<? session_start(); if ($_SESSION['authenticated'] != true) { die("Access denied"); } ?> <!DOCTYPE html> <html> <meta charset="utf-8"> <title>Delete user</title> <body> <? $action = $_POST['action']; if ($action == "Delete User" ) { $usr = $_POST['username']; $mysqli = new mysqli("localhost", "sienasel_sbxusr", "Sandbox@)!&", "sienasel_sandbox"); $sql = "DELETE FROM ????? WHERE username='$usr'"; $mysqli->query($sql); if ($mysqli->affected_rows > 0) { echo '<p>'.$usr. ' was deleted.</p> <p><a href="delete_user.php">Delete Another User</a></p>'; die(); } else { echo '<p>'.$usr. ' was not found.</p> <p><a href="delete_user.php">Delete Another User</a></p>'; die(); } $mysqli->close(); } ?> <form method="post" action="delete_user.php"> <h2>Delete User</h2> <label>Username: <input type="text" name="username"></label><br> <input type="submit" name="action" value="Delete User"> </form> </body> </html>