members/deletemem.pl

   1 #!/usr/bin/perl
   2
   3 #script to delete items
   4 #written 2/5/00
   5 #by chris@katipo.co.nz
   6
   7 # Copyright 2000-2002 Katipo Communications
   8 #
   9 # This file is part of Koha.
  10 #
  11 # Koha is free software; you can redistribute it and/or modify it
  12 # under the terms of the GNU General Public License as published by
  13 # the Free Software Foundation; either version 3 of the License, or
  14 # (at your option) any later version.
  15 #
  16 # Koha is distributed in the hope that it will be useful, but
  17 # WITHOUT ANY WARRANTY; without even the implied warranty of
  18 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  19 # GNU General Public License for more details.
  20 #
  21 # You should have received a copy of the GNU General Public License
  22 # along with Koha; if not, see <http://www.gnu.org/licenses>.
  23
  24 use Modern::Perl;
  25
  26 use CGI qw ( -utf8 );
  27 use C4::Context;
  28 use C4::Output;
  29 use C4::Auth;
  30 use C4::Members;
  31 use Koha::Patrons;
  32 use Koha::Token;
  33 use Koha::Patron::Categories;
  34
  35 my $input = new CGI;
  36
  37 my ($template, $loggedinuser, $cookie)
  38                 = get_template_and_user({template_name => "members/deletemem.tt",
  39                                         query => $input,
  40                                         type => "intranet",
  41                                         authnotrequired => 0,
  42                                         flagsrequired => {borrowers => 'edit_borrowers'},
  43                                         debug => 1,
  44                                         });
  45
  46 #print $input->header;
  47 my $member       = $input->param('member');
  48
  49 #Do not delete yourself...
  50 if ( $loggedinuser == $member ) {
  51     print $input->redirect("/cgi-bin/koha/members/moremember.pl?borrowernumber=$member&error=CANT_DELETE_YOURSELF");
  52     exit 0; # Exit without error
  53 }
  54
  55 my $logged_in_user = Koha::Patrons->find( $loggedinuser ) or die "Not logged in";
  56 my $patron         = Koha::Patrons->find( $member );
  57 output_and_exit_if_error( $input, $cookie, $template, { module => 'members', logged_in_user => $logged_in_user, current_patron => $patron } );
  58
  59 my $charges = $patron->account->non_issues_charges;
  60 my $countissues = $patron->checkouts->count;
  61 my $userenv = C4::Context->userenv;
  62
  63 if ($patron->category->category_type eq "S") {
  64     unless(C4::Auth::haspermission($userenv->{'id'},{'staffaccess'=>1})) {
  65         print $input->redirect("/cgi-bin/koha/members/moremember.pl?borrowernumber=$member&error=CANT_DELETE_STAFF");
  66         exit 0; # Exit without error
  67     }
  68 } else {
  69     unless(C4::Auth::haspermission($userenv->{'id'},{'borrowers'=>'edit_borrowers'})) {
  70         print $input->redirect("/cgi-bin/koha/members/moremember.pl?borrowernumber=$member&error=CANT_DELETE");
  71         exit 0; # Exit without error
  72     }
  73 }
  74
  75 if (C4::Context->preference("IndependentBranches")) {
  76     my $userenv = C4::Context->userenv;
  77     if ( !C4::Context->IsSuperLibrarian() && $patron->branchcode){
  78         unless ($userenv->{branch} eq $patron->branchcode){
  79             print $input->redirect("/cgi-bin/koha/members/moremember.pl?borrowernumber=$member&error=CANT_DELETE_OTHERLIBRARY");
  80             exit 0; # Exit without error
  81         }
  82     }
  83 }
  84
  85 my $op = $input->param('op') || 'delete_confirm';
  86 my $dbh = C4::Context->dbh;
  87 my $is_guarantor = $patron->guarantee_relationships->count;
  88 my $countholds = $dbh->selectrow_array("SELECT COUNT(*) FROM reserves WHERE borrowernumber=?", undef, $member);
  89 if ( $op eq 'delete_confirm' or $countissues > 0 or $charges or $is_guarantor ) {
  90
  91     $template->param(
  92         patron => $patron,
  93     );
  94     if ($countissues >0) {
  95         $template->param(ItemsOnIssues => $countissues);
  96     }
  97     if ( $charges > 0 ) {
  98         $template->param(charges => $charges);
  99     }
 100     if ( $is_guarantor ) {
 101         $template->param( guarantees => 1 );
 102     }
 103     if($countholds > 0){
 104         $template->param(ItemsOnHold => $countholds);
 105     }
 106     # This is silly written but reflect the same conditions as above
 107     if ( not $countissues > 0 and not $charges and not $is_guarantor ) {
 108         $template->param(
 109             op         => 'delete_confirm',
 110             csrf_token => Koha::Token->new->generate_csrf({ session_id => scalar $input->cookie('CGISESSID') }),
 111         );
 112     }
 113 } elsif ( $op eq 'delete_confirmed' ) {
 114
 115     output_and_exit( $input, $cookie, $template, 'wrong_csrf_token' )
 116         unless Koha::Token->new->check_csrf( {
 117             session_id => $input->cookie('CGISESSID'),
 118             token  => scalar $input->param('csrf_token'),
 119         });
 120     my $patron = Koha::Patrons->find( $member );
 121     $patron->move_to_deleted;
 122     $patron->delete;
 123     # TODO Tell the user everything went ok
 124     print $input->redirect("/cgi-bin/koha/members/members-home.pl");
 125     exit 0; # Exit without error
 126 }
 127
 128 output_html_with_http_headers $input, $cookie, $template->output;