<?php
include 'globalVars.php';

if (isset($_GET["photoID"])) {
	$photoID	= $_GET["photoID"];

	if (isset($_GET["uploadVar"])) {
		$photoDatabase	= "photoGalleryTemp";
	} else {
		$photoDatabase	= "photoGallery";
	}

	$myFile		= "logGalleryDelete.txt";
	$dateOpened	= date("g:i:sa l jS F, Y");
	$stringData	= "OPENED: $dateOpened\n\n";
	$fh			= fopen($myFile, 'w');

	$imageURLquery = mysqli_query($conn, "SELECT galleryID, imageURL FROM ". $photoDatabase ." WHERE id = '$photoID'") or die (mysqli_error($conn));
	while ($iUQ = mysqli_fetch_array($imageURLquery)) {
		$galleryID	= $iUQ["galleryID"];
		$imageURL	= $iUQ["imageURL"];
	}
	if (isset($_GET["uploadVar"])) {
		$imageURL		= "temp/". $imageURL;
	}
	$imageURL		= $SERVER_ROOT ."/images/gallery/". $imageURL;
	$imageTitleURL	= substr_replace($imageURL, "-title", "-4", 0);
	$imageTHURL		= substr_replace($imageURL, "-thumb", "-4", 0);

	@unlink($imageURL);
	@unlink($imageTitleURL);
	@unlink($imageTHURL);

	$stringData		.= "UNLINK ". $imageURL ."\n";
	$stringData		.= "UNLINK ". $imageTitleURL ."\n";
	$stringData		.= "UNLINK ". $imageTHURL ."\n";

	$stringData	.= "DELETE FROM ". $photoDatabase ." WHERE id = '$photoID'\n";
	mysqli_query($conn, "DELETE FROM ". $photoDatabase ." WHERE id = '$photoID'");

	$trackDate		= date("Y-m-d H:i:s");
	mysqli_query($conn, "INSERT INTO userActions (dateCreated, adminID, pageTracking, databaseUpdated, updateDetails) VALUES ('$trackDate', '$adminID', 'admin/galleryPhotosDelete.php', '$photoDatabase', 'The User ". addslashes($adminName) ." &lt;$adminEmail&gt; deleted the photo /images/gallery/". $imageURL ." from the photo gallery')");

	fwrite($fh, $stringData);
	fclose($fh);
}
?>