break;
case "add":
// actually add the user to the database
$username = filterSql($_POST['user']);
$role = filterSql($_POST['roleID']);
$password = filterSql($_POST['password']);
$name = filterSql($_POST['fullname']);
$BUser = new BaseUser();
$added = $BUser->addUser($username, $role, $password, $name);
$pagebody = $added;
break;
case "edituser":
// edit user form -- Kevin
// $myrow = array(usr_id, usr_login, role_id, usr_name, usr_enabled)
$user = new BaseUser();
$userinfo = $user->returnEditUser(filterSql($_GET['userid']));
$form = "<form action='base_useradmin.php?action=updateuser' Method='POST'>";
$form = $form . "<input type='hidden' name='usr_id' value='" . $userinfo[0] . "'";
$form = $form . "<table border=1 class='query'>";
$form = $form . "<tr><td width='25%' align='right'>" . _FRMUID . "</td>";
$form = $form . "<td align='left'>" . $userinfo[0] . "</td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . _FRMLOGIN . "</td>";
$form = $form . "<td align='left'>" . $userinfo[1] . "</td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . _FRMFULLNAME . "</td>";
$form = $form . "<td align='left'><input type='text' name='fullname' value='" . $userinfo[3] . "'></td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . _FRMROLE . "</td>";
$form = $form . "<td align='left'>" . $user->returnRoleNamesDropDown($userinfo[2]) . "</td></tr>";
$form = $form . "<tr><td colspan='2' align='center'><input type='submit' name='submit' value='" . _UPDATEUSER . "'></td>";
$form = $form . "</tr></table></form>";
$pagebody = $form;
break;
$form = $form . "<table border=1 class='query'>";
$form = $form . "<tr><td width='25%' align='right'>" . gettext("Old Password:"******"</td>";
$form = $form . "<td align='left'><input type='password' name='oldpasswd'></td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . gettext("New Password:"******"</td>";
$form = $form . "<td align='left'><input type='password' name='newpasswd1'></td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . gettext("New Password Again:") . "</td>";
$form = $form . "<td align='left'><input type='password' name='newpasswd2'></td></tr>";
$form = $form . "<tr><td colspan='2' align='center'><input type='submit' name='submit'></td>";
$form = $form . "</tr></table>";
$page_body = $page_body . $form;
break;
case "display":
$user = new BaseUser();
$userlogin = $user->returnUser();
$userid = $user->returnUserID($userlogin);
$userinfo = $user->returnEditUser($userid);
$form = "<table border=1 class='query'>";
$form = $form . "<tr><td width='25%' align='right'>" . gettext("User ID:") . "</td>";
$form = $form . "<td align='left'>" . $userinfo[0] . "</td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . gettext("Login:"******"</td>";
$form = $form . "<td align='left'>" . $userinfo[1] . "</td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . gettext("Full Name:") . "</td>";
$form = $form . "<td align='left'>" . $userinfo[3] . "</td></tr>";
$form = $form . "<tr><td width='25%' align='right'>" . gettext("Role:") . "</td>";
$form = $form . "<td align='left'>" . $user->roleName($userinfo[2]) . "</td></tr>";
$form = $form . "</tr></table>";
$page_body = $form;
break;
default:
$page_body = $page_body . " ";
}