Fixed update password under user profile, added delete user functionality

2026-02-28 02:44:53 +00:00 · 2020-03-30 20:41:18 -04:00
parent 22f827a5c8
commit 95b54d5bcf
2 changed files with 32 additions and 4 deletions
--- a/post.php
+++ b/post.php
@@ -81,10 +81,30 @@ if(isset($_POST['edit_user'])){

    $_SESSION['alert_message'] = "User <strong>$name</strong> updated";
    
-    header("Location: users.php");
+    header("Location: " . $_SERVER["HTTP_REFERER"]);

 }

+if(isset($_GET['delete_user'])){
+    $user_id = intval($_GET['delete_user']);
+
+    mysqli_query($mysqli,"DELETE FROM users WHERE user_id = $user_id");
+    mysqli_query($mysqli,"DELETE FROM user_companies WHERE user_id = $user_id");
+    mysqli_query($mysqli,"DELETE FROM logs WHERE user_id = $user_id");
+    mysqli_query($mysqli,"DELETE FROM tickets WHERE ticket_created_by = $user_id");
+    mysqli_query($mysqli,"DELETE FROM tickets WHERE ticket_closed_by = $user_id");
+    mysqli_query($mysqli,"DELETE FROM ticket_update WHERE user_id = $user_id");
+
+    //logging
+    mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'User', log_action = 'Deleted', log_description = '$user_id', log_created_at = NOW()");
+
+    $_SESSION['alert_type'] = "danger";
+    $_SESSION['alert_message'] = "User deleted!";
+    
+    header("Location: " . $_SERVER["HTTP_REFERER"]);
+  
+}
+
 if(isset($_POST['add_company'])){

    $name = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['name'])));