$user = $db->getuserdata($username); if (!$user) { die("Invalid user specified!"); } $can_access = 0; if (THprofile_viewuserpolicy == 2) { $can_access = 1; } elseif (THprofile_viewuserpolicy == 1 && isset($_SESSION['username'])) { $can_access = 1; } elseif (THprofile_viewuserpolicy == 0 && ($_SESSION['admin'] || $_SESSION['moderator'])) { $can_access = 1; } if ($can_access) { $sm = sminit("viewprofile.tpl", null, "profiles", false, false); $sm->assign("user", $user); $sm->assign("caneditprofile", $db->caneditprofile($user['username'])); $sm->assign("isadmin", isset($_SESSION['admin']) && $_SESSION['admin']); if ($user['capcode']) { $sm->assign("capcode", $db->getusercapcode($user['capcode'])); } else { $sm->assign("capcode", null); } $sm->display("viewprofile.tpl", null); } else { renderPermissionDenied(); } } else { if ($_GET['action'] == "edit") { $imgErrString = ""; // This only gets set if there is a problem $passErrString = "";