public function handleForm(Context $context, $action)
{
//TODO: Check user level >= ADMIN
if ($action == "savePassword") {
if (isset($_POST['newpass']) && $_POST['newpass'] != "" && (isset($_POST['confpass']) && $_POST['confpass'] != "")) {
$newPassword = $_POST['newpass'];
$confirmPassword = $_POST['confpass'];
if ($newPassword = $confirmPassword) {
UserDao::updateUserPassword($_POST['userid'], $newPassword);
$context->addMessage("Password Successfully Changed.");
} else {
$context->addError("Passwords Don't Match.");
}
} else {
$context->addError("Required Field Left Blank.");
}
} else {
if ($action == "saveEmail") {
if (isset($_POST['email']) && $_POST['email'] != "") {
$email = $_POST['email'];
UserDao::updateUserEmail($_POST['userid'], $email);
$context->addMessage("Email Successfully Changed.");
} else {
$context->addError("Required Field Left Blank.");
}
} else {
if ($action == "saveUserLevel") {
if (isset($_POST['level']) && $_POST['level'] != "") {
$userlevel = $_POST['level'];
UserDao::updateUserLevel($_POST['userid'], $userlevel);
$context->addMessage("User Level Successfully Changed.");
} else {
$context->addError("Required Field Left Blank.");
}
} else {
if ($action == "saveNotes") {
if (isset($_POST['notes']) && $_POST['notes'] != "") {
$notes = $_POST['notes'];
UserDao::updateUserNotes($_POST['userid'], $notes);
$context->addMessage("Notes Successfully Changed.");
} else {
$context->addError("Required Field Left Blank.");
}
} else {
if ($action == "saveName") {
if (isset($_POST['name']) && $_POST['name'] != "") {
$name = $_POST['name'];
UserDao::updateName($_POST['userid'], $name);
$context->addMessage("Name Successfully Changed.");
} else {
$context->addError("Required Field Left Blank.");
}
} else {
$context->addError("Incorrect Action.");
}
}
}
}
}
}
public function handleForm(Context $context, $action)
{
if (UserDao::getUserByUsername(SessionUtil::getUsername())->userlevel == RES_USERLEVEL_ADMIN) {
if ($action == "deleteWarning") {
$warning = WarningDao::getWarningByID($_POST['warnId']);
if ($warning != null) {
WarningDao::deleteWarning($warning->id);
$context->addMessage("Successfully deleted warning.");
} else {
$context->addError("No such warning.");
}
} else {
$context->addError("Incorrect Action.");
}
} else {
$context->addError("Not Authorized.");
}
}
public function handleForm(Context $context, $action)
{
if ($action == "createUser") {
if (isset($_POST['username']) && $_POST['username'] != "" && (isset($_POST['userlevel']) && $_POST['userlevel'] != "") && (isset($_POST['name']) && $_POST['name'] != "") && (isset($_POST['email']) && $_POST['email'] != "")) {
$password = "";
if (Config::login_type == LOGIN_TYPE_DB) {
$password = CryptoUtil::generatePassword(9, 4);
}
UserDao::createUser($_POST['username'], $_POST['name'], $_POST['email'], $_POST['userlevel'], $password);
$message = "Created User -- Username: "******" Password: "******"Required Field Left Blank.");
}
} else {
$context->addError("Incorrect Action.");
}
}
public function handleForm(Context $context, $action)
{
if (UserDao::getUserByUsername(SessionUtil::getUsername())->userlevel == RES_USERLEVEL_ADMIN) {
if ($action == "createWarning") {
if (isset($_POST['userId']) && $_POST['userId'] != "" && (isset($_POST['reason']) && $_POST['reason'] != "") && (isset($_POST['type']) && $_POST['type'] != "")) {
$user = UserDao::getUserByID($_POST['userId']);
if ($user != null) {
$warning = WarningDao::warnUser($_POST['userId'], $_POST['reason'], $_POST['type']);
EmailUtil::sendWarningNoticeToUser($warning);
$context->addMessage("Successfully warned " . $user);
} else {
$context->addError("No such user.");
}
} else {
$context->addError("Required field left blank.");
}
} else {
$context->addError("Incorrect Action.");
}
} else {
$context->addError("Not Authorized.");
}
}
