friendica_2021-01/mod/removeme.php

89 lines
2.3 KiB
PHP
Raw Normal View History

2011-02-03 12:58:47 +01:00
<?php
2018-01-22 15:16:25 +01:00
/**
* @file mod/removeme.php
*/
use Friendica\App;
use Friendica\Core\Config;
2018-01-22 15:16:25 +01:00
use Friendica\Core\L10n;
2017-08-26 08:04:21 +02:00
use Friendica\Core\System;
use Friendica\Database\dba;
use Friendica\Database\DBM;
use Friendica\Model\User;
2018-04-15 11:39:05 +02:00
require_once 'include/enotify.php';
function removeme_post(App $a)
{
if (!local_user()) {
2011-02-03 12:58:47 +01:00
return;
}
2011-02-03 12:58:47 +01:00
if (x($_SESSION, 'submanage') && intval($_SESSION['submanage'])) {
2012-01-27 05:08:02 +01:00
return;
}
2012-01-27 05:08:02 +01:00
if ((!x($_POST, 'qxz_password')) || (!strlen(trim($_POST['qxz_password'])))) {
2011-02-03 12:58:47 +01:00
return;
}
2011-02-03 12:58:47 +01:00
if ((!x($_POST, 'verify')) || (!strlen(trim($_POST['verify'])))) {
2011-02-03 12:58:47 +01:00
return;
}
2011-02-03 12:58:47 +01:00
if ($_POST['verify'] !== $_SESSION['remove_account_verify']) {
2011-02-03 12:58:47 +01:00
return;
}
2011-02-03 12:58:47 +01:00
2018-04-15 11:39:05 +02:00
// send notification to admins so that they can clean um the backups
// send email to admins
$admin_mails = explode(",", str_replace(" ", "", Config::get('config', 'admin_email')));
2018-05-19 07:59:43 +02:00
foreach ($admin_mails as $mail) {
$admin = dba::selectFirst('user', ['uid', 'language', 'email'], ['email' => $mail]);
if (!DBM::is_result($admin)) {
continue;
}
2018-04-15 11:39:05 +02:00
notification([
'type' => SYSTEM_EMAIL,
'subject' => L10n::t('[Friendica System Notify]') . ' ' . L10n::t('User deleted their account'),
'preamble' => L10n::t('On your Friendica node an user deleted their account. Please ensure that their data is removed from the backups.'),
'body' => L10n::t('The user id is %d', local_user()),
'to_email' => $admin['email'],
'uid' => $admin['uid'],
'language' => $admin['language'] ? $admin['language'] : 'en',
'show_in_notification_page' => false
]);
}
if (User::authenticate($a->user, trim($_POST['qxz_password']))) {
User::remove($a->user['uid']);
2011-02-03 12:58:47 +01:00
// NOTREACHED
}
}
function removeme_content(App $a)
{
if (!local_user()) {
goaway(System::baseUrl());
}
2011-02-03 12:58:47 +01:00
$hash = random_string();
require_once("mod/settings.php");
settings_init($a);
2011-02-03 12:58:47 +01:00
$_SESSION['remove_account_verify'] = $hash;
2011-05-11 13:37:13 +02:00
$tpl = get_markup_template('removeme.tpl');
$o = replace_macros($tpl, [
'$basedir' => System::baseUrl(),
2011-02-03 12:58:47 +01:00
'$hash' => $hash,
2018-01-22 15:16:25 +01:00
'$title' => L10n::t('Remove My Account'),
'$desc' => L10n::t('This will completely remove your account. Once this has been done it is not recoverable.'),
'$passwd' => L10n::t('Please enter your password for verification:'),
'$submit' => L10n::t('Remove My Account')
]);
2011-02-03 12:58:47 +01:00
return $o;
}