<?php
session_start();
if (!isset($_SESSION['user'])) {
header("location:admin-login.php");
}
if (isset($_GET['view'])) {
view_all_users();
} elseif (isset($_GET['del'])) {
$usr = mysql_real_escape_string($_GET['del']);
del_usr($usr);
} elseif (empty($_POST['new-user']) or empty($_POST['new-user-pass'])) {
$message = "Username or password couldn't be blank";
echo $message;
} elseif (isset($_POST['new-user']) and isset($_POST['new-user-pass'])) {
include 'dbconnect.php';
$db_name = 'forum';
$tbl_name = 'users';
$new_user = $_POST['new-user'];
$new_user_pass = $_POST['new-user-pass'];
$new_user_desg = $_POST['new-user-designation'];
//cleaning post parameters
$new_user = stripslashes($new_user);
$new_user = mysql_real_escape_string($new_user);
$new_user_pass = stripslashes($new_user_pass);
$new_user_pass = mysql_real_escape_string($new_user_pass);
$new_user_desg = stripslashes($new_user_desg);
$new_user_desg = mysql_real_escape_string($new_user_desg);
//hashing password
$new_user_pass = md5($new_user_pass);
$sql = "CREATE TABLE IF NOT EXISTS users( " . "user_id INT(5) NOT NULL AUTO_INCREMENT, " . "username VARCHAR(80) NOT NULL, " . "password VARCHAR(70) , " . "designation VARCHAR(60), " . "date_added timestamp, " . "last_logged timestamp, " . "primary key ( user_id ))";
function vm_edit_users_form($status = "")
{
// Fake data
/*$dataset = array();
$user0 = new User;
$user0->comment = "comment0";
$user0->debt = 0.1;
$user0->iD = 0;
$user0->state = "active";
$user0->username = "******";
$dataset[0] = $user0;
$user1 = new User;
$user1->comment = "comment1";
$user1->debt = 1.1;
$user1->iD = 1;
$user1->state = "inactive";
$user1->username = "******";
$dataset[1] = $user1;
$user2 = new User;
$user2->comment = "comment2";
$user2->debt = 22.1;
$user2->iD = 4;
$user2->state = "inactive";
$user2->username = "******";
$dataset[2] = $user2;*/
$result = view_all_users();
$dataset = $result->dataSet;
?>
<h2> All User </h2>
<span style="color:darkred"><?php
print $status;
?>
</span>
<form action="index.php?site=edituser" method="post">
<table class="table table-striped table-bordered">
<tbody><tr><th>#</th><th>Username</th><th>Debt</th><th>State</th><th>Comment</th><th>Delete?</th></tr>
<?php
foreach ($dataset as $user) {
?>
<tr>
<td>
<span>
<?php
echo $user->iD;
?>
<input type="hidden" name="ID_<?php
print $user->iD;
?>
" value="<?php
print $user->iD;
?>
" />
</span>
</td>
<td>
<span>
<input type="text" name="username_new_<?php
print $user->iD;
?>
" value="<?php
print $user->username;
?>
" />
<input type="hidden" name="username_<?php
print $user->iD;
?>
" value="<?php
print $user->username;
?>
" />
</span>
</td>
<td>
<span>
<input type="text" style="width: 50px" name="debt_new_<?php
print $user->iD;
?>
" value="<?php
print $user->debt;
?>
" />
<input type="hidden" name="debt_<?php
print $user->iD;
?>
" value="<?php
print $user->debt;
?>
" />
</span>
</td>
<td>
<span>
<input type="text" style="width: 100px" name="state_new_<?php
print $user->iD;
?>
" value="<?php
print $user->state;
?>
" />
<input type="hidden" name="state_<?php
print $user->iD;
?>
" value="<?php
print $user->state;
?>
" />
</span>
</td>
<td>
<span>
<input type="text" name="comment_new_<?php
print $user->iD;
?>
" value="<?php
print $user->comment;
?>
" />
<input type="hidden" name="comment_<?php
print $user->iD;
?>
" value="<?php
print $user->comment;
?>
" />
</span>
</td>
<td>
<span>
<input type="checkbox" name="Delete_<?php
print $user->iD;
?>
" value="true" />
</span>
</td>
</tr>
<?php
}
?>
</tbody></table>
<!-- Button -->
<div class="control-group">
<label class="control-label" for="singlebutton"></label>
<div class="controls">
<button id="singlebutton" name="singlebutton" class="btn btn-primary">Confirm</button>
</div>
</div>
</form>
<?php
}
