygroup_id)) {
require_once 'modules/SecurityGroups/SecurityGroup.php';
$securitygroup = new SecurityGroup();
$securitygroup->retrieve($data['SECURITYGROUP_ID']);
if ($securitygroup->assigned_user_id == $GLOBALS['current_user']->id) {
$group_owner = true;
}
}
//change all logic like below to check if assigned user to security group as well...
if (is_admin($GLOBALS['current_user']) || $message->created_by == $GLOBALS['current_user']->id || $group_owner) {
$message->mark_deleted($_REQUEST['record']);
}
}
}
