. /** * @package MantisBT * @copyright Copyright (C) 2000 - 2002 Kenzaburo Ito - kenito@300baud.org * @copyright Copyright (C) 2002 - 2014 MantisBT Team - mantisbt-dev@lists.sourceforge.net * @link http://www.mantisbt.org */ /** * MantisBT Core API's */ require_once( 'core.php' ); form_security_validate('manage_user_delete'); auth_reauthenticate(); access_ensure_global_level( config_get( 'manage_user_threshold' ) ); $f_user_id = gpc_get_int( 'user_id' ); $t_user = user_get_row( $f_user_id ); # Ensure that the account to be deleted is of equal or lower access to the # current user. access_ensure_global_level( $t_user['access_level'] ); # check that we are not deleting the last administrator account $t_admin_threshold = config_get_global( 'admin_site_threshold' ); if ( user_is_administrator( $f_user_id ) && user_count_level( $t_admin_threshold ) <= 1 ) { trigger_error( ERROR_USER_CHANGE_LAST_ADMIN, ERROR ); } # If an administrator is trying to delete their own account, use # account_delete.php instead as it is handles logging out and redirection # of users who have just deleted their own accounts. if ( auth_get_current_user_id() == $f_user_id ) { form_security_purge( 'manage_user_delete' ); print_header_redirect( 'account_delete.php?account_delete_token=' . form_security_token( 'account_delete' ), true, false ); } helper_ensure_confirmed( lang_get( 'delete_account_sure_msg' ) . '
' . lang_get( 'username' ) . ': ' . $t_user['username'], lang_get( 'delete_account_button' ) ); user_delete( $f_user_id ); form_security_purge('manage_user_delete'); html_page_top( null, 'manage_user_page.php' ); ?>

'; print_bracket_link( 'manage_user_page.php', lang_get( 'proceed' ) ); ?>