Fix un/suspending (web,dns,db,email,cron) resources when logged in as normal hestia user

web/suspend/cron/index.php

@@ -11,21 +11,13 @@ if ((!isset($_GET['token'])) || ($_SESSION['token'] != $_GET['token'])) {
     exit();
 }
 
-// Check user
-if ($_SESSION['user'] != 'admin') {
-    header("Location: /list/user");
-    exit;
-}
-if (!empty($_GET['user'])) {
-    $user=$_GET['user'];
-}
 if (!empty($_GET['job'])) {
     $v_username = escapeshellarg($user);
     $v_job = escapeshellarg($_GET['job']);
     exec (HESTIA_CMD."v-suspend-cron-job ".$v_username." ".$v_job, $output, $return_var);
+    check_return_code($return_var,$output);
+    unset($output);
 }
-check_return_code($return_var,$output);
-unset($output);
 
 $back = $_SESSION['back'];
 if (!empty($back)) {

web/suspend/db/index.php

@@ -11,23 +11,13 @@ if ((!isset($_GET['token'])) || ($_SESSION['token'] != $_GET['token'])) {
     exit();
 }
 
-// Check user
-if ($_SESSION['user'] != 'admin') {
-    header("Location: /list/user");
-    exit;
-}
-
-if (!empty($_GET['user'])) {
-    $user=$_GET['user'];
-}
-
 if (!empty($_GET['database'])) {
     $v_username = escapeshellarg($user);
     $v_database = escapeshellarg($_GET['database']);
     exec (HESTIA_CMD."v-suspend-database ".$v_username." ".$v_database, $output, $return_var);
+    check_return_code($return_var,$output);
+    unset($output);
 }
-check_return_code($return_var,$output);
-unset($output);
 
 $back = $_SESSION['back'];
 if (!empty($back)) {

web/suspend/dns/index.php

@@ -11,16 +11,6 @@ if ((!isset($_GET['token'])) || ($_SESSION['token'] != $_GET['token'])) {
     exit();
 }
 
-// Check user
-if ($_SESSION['user'] != 'admin') {
-    header("Location: /list/user");
-    exit;
-}
-
-if (!empty($_GET['user'])) {
-    $user=$_GET['user'];
-}
-
 // DNS domain
 if ((!empty($_GET['domain'])) && (empty($_GET['record_id'])))  {
     $v_username = escapeshellarg($user);

web/suspend/mail/index.php

@@ -11,16 +11,6 @@ if ((!isset($_GET['token'])) || ($_SESSION['token'] != $_GET['token'])) {
     exit();
 }
 
-// Check user
-if ($_SESSION['user'] != 'admin') {
-    header("Location: /list/user");
-    exit;
-}
-
-if (!empty($_GET['user'])) {
-    $user=$_GET['user'];
-}
-
 // Mail domain
 if ((!empty($_GET['domain'])) && (empty($_GET['account'])))  {
     $v_username = escapeshellarg($user);

web/suspend/web/index.php

@@ -11,17 +11,6 @@ if ((!isset($_GET['token'])) || ($_SESSION['token'] != $_GET['token'])) {
     exit();
 }
 
-// Check user
-if ($_SESSION['user'] != 'admin') {
-    header("Location: /list/user");
-    exit;
-}
-
-if (!empty($_GET['user'])) {
-    $user=$_GET['user'];
-}
-
-
 if (!empty($_GET['domain'])) {
     $v_username = escapeshellarg($user);
     $v_domain = escapeshellarg($_GET['domain']);

web/unsuspend/cron/index.php

@@ -12,23 +12,13 @@ if ((!isset($_GET['token'])) || ($_SESSION['token'] != $_GET['token'])) {
     exit();
 }
 
-// Check user
-if ($_SESSION['user'] != 'admin') {
-    header("Location: /list/user");
-    exit;
-}
-
-if (!empty($_GET['user'])) {
-    $user=$_GET['user'];
-}
-
 if (!empty($_GET['job'])) {
     $v_username = escapeshellarg($user);
     $v_job = escapeshellarg($_GET['job']);
     exec (HESTIA_CMD."v-unsuspend-cron-job ".$v_username." ".$v_job, $output, $return_var);
+    check_return_code($return_var,$output);
+    unset($output);
 }
-check_return_code($return_var,$output);
-unset($output);
 
 $back=getenv("HTTP_REFERER");
 if (!empty($back)) {

web/unsuspend/db/index.php

@@ -12,15 +12,6 @@ if ((!isset($_GET['token'])) || ($_SESSION['token'] != $_GET['token'])) {
     exit();
 }
 
-// Check user
-if ($_SESSION['user'] != 'admin') {
-    header("Location: /list/user");
-    exit;
-}
-
-if (!empty($_GET['user'])) {
-    $user=$_GET['user'];
-}
 if (!empty($_GET['database'])) {
     $v_username = escapeshellarg($user);
     $v_database = escapeshellarg($_GET['database']);

web/unsuspend/dns/index.php

@@ -11,16 +11,6 @@ if ((!isset($_GET['token'])) || ($_SESSION['token'] != $_GET['token'])) {
     exit();
 }
 
-// Check user
-if ($_SESSION['user'] != 'admin') {
-    header("Location: /list/user");
-    exit;
-}
-
-if (!empty($_GET['user'])) {
-    $user=$_GET['user'];
-}
-
 // DNS domain
 if ((!empty($_GET['domain'])) && (empty($_GET['record_id'])))  {
     $v_username = escapeshellarg($user);

web/unsuspend/mail/index.php

@@ -11,16 +11,6 @@ if ((!isset($_GET['token'])) || ($_SESSION['token'] != $_GET['token'])) {
     exit();
 }
 
-// Check user
-if ($_SESSION['user'] != 'admin') {
-    header("Location: /list/user");
-    exit;
-}
-
-if (!empty($_GET['user'])) {
-    $user=$_GET['user'];
-}
-
 // Mail domain
 if ((!empty($_GET['domain'])) && (empty($_GET['account'])))  {
     $v_username = escapeshellarg($user);

web/unsuspend/web/index.php

@@ -11,21 +11,14 @@ if ((!isset($_GET['token'])) || ($_SESSION['token'] != $_GET['token'])) {
     exit();
 }
 
-// Check user
-if ($_SESSION['user'] != 'admin') {
-    header("Location: /list/user");
-    exit;
-}
-if (!empty($_GET['user'])) {
-    $user=$_GET['user'];
-}
 if (!empty($_GET['domain'])) {
     $v_username = escapeshellarg($user);
     $v_domain = escapeshellarg($_GET['domain']);
     exec (HESTIA_CMD."v-unsuspend-domain ".$v_username." ".$v_domain, $output, $return_var);
+    check_return_code($return_var,$output);
+    unset($output);
 }
-check_return_code($return_var,$output);
-unset($output);
+
 
 $back=getenv("HTTP_REFERER");
 if (!empty($back)) {