$uid=$purifier->purify($_POST['uid']); $user_entry=$purifier->purify($_POST['user_entry']); $telephone=$purifier->purify($_POST['telephone']); $nom=$purifier->purify($_POST['nom']); $prenom=$purifier->purify($_POST['prenom']); $description=$purifier->purify($_POST['description']); $userpwd=@$purifier->purify($_POST['userpwd']); $shell=$purifier->purify($_POST['shell']); $password=@$purifier->purify($_POST['password']); $string_auth=$purifier->purify($_POST['string_auth']); $pseudo=$purifier->purify($_POST['pseudo']); } } $isadmin=is_admin("Annu_is_admin",$login); if (($isadmin=="Y") or ((tstclass($login,$uid)==1) and (ldap_get_right("sovajon_is_admin",$login)=="Y"))) { // Recuperation des entrees de l'utilisateur a modifier $user=people_get_variables ($uid, false); // Decryptage du mot de passe if ( $user_entry && $string_auth) $userpwd = decodekey($string_auth); // Modification des entrees if ( !$user_entry || ($user_entry && (!verifPseudo($pseudo) || !verifTel($telephone) || !verifEntree($nom) || !verifEntree($prenom) || !verifDescription($description) || ($userpwd && !verifPwd($userpwd)) ) ) ) { header_crypto_html("Modification fiche utilisateur"); aff_trailer ("4"); ?> <form name = "auth" action="mod_user_entry.php" onSubmit = "encrypt(document.auth)" method="post"> <table align="center" border="0" width="90%"> <tbody> <tr> <td width="27%">Login : </td>
while ($row = mysqli_fetch_assoc($res)) if ($row['Database'] == $userDb) { $userdb=1; break;} else $userdb=0; if ( $userdb == 0 ) { echo "<li><a href=\"adm_BddPerso.php?uid=".$user["uid"]."&toggle=1"."&jeton=".md5($_SESSION['token'].htmlentities("/Annu/adm_BddPerso.php"))."\">Activer la <em>base de données</em></a><br>\n"; } else { echo "<li><a href=\"adm_BddPerso.php?uid=".$user["uid"]."&toggle=0"."&jeton=".md5($_SESSION['token'].htmlentities("/Annu/adm_BddPerso.php"))."\">Désactiver la <em>base de données</em></a><br>\n"; } echo "</ul>\n"; } echo "</ul>\n"; } // Fin affichage menu people_admin // Test de l'appartenance à la classe if ((tstclass($login,$user["uid"])==1) and (ldap_get_right("sovajon_is_admin",$login)=="Y") and ($login != $user["uid"])) { echo "<br>\n"; echo "<ul style=\"color: red;\">\n"; echo "<li><a href=\"mod_user_entry.php?uid=".$user["uid"]."&jeton=".md5($_SESSION['token'].htmlentities("/Annu/mod_user_entry.php"))."\">Modifier le compte de mon élève ...</a><br>\n"; echo "</ul>\n"; } // swekey if (( is_dir ("/usr/share/lcs/swekey")) && ($login == $user["uid"])) { echo '<div id="del_swekey"></div>'; if ($_SERVER['PHP_SELF']=="/Annu/people.php"){ echo '<SCRIPT language = "javascript" type = "text/javascript" src = "../../swekey/swekey_integrate.js"></SCRIPT>'; echo '<SCRIPT language = "javascript" type = "text/javascript" src = "../../swekey/swekey.js"></SCRIPT>'; echo '<SCRIPT language = "javascript" type = "text/javascript" src = "../../swekey/my_swekey.js"></SCRIPT>'; echo '<SCRIPT language = "javascript" type = "text/javascript"> var idk = Swekey_ListKeyIds().substring(0, 32);