From e0dc711c2b2dc4e2ec397d7f53910f11e1ca4ade Mon Sep 17 00:00:00 2001
From: mcramer <m.cramer@pixcept.de>
Date: Mon, 02 Sep 2013 04:14:56 -0400
Subject: [PATCH] - Changed previous commit to check for read permissions only on download action

---
 interface/web/sites/web_domain_del.php |   82 ++++++++++++++++++++++++++++++++++++++---
 1 files changed, 76 insertions(+), 6 deletions(-)

diff --git a/interface/web/sites/web_domain_del.php b/interface/web/sites/web_domain_del.php
index 27c64e6..cefb0ec 100644
--- a/interface/web/sites/web_domain_del.php
+++ b/interface/web/sites/web_domain_del.php
@@ -42,13 +42,83 @@
 require_once('../../lib/config.inc.php');
 require_once('../../lib/app.inc.php');
 
-// Checke Berechtigungen f�r Modul
-if(!stristr($_SESSION["s"]["user"]["modules"],'sites')) {
-	header("Location: ../index.php");
-	exit;
+//* Check permissions for module
+$app->auth->check_module_permissions('sites');
+
+$app->uses('tpl,tform,tform_actions');
+$app->load('tform_actions');
+
+class page_action extends tform_actions {
+
+	function onBeforeDelete() {
+		global $app; $conf;
+		
+		if($app->tform->checkPerm($this->id,'d') == false) $app->error($app->lng('error_no_delete_permission'));
+		
+		//* Delete all records that belong to this web.
+		$records = $app->db->queryAllRecords("SELECT domain_id FROM web_domain WHERE parent_domain_id = '".$app->functions->intval($this->id)."' AND type != 'vhost'");
+		foreach($records as $rec) {
+			$app->db->datalogDelete('web_domain','domain_id',$rec['domain_id']);
+		}
+		
+		//* Delete all records that belong to this web.
+		$records = $app->db->queryAllRecords("SELECT ftp_user_id FROM ftp_user WHERE parent_domain_id = '".$app->functions->intval($this->id)."'");
+		foreach($records as $rec) {
+			$app->db->datalogDelete('ftp_user','ftp_user_id',$rec['ftp_user_id']);
+		}
+		
+		//* Delete all records that belong to this web.
+		$records = $app->db->queryAllRecords("SELECT shell_user_id FROM shell_user WHERE parent_domain_id = '".$app->functions->intval($this->id)."'");
+		foreach($records as $rec) {
+			$app->db->datalogDelete('shell_user','shell_user_id',$rec['shell_user_id']);
+		}
+        
+        //* Delete all records that belong to this web.
+        $records = $app->db->queryAllRecords("SELECT id FROM cron WHERE parent_domain_id = '".$app->functions->intval($this->id)."'");
+        foreach($records as $rec) {
+            $app->db->datalogDelete('cron','id',$rec['id']);
+        }
+		
+		//* Delete all records that belong to this web
+        $records = $app->db->queryAllRecords("SELECT webdav_user_id FROM webdav_user WHERE parent_domain_id = '".$app->functions->intval($this->id)."'");
+        foreach($records as $rec) {
+            $app->db->datalogDelete('webdav_user','webdav_user_id',$rec['webdav_user_id']);
+        }
+		
+		//* Delete all records that belong to this web
+        $records = $app->db->queryAllRecords("SELECT backup_id FROM web_backup WHERE parent_domain_id = '".$app->functions->intval($this->id)."'");
+        foreach($records as $rec) {
+            $app->db->datalogDelete('web_backup','backup_id',$rec['backup_id']);
+        }
+		
+		//* Delete all records that belog to this web.
+		$web_domain = $app->db->queryOneRecord("SELECT domain FROM web_domain WHERE domain_id = ".$app->functions->intval($this->id));
+		if($web_domain['domain'] != ''){
+			$aps_instances = $app->db->queryAllRecords("SELECT instance_id FROM aps_instances_settings WHERE name = 'main_domain' AND value = '".$web_domain['domain']."'");
+			if(is_array($aps_instances) && !empty($aps_instances)){
+				foreach($aps_instances as $aps_instance){
+					if($aps_instance['instance_id'] > 0){
+						$app->db->datalogDelete('aps_instances_settings','instance_id',$aps_instance['instance_id']);
+						$app->db->datalogDelete('aps_instances','id',$aps_instance['instance_id']);
+					}
+				}
+			}
+		}
+		
+		//* Delete all web folders
+        $records = $app->db->queryAllRecords("SELECT web_folder_id FROM web_folder WHERE parent_domain_id = '".$app->functions->intval($this->id)."'");
+        foreach($records as $rec) {
+            //* Delete all web folder users
+			$records2 = $app->db->queryAllRecords("SELECT web_folder_user_id FROM web_folder_user WHERE web_folder_id = '".$rec['web_folder_id']."'");
+			foreach($records2 as $rec2) {
+				$app->db->datalogDelete('web_folder_user','web_folder_user_id',$rec2['web_folder_user_id']);
+        }
+			$app->db->datalogDelete('web_folder','web_folder_id',$rec['web_folder_id']);
+        }
+	}
 }
 
-$app->uses("tform_actions");
-$app->tform_actions->onDelete();
+$page = new page_action;
+$page->onDelete();
 
 ?>
\ No newline at end of file

--
Gitblit v1.9.1