<td class=\"centeredcell\"><input type=\"submit\" value=\"Save Password\"></td></form> </tr> <tr> <td colspan=1 class=\"centeredcellbold\">Email</td> <form action=\"./index.php?pageid=adminsaveemail\" method=\"POST\"><td colspan=3 class=\"centeredcell\"><input type=\"hidden\" name=\"userid\" value=\"".$user['user_id']."\"><input type=\"text\" name=\"email\" size=30 value=\"".$user['email']."\"><input type=\"submit\" value=\"Save Email\"></td></form> </tr> <tr> <td colspan=1 class=\"centeredcellbold\">Userlevel</td> <form action=\"./index.php?pageid=adminsavelevel\" method=\"POST\"><td colspan=3 class=\"centeredcell\"> <input type=\"hidden\" name=\"userid\" value=\"".$user['user_id']."\">".getUserLevelDropDownSelected("level",$user['user_level'])."<input type=\"submit\" value=\"Save Level\"></td> </form> </tr> <tr> <td colspan=1 class=\"centeredcellbold\">Warnings</td> <td class=\"centeredcell\" colspan=2><a href=\"./index.php?pageid=viewwarnings&user_id=".$user['user_id']."\">".mysql_num_rows(getActiveWarningsForUser($user['user_id']))."(".mysql_num_rows(getWarningsForUser($user['user_id'])).")</a></td> <td class=\"centeredcell\" colspan=1><a href=\"./index.php?pageid=warnuser&user_id=".$user['user_id']."\">Warn User</a></td> </tr> <tr> <td colspan=4 class=\"centeredcellbold\">User Notes</th>
} else { if ($pageid == "adminsavenotes") { changeUserNotes($userid, $_POST['notes']); $message = "User Saved!<br><br>"; } } } } if ($pageid == "edituser" || $pageid == "adminsavepassword" || $pageid == "adminsaveemail" || $pageid == "adminsavelevel") { $sel = ""; } else { $sel = " SELECTED"; } while ($row = mysql_fetch_assoc($result)) { if (isset($userid) && $row['user_id'] == $userid) { $sel = " SELECTED"; } $users = $users . "<option value=\"" . $row['user_id'] . "\"{$sel}>" . $row['name'] . "</option>"; $sel = ""; } if ($pageid == "edituser" || $pageid == "adminsavepassword" || $pageid == "adminsaveemail" || $pageid == "adminsavenotes" || $pageid == "adminsavelevel") { echo "<center><h3>Manage Users</h3></center>\r\n<center><form action=\"index.php\" method=\"GET\"><input type=\"hidden\" name=\"pageid\" value=\"edituser\"><select name=\"user\">\r\n" . $users . "\r\n</select><input type=\"submit\" value=\"Edit\"></form>" . $message . "</center>"; $user = mysql_fetch_assoc(getUserByID($userid)); $passwordRows = ""; if (!getConfigVar("use_ldap")) { $passwordRows = "<tr>\r\n\t\t\r\n\t\t\t<td class=\"centeredcellbold\">Change Password</td>\r\n\t\t\t<td class=\"centeredcellbold\">New Password</td>\r\n\t\t\t<td class=\"centeredcellbold\">Confirm Password</td>\r\n\t\t\t<td class=\"centeredcellbold\">--</td>\r\n\t\r\n\t\t</tr>\r\n\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<form action=\"./index.php?pageid=adminsavepassword\" method=\"POST\"><td class=\"centeredcellbold\">--</td>\r\n\t\t\t<td class=\"centeredcell\"><input type=\"hidden\" name=\"userid\" value=\"" . $user['user_id'] . "\"><input type=\"password\" name=\"newpass\"></td>\r\n\t\t\t<td class=\"centeredcell\"><input type=\"password\" name=\"confpass\"></th>\r\n\t\t\t<td class=\"centeredcell\"><input type=\"submit\" value=\"Save Password\"></td></form>\r\n\t\r\n\t\t</tr>"; } echo "<table class=\"userinfo\">\r\n\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"header\">User