[Summary view] [Print] [Text view]

   1  <?php
   2  # MantisBT - A PHP based bugtracking system
   3  
   4  # MantisBT is free software: you can redistribute it and/or modify
   5  # it under the terms of the GNU General Public License as published by
   6  # the Free Software Foundation, either version 2 of the License, or
   7  # (at your option) any later version.
   8  #
   9  # MantisBT is distributed in the hope that it will be useful,
  10  # but WITHOUT ANY WARRANTY; without even the implied warranty of
  11  # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  12  # GNU General Public License for more details.
  13  #
  14  # You should have received a copy of the GNU General Public License
  15  # along with MantisBT.  If not, see <http://www.gnu.org/licenses/>.
  16  
  17  /**
  18   * @package MantisBT
  19   * @copyright Copyright (C) 2000 - 2002  Kenzaburo Ito - kenito@300baud.org
  20   * @copyright Copyright (C) 2002 - 2011  MantisBT Team - mantisbt-dev@lists.sourceforge.net
  21   * @link http://www.mantisbt.org
  22   *
  23   * @uses core.php
  24   * @uses access_api.php
  25   * @uses authentication_api.php
  26   * @uses config_api.php
  27   * @uses constant_inc.php
  28   * @uses database_api.php
  29   * @uses form_api.php
  30   * @uses helper_api.php
  31   * @uses lang_api.php
  32   * @uses print_api.php
  33   * @uses user_api.php
  34   */
  35  
  36  /**
  37   * MantisBT Core API's
  38   */
  39  require_once ( 'core.php' );
  40  require_api( 'access_api.php' );
  41  require_api( 'authentication_api.php' );
  42  require_api( 'config_api.php' );
  43  require_api( 'constant_inc.php' );
  44  require_api( 'database_api.php' );
  45  require_api( 'form_api.php' );
  46  require_api( 'helper_api.php' );
  47  require_api( 'lang_api.php' );
  48  require_api( 'print_api.php' );
  49  require_api( 'user_api.php' );
  50  
  51  form_security_validate( 'manage_user_prune' );
  52  
  53  auth_reauthenticate();
  54  
  55  access_ensure_global_level( config_get( 'manage_user_threshold' ) );
  56  
  57  $t_user_table = db_get_table( 'user' );
  58  
  59  # Delete the users who have never logged in and are older than 1 week
  60  $days_old = (int)7 * SECONDS_PER_DAY;
  61  
  62  $query = "SELECT id, access_level
  63          FROM $t_user_table
  64          WHERE ( login_count = 0 ) AND ( date_created = last_visit ) AND " . db_helper_compare_days( 0, "date_created", "> $days_old" );
  65  $result = db_query_bound($query, Array( db_now() ) );
  66  
  67  if ( !$result ) {
  68      trigger_error( ERROR_GENERIC, ERROR );
  69  }
  70  
  71  $count = db_num_rows( $result );
  72  
  73  if ( $count > 0 ) {
  74      helper_ensure_confirmed( lang_get( 'confirm_account_pruning' ),
  75                               lang_get( 'prune_accounts_button' ) );
  76  }
  77  
  78  for ($i=0; $i < $count; $i++) {
  79      $row = db_fetch_array( $result );
  80      # Don't prune accounts with a higher global access level than the current user
  81      if ( access_has_global_level( $row['access_level'] ) ) {
  82          user_delete($row['id']);
  83      }
  84  }
  85  
  86  form_security_purge( 'manage_user_prune' );
  87  
  88  print_header_redirect( 'manage_user_page.php' );