* Checking permissions
*/
require_once "../auth/login_check.php";
loginCheck(OPEN_PROFILE_ADMINISTRATOR);
require_once "../lib/Form.php";
Form::compareToken($returnLocation);
require_once "../lib/Check.php";
/**
* Retrieving post vars
*/
$idUser = intval($_POST["id_user"]);
/**
* Delete user
*/
require_once "../model/Query/User.php";
$userQ = new Query_User();
if (!$userQ->select($idUser)) {
$userQ->close();
FlashMsg::add(_("That user does not exist."), OPEN_MSG_ERROR);
header("Location: " . $returnLocation);
exit;
}
$user = $userQ->fetch();
$userQ->delete($idUser);
$userQ->close();
unset($userQ);
/**
* Redirect to $returnLocation to avoid reload problem
*/
FlashMsg::add(sprintf(_("User, %s, has been deleted."), $user->getLogin()));
header("Location: " . $returnLocation);
require_once "../model/Query/User.php";
$user = new User();
$user->setIdUser($_POST["id_user"]);
$user->setLogin($_POST["login"]);
$user->setPwd($_POST["md5"]);
$_POST["pwd"] = "";
$user->setPwd2($_POST["md5_confirm"]);
$_POST["pwd2"] = "";
if (!$user->validatePwd()) {
$formError["pwd"] = $user->getPwdError();
Form::setSession($_POST, $formError);
header("Location: " . $errorLocation);
exit;
}
/**
* Destroy form values and errors
*/
Form::unsetSession();
/**
* Update user
*/
$userQ = new Query_User();
$userQ->resetPwd($user);
FlashMsg::add(sprintf(_("Password of user, %s, has been reset."), $user->getLogin()));
$userQ->close();
unset($userQ);
unset($user);
/**
* Redirect to $returnLocation to avoid reload problem
*/
header("Location: " . $returnLocation);
* Password edits
*/
$pwdSession = Check::safeText($_POST["md5_session"]);
if ($pwdSession == "") {
$pwdSession = Check::safeText($_POST["pwd_session"]);
// JavaScript disabled?
if ($pwdSession == "") {
$errorFound = true;
$formError["pwd_session"] = _("This is a required field.");
} else {
$pwdSession = md5($pwdSession);
// JavaScript disabled!
}
}
if (!isset($formError["pwd_session"])) {
$userQ = new Query_User();
if (!$userQ->existLogin($loginSession)) {
$errorFound = true;
$formError["login_session"] = _("Login unknown.");
$sessLoginAttempts = 1;
$_SESSION['auth']['last_login'] = '';
} else {
if (!$userQ->isActivated($loginSession)) {
$userQ->close();
$_SESSION = array();
// deregister all current session variables
FlashMsg::add(_("Your user account has been suspended. Contact with administrator to resolve this problem."));
header("Location: ../home/index.php");
exit;
}
$formSession = Form::getSession();
* @version CVS: $Id: user_list.php,v 1.36 2008/03/23 11:58:57 jact Exp $
* @author jact <*****@*****.**>
*/
/**
* Controlling vars
*/
$tab = "admin";
$nav = "users";
/**
* Checking permissions
*/
require_once "../auth/login_check.php";
loginCheck(OPEN_PROFILE_ADMINISTRATOR);
require_once "../lib/Form.php";
require_once "../model/Query/User.php";
$userQ = new Query_User();
$userQ->selectLogins();
$userArray = null;
while ($user = $userQ->fetch()) {
$userArray[$user->getIdMember() . OPEN_SEPARATOR . $user->getLogin()] = $user->getLogin();
}
$userQ->freeResult();
/**
* Show page
*/
$title = _("Users");
require_once "../layout/header.php";
/**
* Breadcrumb
*/
$links = array(_("Admin") => "../admin/index.php", $title => "");
* Checking permissions
*/
include_once "../auth/login_check.php";
loginCheck(OPEN_PROFILE_ADMINISTRATOR);
}
/**
* Validate data
*/
require_once "../model/Query/User.php";
$user = new User();
$user->setIdUser($_POST["id_user"]);
require_once "../admin/user_validate_post.php";
/**
* Update user
*/
$userQ = new Query_User();
if ($userQ->existLogin($user->getLogin(), $user->getIdMember())) {
$loginUsed = true;
FlashMsg::add(sprintf(_("Login, %s, already exists. The changes have no effect."), $user->getLogin()), OPEN_MSG_WARNING);
} else {
$userQ->update($user);
FlashMsg::add(sprintf(_("User, %s, has been updated."), $user->getLogin()));
/**
* updating session variables if user is current user
*/
if (isset($_POST["all"])) {
$_SESSION['auth']['login_session'] = $user->getLogin();
$_SESSION['auth']['user_theme'] = $user->getIdTheme();
}
}
if ($changePwd && !$loginUsed) {
include_once "../auth/login_check.php";
loginCheck(OPEN_PROFILE_ADMINISTRATOR);
}
/**
* Retrieving get vars
*/
$idUser = intval($_GET["id_user"]);
/**
* Checking for $formError to read data from database
*/
if (!isset($formError)) {
include_once "../model/Query/User.php";
/**
* Search database
*/
$userQ = new Query_User();
if (!$userQ->select($idUser)) {
$userQ->close();
FlashMsg::add(_("That user does not exist."), OPEN_MSG_ERROR);
header("Location: " . $returnLocation);
exit;
}
$user = $userQ->fetch();
if ($user) {
$formVar["id_user"] = $idUser;
$formVar["id_member"] = $user->getIdMember();
$formVar["login"] = $user->getLogin();
$formVar["email"] = $user->getEmail();
$formVar["actived"] = $user->isActived() ? "checked" : "";
$formVar["id_theme"] = $user->getIdTheme();
$formVar["id_profile"] = $user->getIdProfile();
* Checking permissions
*/
require_once "../auth/login_check.php";
loginCheck(OPEN_PROFILE_ADMINISTRATOR);
/**
* Validate data
*/
require_once "../model/Query/User.php";
$user = new User();
require_once "../admin/user_validate_post.php";
/**
* Destroy form values and errors
*/
Form::unsetSession();
/**
* Insert new user
*/
$userQ = new Query_User();
if ($userQ->existLogin($user->getLogin(), $user->getIdMember())) {
FlashMsg::add(sprintf(_("Login, %s, already exists. The changes have no effect."), $user->getLogin()), OPEN_MSG_WARNING);
} else {
$userQ->insert($user);
FlashMsg::add(sprintf(_("User, %s, has been added."), $user->getLogin()));
}
$userQ->close();
unset($userQ);
unset($user);
/**
* Redirect to $returnLocation to avoid reload problem
*/
header("Location: " . $returnLocation);