Information</td>\r\n\t\t\r\n\t\t</tr>\r\n\t\r\n\t\t<tr>\r\n\r\n\t\t\t<td class=\"centeredcellbold\">ID Number</th>\r\n\t\t\t<td colspan=3 class=\"centeredcell\">" . $user['username'] . "</td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\r\n\t\t<tr>\r\n\r\n\t\t\t<td class=\"centeredcellbold\">Name</td>\r\n\t\t\t<td colspan=3 class=\"centeredcell\">" . $user['name'] . "</td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\r\n\t\t" . $passwordRows . "\r\n\t\r\n\t\t<tr>\r\n\t\t\t\r\n\t\t\t<td colspan=1 class=\"centeredcellbold\">Email</td>\r\n\t\t\t<form action=\"./index.php?pageid=adminsaveemail\" method=\"POST\"><td colspan=3 class=\"centeredcell\"><input type=\"hidden\" name=\"userid\" value=\"" . $user['user_id'] . "\"><input type=\"text\" name=\"email\" size=30 value=\"" . $user['email'] . "\"><input type=\"submit\" value=\"Save Email\"></td></form>\r\n\t\t\t\t\r\n\t\t</tr>\r\n\t\r\n\t\t<tr>\r\n\t\t\t\r\n\t\t\t<td colspan=1 class=\"centeredcellbold\">Userlevel</td>\r\n\t\t\t<form action=\"./index.php?pageid=adminsavelevel\" method=\"POST\"><td colspan=3 class=\"centeredcell\">\r\n\t\t\t<input type=\"hidden\" name=\"userid\" value=\"" . $user['user_id'] . "\">" . getUserLevelDropDownSelected("level", $user['user_level']) . "<input type=\"submit\" value=\"Save Level\"></td>\r\n\t\t\t</form>\r\n\t\t\t\t\r\n\t\t</tr>\r\n\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=1 class=\"centeredcellbold\">Warnings</td>\r\n\t\t\t<td class=\"centeredcell\" colspan=2><a href=\"./index.php?pageid=viewwarnings&user_id=" . $user['user_id'] . "\">" . mysql_num_rows(getActiveWarningsForUser($user['user_id'])) . "(" . mysql_num_rows(getWarningsForUser($user['user_id'])) . ")</a></td>\r\n\t\t\t<td class=\"centeredcell\" colspan=1><a href=\"./index.php?pageid=warnuser&user_id=" . $user['user_id'] . "\">Warn User</a></td>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"centeredcellbold\">User Notes</th>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"centeredcellbold\"><br><form action=\"./index.php?pageid=adminsavenotes\" method=\"POST\"><input type=\"hidden\" name=\"userid\" value=\"" . $user['user_id'] . "\"><textarea cols=60 rows=8 name=\"notes\">" . $user['notes'] . "</textarea><br><input type=\"submit\" value=\"Save Notes\"</form></th>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\t\r\n\t</table>"; } else { echo "<center><h3>Manage Users</h3></center>\r\n\t<center><form action=\"index.php\" method=\"GET\"><input type=\"hidden\" name=\"pageid\" value=\"edituser\"><select name=\"user\" size=10>\r\n\t" . $users . "\r\n\t</select><br><input type=\"button\" value=\"Create User\" onClick=\"window.location = './index.php?pageid=newuser'\"><input type=\"submit\" value=\"Edit\"></form></center>"; }
if (getSessionVariable('user_level') >= RES_USERLEVEL_ADMIN) { } else { die("Error: You don't have permissions to access this page!"); } } else { die("Error: You don't have permissions to access this page!"); } $message = ""; $equipid = 0; if ($pageid == "saveequip") { require 'adminfunctions.php'; saveEquipment($_POST['equipid'], $_POST['name'], $_POST['type'], $_POST['serial'], $_POST['max'], $_POST['minuserlevel'], $_POST['checkoutfrom'], $_POST['description']); $equipid = $_POST['equipid']; $message = "<font color=\"#005500\"><b>Successfully saved this equipment!