Mini Shell

Direktori : /home/mhcadmin/public_html/Portal/
Upload File :
Current File : /home/mhcadmin/public_html/Portal/DeleteAccessLevel.php

<?php 
session_start();
$rootPath = realpath(dirname(__FILE__) . '/..');
//require_once $rootPath . '/PortalMM/AccessControl.php'; // Use clean AccessControl file
require_once $rootPath . '/Portal/include/auth_validate.php'; // Use clean config file
$del_id = filter_input(INPUT_POST, 'del_id');
 $db = getDbInstance();

//$AccessName = "";
// Delete a user using user_id
if ($del_id && $_SERVER['REQUEST_METHOD'] == 'POST') {
	
	
	
	$results = mysqli_query( $conn,"SELECT * FROM accesslevelmanagement WHERE accesslevelmanagementID = $del_id");
    $num1=mysqli_num_rows($results);

	if ($num1 >0){
		
		$row = mysqli_fetch_array($results);
        $AccessName = $row['AccessName'];
		
	}
		$result = mysqli_query( $conn,"SELECT * FROM admin_accounts WHERE Access_Level = '$AccessName' ");
        $num = mysqli_num_rows($result);

	        if ($num >0){
				
				$rows = mysqli_fetch_array($result);
                $Name = $rows['Full_Name'];
       
	   $_SESSION['failure'] = "Unable to delete Access level; it is in use";
        header('location: AccessLevelListing.php');
        exit;		
		
		}else {
	
    
    $db->where('accesslevelmanagementID', $del_id);
    $stat = $db->delete('accesslevelmanagement');
    if ($stat) {
		
			date_default_timezone_set('Africa/Blantyre');
			$EventTime = date('d-m-Y H:i', time());
					 
			$Action = $RecordType = $Details = $Date = $User = '';
			$Action = 'Delete Record'; 
			$RecordType = 'Access Level';
			$Details = "$AccessName";
			$Date = "$EventTime";
			$User = $_SESSION['Full_Name'];
					 
			 $sql = mysqli_query($conn,"INSERT INTO eventtrail (Action,RecordType,Details,Date,User) 
							VALUES ('$Action','$RecordType','$Details','$Date','$User')");
					
		
        $_SESSION['info'] = "Access Level deleted successfully!";
        header('location: AccessLevelListing.php');
        exit;
    }
}}