<?php $user = system\Helper::arcGetUser(); $profileImage = SystemSetting::getByKey("ARC_USER_IMAGE", $user->id); $image = "<i class=\"fa fa-user fa-5x\"></i>"; if (!empty($profileImage->value)) { $image = "<img class=\"img-responsive img-thumbnail\" src=\"" . system\Helper::arcGetPath() . "assets/profile/" . $profileImage->value . "\" />"; } $company = SystemSetting::getByKey("ARC_REQUIRECOMPANY"); ?> <div class="panel panel-default"> <div class="panel-body"> <div class="row"> <div class="col-md-8"> <form id="detailsForm"> <div class="form-group"> <label for="firstname">Firstname</label> <input type="firstname" class="form-control" name="firstname" maxlength="50" placeholder="Firstname" value="<?php echo $user->firstname; ?> "> </div> <div class="form-group"> <label for="lastname">Lastname</label> <input type="lastname" class="form-control" name="lastname" maxlength="50" placeholder="Lastname" value="<?php echo $user->lastname; ?> "> </div> <?php
} $name = $_FILES["file"]["name"]; $ext = end(explode(".", $name)); # extra () to prevent notice $filename = uniqid() . "." . $ext; $path = system\Helper::arcGetPath(true) . "assets/profile"; $destination = $path . "/" . $filename; if (!file_exists($path)) { mkdir($path); } Log::createLog("info", "user", "Destination: '" . $destination . "'"); $location = $_FILES["file"]["tmp_name"]; $size = filesize($location); if ($size == 0) { system\Helper::arcAddMessage("danger", "Invalid file uploaded"); Log::createLog("danger", "user", "Invalid file size."); return; } move_uploaded_file($location, $destination); $profileImage = SystemSetting::getByKey("ARC_USER_IMAGE", system\Helper::arcGetUser()->id); $profileImage->userid = system\Helper::arcGetUser()->id; $profileImage->value = $filename; $profileImage->update(); system\Helper::arcAddMessage("success", "File uploaded"); Log::createLog("success", "user", "Upload complete."); } else { Log::createLog("danger", "user", "Upload error " . $_FILES['file']['error']); system\Helper::arcAddMessage("danger", "Error occured while uploading file"); } } }
<?php if (system\Helper::arcIsAjaxRequest()) { $user = User::getByID($_POST["id"]); if ($user->id != system\Helper::arcGetUser()->id) { system\Helper::arcImpersonateUser($user); system\Helper::arcAddMessage("success", "Impersonation mode enabled"); Log::createLog("warning", "user", "Is impersonating " . $user->getFullname()); system\Helper::arcReturnJSON(["status" => "success"]); } else { system\Helper::arcAddMessage("danger", "You cannot impersonate yourself"); system\Helper::arcReturnJSON(["status" => "failed"]); } }