</b><br><br></font>"; } if ($equipid == 0) { $equipid = $_POST['selector']; } $equip = mysql_fetch_assoc(getEquipmentByID($equipid)); $users = "<select name=\"checkoutfrom\"><option value=\"-1\">None</option>"; $userresult = getAllUsersOrderByName(); while ($row = mysql_fetch_assoc($userresult)) { $selected = false; if ($row['user_id'] == $equip['checkoutfrom']) { $users = $users . "<option value=\"" . $row['user_id'] . "\" SELECTED>" . $row['name'] . "</option>"; } else { $users = $users . "<option value=\"" . $row['user_id'] . "\">" . $row['name'] . "</option>"; } } echo "<center><h3>Edit Equipment</h3>" . $message . "</center>\r\n\r\n\t<form enctype=\"multipart/form-data\" action=\"./index.php?pageid=saveequip\" method=\"post\">\r\n\t<input type=\"hidden\" name=\"equipid\" value=\"" . $equipid . "\">\r\n\t<table class=\"newequip\">\r\n\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"header\">Equipment Information</td>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=2 class=\"centeredcellbold\">Name</td>\r\n\t\t\t<td colspan=2 class=\"centeredcell\"><input type=\"text\" size=30 name=\"name\" value=\"" . $equip['name'] . "\"></td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=2 class=\"centeredcellbold\">Equipment Type</td>\r\n\t\t\t<td colspan=2 class=\"centeredcell\">" . getEquipmentTypesDropDownSelected("type", 1, $equip['type']) . "</td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=2 class=\"centeredcellbold\">Primary Serial Number</td>\r\n\t\t\t<td colspan=2 class=\"centeredcell\"><input type=\"text\" size=30 name=\"serial\" value=\"" . $equip['serial'] . "\"></td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=2 class=\"centeredcellbold\">Checkout From</td>\r\n\t\t\t<td colspan=2 class=\"centeredcell\">" . $users . "</td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td class=\"centeredcellbold\">Max Length (days)</td>\r\n\t\t\t<td class=\"centeredcell\"><input type=\"text\" size=4 name=\"max\" value=\"" . $equip['max_length'] . "\"></td>\r\n\t\t\t<td class=\"centeredcell\"><b>Minimum User Level</b></td>\r\n\t\t\t<td class=\"centeredcell\">" . getUserLevelDropDownSelected("minuserlevel", $equip['min_user_level']) . "</td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"header\">Equipment Description</td>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"centeredcell\"><textarea cols=50 rows=10 name=\"description\">" . $equip['description'] . "</textarea></td>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"centeredcellbold\"><input type=\"submit\" value=\"save\"></td>\r\n\t\t\r\n\t\t</tr>\r\n\t\r\n\t</table>\r\n\t\r\n\t</form>";
</tr> <tr> <td colspan=2 class=\"centeredcellbold\">Checkout From</td> <td colspan=2 class=\"centeredcell\">".$users."</td> </tr> <tr> <td class=\"centeredcellbold\">Max Length (days)</td> <td class=\"centeredcell\"><input type=\"text\" size=4 name=\"max\" value=\"".$equip['max_length']."\"></td> <td class=\"centeredcell\"><b>Minimum User Level</b></td> <td class=\"centeredcell\">".getUserLevelDropDownSelected("minuserlevel", $equip['min_user_level'])."</td> </tr> <tr> <td colspan=4 class=\"header\">Equipment Description</td> </tr> <tr> <td colspan=4 class=\"centeredcell\"><textarea cols=50 rows=10 name=\"description\">".$equip['description']."</textarea></td> </tr>