Dotclear

source: admin/blog_del.php @ 3036:7ed4286c8013

Revision 3036:7ed4286c8013, 2.1 KB checked in by franck <carnet.franck.paul@…>, 10 years ago (diff)

Centralizes crypt function of pwd in class.Dotclear.auth.php, closes #1923
Line 
1<?php
2# -- BEGIN LICENSE BLOCK ---------------------------------------
3#
4# This file is part of Dotclear 2.
5#
6# Copyright (c) 2003-2013 Olivier Meunier & Association Dotclear
7# Licensed under the GPL version 2.0 license.
8# See LICENSE file or
9# http://www.gnu.org/licenses/old-licenses/gpl-2.0.html
10#
11# -- END LICENSE BLOCK -----------------------------------------
12
13require dirname(__FILE__).'/../inc/admin/prepend.php';
14
15dcPage::checkSuper();
16
17$blog_id = '';
18$blog_name = '';
19
20if (!empty($_POST['blog_id']))
21{
22     try {
23          $rs = $core->getBlog($_POST['blog_id']);
24     } catch (Exception $e) {
25          $core->error->add($e->getMessage());
26     }
27
28     if ($rs->isEmpty()) {
29          $core->error->add(__('No such blog ID'));
30     } else {
31          $blog_id = $rs->blog_id;
32          $blog_name = $rs->blog_name;
33     }
34}
35
36# Delete the blog
37if (!$core->error->flag() && $blog_id && !empty($_POST['del']))
38{
39     if (!$core->auth->checkPassword($core->auth->crypt($_POST['pwd']))) {
40          $core->error->add(__('Password verification failed'));
41     } else {
42          try {
43               $core->delBlog($blog_id);
44               dcPage::addSuccessNotice(sprintf(__('Blog "%s" successfully deleted'), html::escapeHTML($blog_name)));
45
46               $core->adminurl->redirect("admin.blogs");
47          } catch (Exception $e) {
48               $core->error->add($e->getMessage());
49          }
50     }
51}
52
53dcPage::open(__('Delete a blog'),'',
54     dcPage::breadcrumb(
55          array(
56               __('System') => '',
57               __('Blogs') => $core->adminurl->get("admin.blogs"),
58               __('Delete a blog') => ''
59          ))
60);
61
62if (!$core->error->flag())
63{
64     echo
65     '<div class="warning-msg"><p><strong>'.__('Warning').'</strong></p>'.
66     '<p>'.sprintf(__('You are about to delete the blog %s. Every entry, comment and category will be deleted.'),
67     '<strong>'.$blog_id.' ('.$blog_name.')</strong>').'</p></div>'.
68     '<p>'.__('Please give your password to confirm the blog deletion.').'</p>';
69
70     echo
71     '<form action="'.$core->adminurl->get("admin.blog.del").'" method="post">'.
72     '<div>'.$core->formNonce().'</div>'.
73     '<p><label for="pwd">'.__('Your password:').'</label> '.
74     form::password('pwd',20,255).'</p>'.
75     '<p><input type="submit" class="delete" name="del" value="'.__('Delete this blog').'" />'.
76     form::hidden('blog_id',$blog_id).'</p>'.
77     '</form>';
78}
79
80dcPage::close();
Note: See TracBrowser for help on using the repository browser.

Sites map