Added g_allow_account_delete global to prevent self account deletion.

git-svn-id: http://mantisbt.svn.sourceforge.net/svnroot/mantisbt/trunk@662 f5dc347c-c33d-0410-90a0-b07cc1902cb9
mantisbt · Jan 18, 2002 · 931b0dc · 931b0dc
1 parent 0e9965b
commit 931b0dc
Show file tree

Hide file tree

Showing 6 changed files with 27 additions and 0 deletions.
diff --git a/account_delete.php b/account_delete.php
@@ -13,6 +13,10 @@
 <?php
 	db_connect( $g_hostname, $g_db_username, $g_db_password, $g_database_name );
 
+	if ( OFF == $g_allow_account_delete ) {
+		print_header_redirect( $g_account_page );
+	}
+
 	# get protected state
 	$t_protected = get_current_user_field( "protected" );
 

diff --git a/account_delete_page.php b/account_delete_page.php
@@ -12,6 +12,10 @@
 <?php login_cookie_check() ?>
 <?php
 	db_connect( $g_hostname, $g_db_username, $g_db_password, $g_database_name );
+
+	if ( OFF == $g_allow_account_delete ) {
+		print_header_redirect( $g_account_page );
+	}
 ?>
 <?php print_page_top1() ?>
 <?php print_page_top2() ?>

diff --git a/account_page.php b/account_page.php
@@ -144,11 +144,17 @@
 		<input type="submit" value="<?php echo $s_update_user_button ?>">
 	</td>
 </form>
+<? 	if ( ON == $g_allow_account_delete ) { ?>
 <form method="post" action="<?php echo $g_account_delete_page ?>">
 	<td class="right">
 		<input type="submit" value="<?php echo $s_delete_account_button ?>">
 	</td>
 </form>
+<? } else { ?>
+	<td>
+		&nbsp;
+	</td>
+<? } ?>
 </tr>
 <?php } ?>
 </table>

diff --git a/config_inc.php b/config_inc.php
@@ -377,6 +377,10 @@
 	# Allow developers and above to close bugs immediately when resolving bugs
 	$g_allow_close_immediately = OFF;
 
+	# --- account delete -----------
+	# Allow users to delete their own accounts
+	$g_allow_account_delete = OFF;
+
 	##############################
 	# Mantis Color Variables
 	##############################

diff --git a/doc/ChangeLog b/doc/ChangeLog
@@ -34,6 +34,7 @@ Mantis
  * Added a check to make sure the cookie_string really is unique.
  * Added a check for a duplciate user in the manage create user page.
  * Added Romanian translation.
+ * Added g_allow_account_delete global to prevent self account deletion.
  * Removed site_settings pages.
  * Removed unused cookie variables.
  * Removed sql_to_unix_time() function.  Unecessary with removal of TIMESTAMPS.

diff --git a/doc/configuration.html b/doc/configuration.html
@@ -1127,6 +1127,14 @@ <h2>Content</h2>
 		Allow developers and above to close bugs immediately when resolving bugs.
 	</td>
 </tr>
+<tr>
+	<td width="20%" bgcolor="#ddddff">
+		$g_allow_account_delete
+	</td>
+	<td width="80%" bgcolor="#ffffff">
+		Allow users to delete their own accounts.
+	</td>
+</tr>
 <tr>
 	<td colspan="2" bgcolor="#eeeeee">
 		Access level needed to re-open bugs.  Look in the constant_inc.php file if you want to set a different value.