$user = $db->getuserdata($username);
if (!$user) {
die("Invalid user specified!");
}
$can_access = 0;
if (THprofile_viewuserpolicy == 2) {
$can_access = 1;
} elseif (THprofile_viewuserpolicy == 1 && isset($_SESSION['username'])) {
$can_access = 1;
} elseif (THprofile_viewuserpolicy == 0 && ($_SESSION['admin'] || $_SESSION['moderator'])) {
$can_access = 1;
}
if ($can_access) {
$sm = sminit("viewprofile.tpl", null, "profiles", false, false);
$sm->assign("user", $user);
$sm->assign("caneditprofile", $db->caneditprofile($user['username']));
$sm->assign("isadmin", isset($_SESSION['admin']) && $_SESSION['admin']);
if ($user['capcode']) {
$sm->assign("capcode", $db->getusercapcode($user['capcode']));
} else {
$sm->assign("capcode", null);
}
$sm->display("viewprofile.tpl", null);
} else {
renderPermissionDenied();
}
} else {
if ($_GET['action'] == "edit") {
$imgErrString = "";
// This only gets set if there is a problem
$passErrString = "";
