06fbd764 |
<?php
/**
* Copyright (C) 2021 Double Bastion LLC
*
* This file is part of Roundpin, which is licensed under the
* GNU Affero General Public License Version 3.0. The license terms
* are detailed in the "LICENSE.txt" file located in the root directory.
*/
session_start();
if (isset($_POST['s_ajax_call']) && ($_POST['s_ajax_call'] == $_SESSION['validate_s_access'])) {
define('ACCESSCONST', TRUE);
require('db-connect.php');
$username = $_POST['username'];
// Get the id of the superadmin for which we want to remove the data
$selectid = $mysqli->query("SELECT id, userrole, username, enabled FROM app_users WHERE userrole = 'superadmin' AND BINARY username = '$username' AND enabled = 1");
$queryres = $selectid->fetch_array();
$userID = $queryres[0];
// Remove the row(s) corresponding to the specified superadmin from the 'external_users' table
$removequery = $mysqli->prepare("DELETE FROM external_users WHERE userid=?");
$removequery->bind_param("i", $userID);
if ($removequery->execute()) { $messagetosend = 'success'; } else { $messagetosend = 'failure'; }
$removequery->close();
// Remove the password files directory
if (is_dir("restr/".$username."/externalext")) {
$removedir = exec("rm -rf restr/".$username."/externalext");
}
$response = array('result' => $messagetosend);
echo json_encode($response);
} else {
header("Location: roundpin-login.php");
}
?>
|