<?php require_once("inc/prerequisites.inc.php"); $AuthUsers = array("admin", "domainadmin"); if (!isset($_SESSION['mailcow_cc_role']) OR !in_array($_SESSION['mailcow_cc_role'], $AuthUsers)) { header('Location: /'); exit(); } require_once("inc/header.inc.php"); ?> <div class="container"> <div class="row"> <div class="col-md-12"> <div class="panel panel-default"> <div class="panel-heading"> <h3 class="panel-title"><?=$lang['delete']['title'];?></h3> </div> <div class="panel-body"> <?php if (isset($_SESSION['mailcow_cc_role']) && ($_SESSION['mailcow_cc_role'] == "admin" || $_SESSION['mailcow_cc_role'] == "domainadmin")) { // DELETE DOMAIN if (isset($_GET["domain"]) && is_valid_domain_name($_GET["domain"]) && !empty($_GET["domain"]) && $_SESSION['mailcow_cc_role'] == "admin") { $domain = $_GET["domain"]; ?> <div class="alert alert-warning" role="alert"><?=sprintf($lang['delete']['remove_domain_warning'], htmlspecialchars($_GET["domain"]));?></div> <p><?=$lang['delete']['remove_domain_details'];?></p> <form class="form-horizontal" role="form" method="post" action="/mailbox.php"> <input type="hidden" name="domain" value="<?php echo htmlspecialchars($domain) ?>"> <div class="form-group"> <div class="col-sm-offset-1 col-sm-10"> <button type="submit" name="trigger_mailbox_action" value="deletedomain" class="btn btn-default btn-sm"><?=$lang['delete']['remove_button'];?></button> </div> </div> </form> <?php } // DELETE ALIAS elseif (isset($_GET["alias"]) && (filter_var($_GET["alias"], FILTER_VALIDATE_EMAIL) || is_valid_domain_name(substr(strrchr($_GET["alias"], "@"), 1))) && !empty($_GET["alias"])) { $domain = substr(strrchr($_GET["alias"], "@"), 1); if (hasDomainAccess($_SESSION['mailcow_cc_username'], $_SESSION['mailcow_cc_role'], $domain)) { ?> <div class="alert alert-warning" role="alert"><?=sprintf($lang['delete']['remove_alias_warning'], htmlspecialchars($_GET["alias"]));?></div> <p><?=$lang['delete']['remove_alias_details'];?></p> <form class="form-horizontal" role="form" method="post" action="/mailbox.php"> <input type="hidden" name="address" value="<?php echo htmlspecialchars($_GET["alias"]) ?>"> <div class="form-group"> <div class="col-sm-offset-1 col-sm-10"> <button type="submit" name="trigger_mailbox_action" value="deletealias" class="btn btn-default btn-sm"><?=$lang['delete']['remove_button'];?></button> </div> </div> </form> <?php } else { ?> <div class="alert alert-info" role="alert"><?=$lang['info']['no_action'];?></div> <?php } } // DELETE ALIAS DOMAIN elseif ( isset($_GET["aliasdomain"]) && is_valid_domain_name($_GET["aliasdomain"]) && !empty($_GET["aliasdomain"])) { $alias_domain = strtolower(trim($_GET["aliasdomain"])); try { $stmt = $pdo->prepare("SELECT `target_domain` FROM `alias_domain` WHERE `alias_domain`= :alias_domain"); $stmt->execute(array(':alias_domain' => $alias_domain)); $DomainData = $stmt->fetch(PDO::FETCH_ASSOC); } catch(PDOException $e) { $_SESSION['return'] = array( 'type' => 'danger', 'msg' => 'MySQL: '.$e ); } if (hasDomainAccess($_SESSION['mailcow_cc_username'], $_SESSION['mailcow_cc_role'], $DomainData['target_domain'])) { ?> <div class="alert alert-warning" role="alert"><?=sprintf($lang['delete']['remove_domainalias_warning'], htmlspecialchars($_GET["aliasdomain"]));?></div> <form class="form-horizontal" role="form" method="post" action="/mailbox.php"> <input type="hidden" name="alias_domain" value="<?php echo htmlspecialchars($alias_domain) ?>"> <div class="form-group"> <div class="col-sm-offset-1 col-sm-10"> <button type="submit" name="trigger_mailbox_action" value="deletealiasdomain" class="btn btn-default btn-sm"><?=$lang['delete']['remove_button'];?></button> </div> </div> </form> <?php } else { ?> <div class="alert alert-info" role="alert"><?=$lang['info']['no_action'];?></div> <?php } } // DELETE DOMAIN ADMIN elseif (isset($_GET["domainadmin"]) && ctype_alnum(str_replace(array('_', '.', '-'), '', $_GET["domainadmin"])) && !empty($_GET["domainadmin"]) && $_SESSION['mailcow_cc_role'] == "admin") { $domain_admin = $_GET["domainadmin"]; ?> <div class="alert alert-warning" role="alert"><?=sprintf($lang['delete']['remove_domainadmin_warning'], htmlspecialchars($_GET["domainadmin"]));?></div> <form class="form-horizontal" role="form" method="post" action="/admin.php"> <input type="hidden" name="username" value="<?=htmlspecialchars($domain_admin);?>"> <div class="form-group"> <div class="col-sm-offset-1 col-sm-10"> <button type="submit" name="trigger_delete_domain_admin" class="btn btn-default btn-sm"><?=$lang['delete']['remove_button'];?></button> </div> </div> </form> <?php } // DELETE MAILBOX elseif (isset($_GET["mailbox"]) && filter_var($_GET["mailbox"], FILTER_VALIDATE_EMAIL) && !empty($_GET["mailbox"])) { $mailbox = $_GET["mailbox"]; $domain = substr(strrchr($mailbox, "@"), 1); if (hasDomainAccess($_SESSION['mailcow_cc_username'], $_SESSION['mailcow_cc_role'], $domain)) { ?> <div class="alert alert-warning" role="alert"><?=sprintf($lang['delete']['remove_mailbox_warning'], htmlspecialchars($_GET["mailbox"]));?></div> <p><?=$lang['delete']['remove_mailbox_details'];?></p> <form class="form-horizontal" role="form" method="post" action="/mailbox.php"> <input type="hidden" name="username" value="<?=htmlspecialchars($mailbox);?>"> <div class="form-group"> <div class="col-sm-offset-1 col-sm-10"> <button type="submit" name="trigger_mailbox_action" value="deletemailbox" class="btn btn-default btn-sm"><?=$lang['delete']['remove_button'];?></button> </div> </div> </form> <?php } else { ?> <div class="alert alert-info" role="alert"><?=$lang['info']['no_action'];?></div> <?php } } else { ?> <div class="alert alert-info" role="alert"><?=$lang['info']['no_action'];?></div> <?php } } else { ?> <div class="alert alert-danger" role="alert"><?=$lang['danger']['access_denied'];?></div> <?php } ?> </div> </div> </div> </div> <a href="<?=$_SESSION['return_to'];?>">← <?=$lang['delete']['previous'];?></a> </div> <!-- /container --> <?php require_once("inc/footer.inc.php"); ?>