<?php
require_once 'class/default.php';
if (isset($_SESSION['user']) && $_SESSION['user']->isValid()) {
header("Location: index.php");
}
switch ($_GET['action']) {
case "register":
if (!empty($_POST['name']) && !empty($_POST['username']) && !empty($_POST['password']) && !empty($_POST['password2'])) {
if ($_POST["password"] == $_POST["password2"]) {
// FIXME use default-value from db for role!
array_push($messages, usertools::registerUser($_POST["name"], $_POST["username"], $_POST["password"], 1, $connection));
} else {
array_push($messages, _("Passwords doesn't match"));
}
}
$template->assign("messages", $messages);
$template->display('register.tpl');
break;
case "logout":
$_SESSION["user"]->logout();
header("Location: login.php");
break;
default:
if (!empty($_POST['username']) && !empty($_POST['password'])) {
$user = new user($_POST['username'], $_POST['password'], $connection);
if (isset($_SESSION["user"]) && $user->isValid()) {
header("Location: index.php");
} else {
array_push($messages, _("Wrong Password or user"));
}
}
$newUser = array("name" => $_POST['name'], "password" => $_POST['password'], "broleid" => $roleid);
usertools::editUser($_SESSION['editUser'], $newUser, $connection);
array_push($messages, "Changes where successfull for user " . $_SESSION['editUser']['username']);
} else {
array_push($messages, "Passwords don't match!");
}
}
unset($_SESSION['editUser']);
break;
case "mkuser":
if (!empty($_POST['username']) && !empty($_POST['name'])) {
if ($_POST['password'] == $_POST['password2']) {
$roleid;
foreach (admin::getRoles($connection) as $role) {
if ($role['role'] == $_POST['role']) {
$roleid = $role['roleid'];
}
}
usertools::registerUser($_POST['username'], $_POST['name'], $_POST['password'], $roleid, $connection);
array_push($messages, "User " . $_POST['username'] . "created succefull");
}
}
break;
}
if (!isset($_GET['action']) || $_GET['action'] == "mkedit" || $_GET['action'] == "mkuser") {
$template->assign("messages", $messages);
$users = admin::getUsers($connection);
$template->assign("users", admin::extractFromArray($users, "username"));
$template->display('user.tpl');
}
$template->display('users_edituser.tpl');
}
break;
case "createuser":
$template->assign("roles", admin::extractFromArray(admin::getRoles($connection), "role"));
$template->assign("messages", $messages);
$template->display('user_createuser.tpl');
break;
case "mkedit":
if ($_POST['sure'] == "on") {
if ($_POST['password'] == $_POST['password2']) {
usertools::editUser($_GET['userid'], $_POST, $connection);
$messages[] = "Changes where successfull for user " . $_SESSION['editUser']['username'];
} else {
$messages[] = "Passwords don't match!";
}
}
break;
case "mkuser":
$messages[] = usertools::registerUser($_POST, $connection);
break;
}
if (isset($_GET['deleteId'])) {
usertools::deleteUser($_GET['deleteId'], $connection);
}
if (!isset($_GET['action']) || $_GET['action'] == "mkedit" || $_GET['action'] == "mkuser") {
$template->assign("messages", $messages);
$users = admin::getUsers($connection);
$template->assign("users", admin::extractFromArray($users, "username"));
$template->display('user.tpl');
}
<?php
require_once 'class/default.php';
if (isset($_SESSION['user']) && $_SESSION['user']->isValid()) {
header("Location: index.php");
}
$template->assign("registration", $GLOBALS['registration']);
switch ($_GET['action']) {
case "register":
if (!empty($_POST)) {
$userResult = usertools::registerUser($_POST, $connection);
if ($userResult == "0") {
$messages[] = "User " . $_POST['registerUsername'] . " was created successfull!";
$template->assign("messages", $messages);
$template->display('login.tpl');
break;
} else {
var_dump($userResult);
$messages[] = $userResult;
$template->assign("messages", $messages);
$template->assign('errorTitle', "ERROR! Registration failed!");
$template->assign('errorDescription', "There was a failure on registration. Description: " . $userResult);
$template->display('error.tpl');
die;
}
}
$template->display('login.tpl');
break;
case "logout":
if (isset($_SESSION["user"])) {
$_SESSION["user"]->logout();
$roleid = $role['roleid'];
}
}
$newUser = array("name" => $_POST['name'], "password" => $_POST['password'], "broleid" => $roleid);
usertools::editUser($_SESSION['editUser'], $newUser, $connection);
array_push($messages, "Changes where successfull for user " . $_SESSION['editUser']['username']);
} else {
array_push($messages, "Passwords don't match!");
}
}
unset($_SESSION['editUser']);
break;
case "mkuser":
if (!empty($_POST['username']) && !empty($_POST['name'])) {
if ($_POST['password'] == $_POST['password2']) {
foreach (admin::getRoles($connection) as $role) {
if ($role['role'] == $_POST['role']) {
$roleid = $role['roleid'];
}
}
array_push($messages, usertools::registerUser($_POST['username'], $_POST['name'], $_POST['password'], $roleid, $connection));
}
}
break;
}
if (!isset($_GET['action']) || $_GET['action'] == "mkedit" || $_GET['action'] == "mkuser") {
$template->assign("messages", $messages);
$users = admin::getUsers($connection);
$template->assign("users", admin::extractFromArray($users, "username"));
$template->display('user.tpl');
}
