$smarty->assign('manager', $data['manager']); $_POST['username'] = $data['username']; if (empty($_POST['passwd'])) { $passwd = $data['passwd']; $cpasswd = $data['cpasswd']; } else { $passwd = $_POST['passwd']; $cpasswd = crypt($_POST['passwd']); } if (isset($_POST['submit'])) { $wrong = 0; if (!empty($_POST['passwd']) && check_passwd_length($passwd) == false) { $smarty->assign('error_msg', 'y'); $smarty->assign('if_error_password_long', 'y'); $wrong = 1; } elseif (adm_user_exits($_POST['username'], $_GET['id'], $db)) { $smarty->assign('error_msg', 'y'); $smarty->assign('if_error_sadmim_exits', 'y'); $wrong = 1; } else { $sql = sprintf("DELETE FROM adm_users WHERE id='%s'", $db->escapeSimple($_GET['id'])); $res =& $db->query($sql); $cleartext = ""; if ($config['cleartext_passwd'] == 1) { $cleartext = $passwd; } $sql = sprintf("INSERT INTO adm_users SET username='******', passwd='%s', full_name='%s', access='%d', manager='%d', id='%d', cpasswd='%s'", $db->escapeSimple($data['username']), $db->escapeSimple($cleartext), $db->escapeSimple($_POST['full_name']), $db->escapeSimple($_POST['access']), $db->escapeSimple($_POST['manager']), $db->escapeSimple($_GET['id']), $db->escapeSimple($cpasswd)); $res =& $db->query($sql); if (!PEAR::isError($res)) { $smarty->assign('success_msg', 'y'); $smarty->assign('if_sadmin_saved', 'y');
if (isset($_POST['submit'])) { $wrong = 0; if (empty($_POST['username']) || !isset($_POST['username'])) { $smarty->assign('error_msg', 'y'); $smarty->assign('if_error_missing_input', 'y'); $wrong = 1; } elseif (!ereg("^([a-zA-Z0-9]+)\$", $_POST['username'])) { $smarty->assign('error_msg', 'y'); $smarty->assign('if_sadmin_wrong_char', 'y'); $smarty->assign('if_username_wrong', 'y'); $wrong = 1; } elseif (check_passwd_length($_POST['passwd']) == false) { $smarty->assign('error_msg', 'y'); $smarty->assign('if_error_password_long', 'y'); $wrong = 1; } elseif (adm_user_exits($_POST['username'], 0, $db)) { $smarty->assign('error_msg', 'y'); $smarty->assign('if_error_sadmim_exits', 'y'); $smarty->assign('if_user_exits', 'y'); $wrong = 1; } else { if ($_POST['access'] == "1") { $access = '1'; } else { $access = '0'; } if ($_POST['manager'] == "1") { $manager = '1'; } else { $manager = '0'; }