$form = $form . "<tr><td width='25%' align='right'>" . _FRMPWD . "</td>";
$form = $form . "<td align='left'><input type='password' name='password'></td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . _FRMROLE . "</td>";
$form = $form . "<td align='left'>" . $user->returnRoleNamesDropDown($defaultrole) . "</td></tr>";
$form = $form . "<tr><td colspan='2' align='center'><input type='submit' name='submit' value='" . _SUBMITQUERY . "'></td>";
$form = $form . "</tr></table></form>";
$pagebody = $form;
break;
case "add":
// actually add the user to the database
$username = filterSql($_POST['user']);
$role = filterSql($_POST['roleID']);
$password = filterSql($_POST['password']);
$name = filterSql($_POST['fullname']);
$BUser = new BaseUser();
$added = $BUser->addUser($username, $role, $password, $name);
$pagebody = $added;
break;
case "edituser":
// edit user form -- Kevin
// $myrow = array(usr_id, usr_login, role_id, usr_name, usr_enabled)
$user = new BaseUser();
$userinfo = $user->returnEditUser(filterSql($_GET['userid']));
$form = "<form action='base_useradmin.php?action=updateuser' Method='POST'>";
$form = $form . "<input type='hidden' name='usr_id' value='" . $userinfo[0] . "'";
$form = $form . "<table border=1 class='query'>";
$form = $form . "<tr><td width='25%' align='right'>" . _FRMUID . "</td>";
$form = $form . "<td align='left'>" . $userinfo[0] . "</td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . _FRMLOGIN . "</td>";
$form = $form . "<td align='left'>" . $userinfo[1] . "</td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . _FRMFULLNAME . "</td>";
