public static function delete_by_id($user_id) { MemberExtendedFieldsService::delete_user_fields($user_id); $condition = 'WHERE user_id=:user_id'; $parameters = array('user_id' => $user_id); self::$querier->delete(DB_TABLE_MEMBER, $condition, $parameters); self::$querier->delete(DB_TABLE_MEMBER_EXTENDED_FIELDS, $condition, $parameters); self::$querier->delete(DB_TABLE_SESSIONS, $condition, $parameters); self::$querier->delete(DB_TABLE_INTERNAL_AUTHENTICATION, $condition, $parameters); self::$querier->delete(DB_TABLE_AUTHENTICATION_METHOD, $condition, $parameters); $upload = new Uploads(); $upload->Empty_folder_member($user_id); self::regenerate_cache(); }
} else { $error = 'e_upload_failed_unwritable'; } $error = !empty($error) ? '&error=' . $error . '#errorh' : ''; redirect(HOST . DIR . '/admin/admin_files.php?f=' . $folder . ($folder_member > 0 ? '&fm=' . $folder_member : '') . $error); } elseif (!empty($del_folder)) { $Session->csrf_get_protect(); $Uploads->Del_folder($del_folder); if (!empty($folder_member)) { redirect(HOST . DIR . '/admin/admin_files.php?fm=' . $folder_member); } else { redirect(HOST . DIR . '/admin/admin_files.php?f=' . $folder); } } elseif (!empty($empty_folder)) { $Session->csrf_get_protect(); $Uploads->Empty_folder_member($empty_folder); redirect(HOST . DIR . '/admin/admin_files.php?showm=1'); } elseif (!empty($del_file)) { $Session->csrf_get_protect(); $Uploads->Del_file($del_file, -1, ADMIN_NO_CHECK); redirect(HOST . DIR . '/admin/admin_files.php?f=' . $folder . ($folder_member > 0 ? '&fm=' . $folder_member : '')); } elseif (!empty($move_folder) && $to != -1) { $Session->csrf_get_protect(); $user_id = $Sql->query("SELECT user_id FROM " . DB_TABLE_UPLOAD_CAT . " WHERE id = '" . $move_folder . "'", __LINE__, __FILE__); $move_list_parent = array(); $result = $Sql->query_while("SELECT id, id_parent, name\n\tFROM " . PREFIX . "upload_cat\n\tWHERE user_id = '" . $user_id . "'\n\tORDER BY id", __LINE__, __FILE__); while ($row = $Sql->fetch_assoc($result)) { $move_list_parent[$row['id']] = $row['id_parent']; } $Sql->query_close($result); $array_child_folder = array();
} else { redirect(HOST . DIR . '/member/member' . url('.php?error=incomplete&add=1') . '#errorh'); } } else { redirect(HOST . DIR . '/admin/admin_members' . url('.php?id=' . $id . '&error=pass_mini&add=1') . '#errorh'); } } } else { redirect(HOST . DIR . '/admin/admin_members' . url('.php?error=invalid_mail&add=1') . '#errorh'); } } elseif (!empty($id) && $delete) { $Session->csrf_get_protect(); $Sql->query_inject("DELETE FROM " . DB_TABLE_MEMBER . " WHERE user_id = '" . $id . "'", __LINE__, __FILE__); import('members/uploads'); $Uploads = new Uploads(); $Uploads->Empty_folder_member($id); $Cache->Generate_file('stats'); redirect(HOST . SCRIPT); } elseif ($add) { $Template->set_filenames(array('admin_members_management2' => 'admin/admin_members_management2.tpl')); switch ($get_error) { case 'pass_mini': $errstr = $LANG['e_pass_mini']; break; case 'incomplete': $errstr = $LANG['e_incomplete']; break; case 'invalid_mail': $errstr = $LANG['e_mail_invalid']; break; case 'pseudo_auth':
if ($password_old_hash === $password_old_bdd && $password_hash === $password_bis_hash) { if (strlen($password) >= 6 && strlen($password_bis) >= 6) { $Sql->query_inject("UPDATE " . DB_TABLE_MEMBER . " SET password = '******' WHERE user_id = '" . $id_get . "'", __LINE__, __FILE__); } else { redirect(HOST . DIR . '/member/member' . url('.php?id=' . $id_get . '&edit=1&error=pass_mini') . '#errorh'); } } else { redirect(HOST . DIR . '/member/member' . url('.php?id=' . $id_get . '&edit=1&error=pass_same') . '#errorh'); } } } if (!empty($_POST['del_member'])) { $Sql->query_inject("DELETE FROM " . DB_TABLE_MEMBER . " WHERE user_id = '" . $User->get_attribute('user_id') . "'", __LINE__, __FILE__); import('members/uploads'); $Uploads = new Uploads(); $Uploads->Empty_folder_member($User->get_attribute('user_id')); $Cache->Generate_file('stats'); } $user_mail = strtolower($_POST['mail']); if (check_mail($user_mail)) { $user_lang = retrieve(POST, 'user_lang', ''); $user_theme = retrieve(POST, 'user_theme', ''); $user_editor = retrieve(POST, 'user_editor', ''); $user_timezone = retrieve(POST, 'user_timezone', ''); $user_show_mail = !empty($_POST['user_show_mail']) ? '0' : '1'; $user_local = retrieve(POST, 'user_local', ''); $user_occupation = retrieve(POST, 'user_occupation', ''); $user_hobbies = retrieve(POST, 'user_hobbies', ''); $user_desc = retrieve(POST, 'user_desc', '', TSTRING_PARSE); $user_sex = retrieve(POST, 'user_sex', 0); $user_sign = retrieve(POST, 'user_sign', '', TSTRING_PARSE);
AppContext::get_response()->redirect('/admin/admin_files.php?f=' . $folder . ($folder_member > 0 ? '&fm=' . $folder_member : '') . $anchor); } elseif (!empty($del_folder)) { AppContext::get_session()->csrf_get_protect(); //Protection csrf //Suppression du dossier et de tout le contenu Uploads::Del_folder($del_folder); if (!empty($folder_member)) { AppContext::get_response()->redirect('/admin/admin_files.php?fm=' . $folder_member); } else { AppContext::get_response()->redirect('/admin/admin_files.php?f=' . $folder); } } elseif (!empty($empty_folder)) { AppContext::get_session()->csrf_get_protect(); //Protection csrf. //Suppression de tout les dossiers enfants. Uploads::Empty_folder_member($empty_folder); AppContext::get_response()->redirect('/admin/admin_files.php?showm=1'); } elseif (!empty($del_file)) { AppContext::get_session()->csrf_get_protect(); //Protection csrf //Suppression d'un fichier. Uploads::Del_file($del_file, -1, Uploads::ADMIN_NO_CHECK); AppContext::get_response()->redirect('/admin/admin_files.php?f=' . $folder . ($folder_member > 0 ? '&fm=' . $folder_member : '')); } elseif (!empty($move_folder) && $to != -1) { AppContext::get_session()->csrf_get_protect(); //Protection csrf $user_id = 0; try { $user_id = PersistenceContext::get_querier()->get_column_value(DB_TABLE_UPLOAD_CAT, 'user_id', 'WHERE id=:id', array('id' => $move_folder)); } catch (RowNotFoundException $e) { }