-
Notifications
You must be signed in to change notification settings - Fork 0
/
delete-club.php
96 lines (92 loc) · 2.95 KB
/
delete-club.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
<?php
ob_start();
session_start();
if (!isset($_SESSION['user_level']) or ($_SESSION['user_level'] != 1)) {
header("Location: login.php");
exit();
}
include 'header-members.php';
ob_end_flush();
?>
<h2 class="text-center">Delete a Record</h2>
<?php
// Check for a valid user ID, through GET or POST:
if ((isset($_GET['id'])) && (is_numeric($_GET['id']))) {
// From view-users.php
$id = $_GET['id'];
} elseif
((isset($_POST['id'])) && (is_numeric($_POST['id']))) {
// Form submission.
$id = $_POST['id'];
} else {
// If no valid ID, stop the script.
echo "<p class='alert-box alert round'>This page has been accessed in error</p>";
include 'footer.php';
exit();
}
require 'mysqli-connect.php';
// Check if the form has been submitted:
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
if ($_POST['sure'] == 'Yes') {
// Delete the record.
// Make the query:
$q = "DELETE FROM logindb WHERE user_id=$id LIMIT 1";
$result = @mysqli_query($dbcon, $q);
if (mysqli_affected_rows($dbcon) == 1) {
// If it ran OK.
// Print a message:
echo '<div data-alert class="alert-box success radius">
<i class="fa fa-check fa-2x"> Success !</i>
<br>
<h4 class="text-center">The user has been deleted.</h4>
<a href="#" class="close">×</a>
</div>';
} else {// If the query did not run OK.
echo '<div data-alert class="alert-box alert round">
<p class="text-center">The following error(s) occurred:<br>
<a href="#" class="close">×</a>
</div>'; // Public message.
echo '<p>' . mysqli_error($dbcon) . '<br />Query: ' . $q . '</p>'; // Debugging message.
}
} else {
// No confirmation of deletion.
echo '<h3>The user has NOT been deleted.</h3>';
}
} else {
// Show the form.
// Retrieve the user's information:
$q = "SELECT fname, lname, email FROM logindb WHERE user_id=$id";
$result = @mysqli_query($dbcon, $q);
if (mysqli_num_rows($result) == 1) {
// Valid user ID, show the form.
// Get the user's information:
$row = mysqli_fetch_array($result, MYSQLI_NUM);
// Display the record being deleted:
echo "<h3>Are you sure you want to permanently delete $row[0]?</h3>";
// Create the form:
echo '<form action="delete-record.php" method="post">
<div class="row">
<div class="large-6 medium-6 small-12 columns">
<label>
<input id="submit-yes" class="button radius" type="submit" name="sure" value="Yes">
</label>
</div>
<div class="large-6 medium-6 small-12 columns">
<label>
<input id="submit-no" class="button alert" type="submit" name="sure" value="No">
</label>
</div>
<div class="large-6 medium-6 small-12 columns">
<label>
<input type="hidden" name="id" value="' . $id . '">
</label>
</div>
</form>';
} else {
// Not a valid user ID.
echo '<p class="alert-box alert round">This page has been accessed in error</p>'; /*Error message*/
}
}// End of the main submission conditional.
mysqli_close($dbcon);
include 'footer.php';
?>