1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
|
<?php
/**
* Users.
* @package mirror
* @subpackage admin
*/
$protect=1; // protect this page
require_once('../cfg/init.php');
// add user
if (!empty($_POST['add-submit'])&&!empty($_POST['username'])&&!empty($_POST['password'])&&!empty($_POST['rpassword'])) {
if (Mirror::insert_user($_POST['username'],$_POST['password'],$_POST['rpassword'],$_POST['user_firstname'],$_POST['user_lastname'],$_POST['user_email'])) {
set_msg('User added successfully.');
header('Location: http://'.$_SERVER['HTTP_HOST'].WEBPATH.'/admin/users.php');
exit;
} else {
set_error('User could not be added because of an unknown error.');
}
}
// process actions
if (!empty($_POST['submit'])) {
if (!empty($_POST['user_id'])) {
switch($_POST['action']) {
case 'edit':
if (!empty($_POST['doit'])) {
if (Mirror::update_user($_POST['user_id'],$_POST['username'],$_POST['password'],$_POST['rpassword'],$_POST['user_firstname'],$_POST['user_lastname'],$_POST['user_email'])) {
set_msg('User updated successfully.');
header('Location: http://'.$_SERVER['HTTP_HOST'].WEBPATH.'/admin/users.php');
exit;
} else {
set_error('User update failed.');
}
} else {
$title = 'Edit User';
$nav = INC.'/admin_nav.php';
require_once(HEADER);
echo '<h2>Edit User</h2>';
$posts = Mirror::get_one_user($_POST['user_id']);
form_start();
include_once(INC.'/forms/user.php');
form_hidden('doit','1');
form_hidden('action','edit');
form_hidden('user_id',$_POST['user_id']);
form_submit('submit','','button1','Update');
form_end();
require_once(FOOTER);
exit;
}
break;
case 'delete':
if ($_POST['user_id']==$_SESSION['user']['user_id']) {
set_error('You cannot delete yourself.');
} elseif (Mirror::delete_user($_POST['user_id'])) {
set_msg('User deleted successfully.');
} else {
set_error('User could not be deleted because of an error.');
}
break;
}
} else {
set_error('You must select a user to continue.');
}
}
$title = 'Users';
$nav = INC.'/admin_nav.php';
require_once(HEADER);
echo '<h2>Users</h2>';
show_error();
show_msg();
$users = Mirror::get_users();
$_GET['sort'] = (!empty($_GET['sort']))?$_GET['sort']:'user_lastname';
$_GET['order'] = (!empty($_GET['order']))?$_GET['order']:'ASC';
$users = array_order_by($users,$_GET['sort'],$_GET['order']);
$headers = array(
'user_id'=>'',
'user_lastname'=>'Last',
'user_firstname'=>'First',
'user_email'=>'Email',
'username'=>'Username'
);
$actions = array(
'edit'=>'Edit',
'delete'=>'Delete'
);
form_start();
show_list($users,$headers,'radio',$actions);
form_end();
echo '<h2>Add a User</h2>';
form_start();
$posts = ['username'=>'', 'user_firstname'=>'', 'user_lastname'=>'', 'user_email'=>'']; //sane defaults
include_once(INC.'/forms/user.php');
form_submit('add-submit','','button1','Add User');
form_end();
require_once(FOOTER);
|
GitWeb