clones/librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-09-22 10:58:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

r1984: BIG BROTHER RELEASE // Move user deletion code into authentication module

Browse Source 
git-svn-id: http://www.observium.org/svn/observer/trunk@1984 61d68cd4-352d-0410-923a-c4978735b2b8
This commit is contained in:
Tom Laermans 2011-03-28 10:48:43 +00:00
parent ef6406d4c9
commit 2be7bfe497
5 changed files with 23 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
html/includes/authentication/http-auth.inc.php
View File

@ -65,4 +65,10 @@ function get_userid($username)
return $row['user_id'];
}
function deluser($username)
{
# Not supported
return 0;
}
?>

6
html/includes/authentication/ldap.inc.php
View File

@ -80,4 +80,10 @@ function get_userid($username)
return $row['user_id'];
}
function deluser($username)
{
# Not supported
return 0;
}
?>

6
html/includes/authentication/mysql.inc.php
View File

@ -95,4 +95,10 @@ function get_userid($username)
return $row['user_id'];
}
function deluser($username)
{
mysql_query("DELETE FROM `users` WHERE `user_id` = '" . mres($_GET['user_id']) . "'");
return mysql_affected_rows();
}
?>

2
html/pages/adduser.inc.php
View File

@ -2,7 +2,7 @@
echo("<div style='margin: 10px;'>");
if ($_SESSION['userlevel'] != '10')
if ($_SESSION['userlevel'] < '10')
{
include("includes/error-no-perm.inc.php");
}

14
html/pages/deluser.inc.php
View File

@ -1,14 +1,13 @@
<?php
echo("<div style='margin: 10px;'>");
echo('<div style="margin: 10px;">');
if ($_SESSION['userlevel'] != '10') { include("includes/error-no-perm.inc.php"); } else
if ($_SESSION['userlevel'] < '10') { include("includes/error-no-perm.inc.php"); } else
{
echo("<h3>Delete User</h3>");
if (auth_usermanagement())
{
if ($_GET['action'] == "del")
{
$delete_username = mysql_result(mysql_query("SELECT username FROM users WHERE user_id = '" . mres($_GET['user_id']) . "'"),0);
@ -16,11 +15,7 @@ if ($_SESSION['userlevel'] != '10') { include("includes/error-no-perm.inc.php");
if ($_GET['confirm'] == "yes")
{
mysql_query("DELETE FROM `devices_perms` WHERE `user_id` = '" . mres($_GET['user_id']) . "'");
# FIXME v sql query should be replaced by authmodule
mysql_query("DELETE FROM `users` WHERE `user_id` = '" . mres($_GET['user_id']) . "'");
if (mysql_affected_rows()) { echo("<span class=info>User '$delete_username' deleted!</span>"); }
if (deluser($_GET['user_id'])) { echo("<span class=info>User '$delete_username' deleted!</span>"); }
}
else
{
@ -30,7 +25,6 @@ if ($_SESSION['userlevel'] != '10') { include("includes/error-no-perm.inc.php");
# FIXME v mysql query should be replaced by authmodule
$userlist = mysql_query("SELECT * FROM `users`");
while ($userentry = mysql_fetch_array($userlist))
{
$i++;
@ -40,7 +34,7 @@ if ($_SESSION['userlevel'] != '10') { include("includes/error-no-perm.inc.php");
}
else
{
echo("<span class=red>Auth module does not allow user management!</span><br />");
print_error("Authentication module does not allow user management!");
}
}