function user_cancel_confirm

Menu callback; Cancel a user account via e-mail confirmation link.

See also

user_cancel_confirm_form()

user_cancel_url()

File

drupal/core/modules/user/user.pages.inc, line 385

User page callback file for the user module.

Code

function user_cancel_confirm($account, $timestamp = 0, $hashed_pass = '') {

  // Time out in seconds until cancel URL expires; 24 hours = 86400 seconds.
  $timeout = 86400;
  $current = REQUEST_TIME;

  // Basic validation of arguments.
  $account_data = drupal_container()
    ->get('user.data')
    ->get('user', $account
    ->id());
  if (isset($account_data['cancel_method']) && !empty($timestamp) && !empty($hashed_pass)) {

    // Validate expiration and hashed password/login.
    if ($timestamp <= $current && $current - $timestamp < $timeout && $account->uid && $timestamp >= $account->login && $hashed_pass == user_pass_rehash($account->pass, $timestamp, $account->login)) {
      $edit = array(
        'user_cancel_notify' => isset($account_data['cancel_notify']) ? $account_data['cancel_notify'] : config('user.settings')
          ->get('notify.status_canceled'),
      );
      user_cancel($edit, $account
        ->id(), $account_data['cancel_method']);

      // Since user_cancel() is not invoked via Form API, batch processing needs
      // to be invoked manually and should redirect to the front page after
      // completion.
      batch_process('');
    }
    else {
      drupal_set_message(t('You have tried to use an account cancellation link that has expired. Please request a new one using the form below.'));
      drupal_goto("user/{$account->uid}/cancel");
    }
  }
  throw new AccessDeniedHttpException();
}