<form action="admin.php" method="POST">
<select style='width:150px;' name="mail" id="mail">
<?php
echo display_users();
?>
</select>
<input type='submit' name='submit' value='delete_user'>
</form>
</div>
</div>
<div class="session_log" style="margin-top:20px;">
<form action="admin.php" method="POST">
<div style="text-align: center;">
<select style='width:150px;' name="mail" id="mail">
<?php
echo display_users();
?>
</select>
<input type='submit' name='submit' value='make_admin'>
</form>
</div>
</div>
<div class="session_log" style="margin-top:20px;">
<div style="text-align:center;">
<form action="admin.php" method="POST">
<select style='width:150px;' name="id" id="ID">
<?php
echo display_id();
?>
</select>
<input type='submit' name='submit' value="mod_item">
if (!empty($_SESSION['message'])) {
echo '<div class="alert alert-success alert-dismissible" role="alert">
<button type="button" class="close" data-dismiss="alert" aria-label="Close"><span aria-hidden="true">×</span></button>';
display_message();
echo '</div>';
}
?>
<div class="col-md-12">
<table class="table table-hover">
<thead>
<tr>
<th>User Id</th>
<th>Username</th>
<th>Name</th>
<th>Email</th>
<th>Active</th>
<th>Type</th>
</tr>
</thead>
<tbody>
<?php
display_users();
?>
</tbody>
</table> <!--End of Table-->
</div>
</div>
</div>
}
if ($user->isAdmin()) {
$facility_id = $database->queryFirstValue("SELECT `facility_id` FROM `users` WHERE `id` = " . intval($_REQUEST['id']) . " LIMIT 1");
if (!$facility_id) {
display_error("Error: Invalid user ID", "Please check your ID and try again.");
break;
} elseif (intval($facility_id) != $user->facility['id']) {
display_error("Error: Insufficient privileges", "You may only view your own facility's users.");
break;
}
}
echo "<h1>Modify a user</h1>\r\n";
display_user_edit_form($user, intval($_REQUEST['id']));
break;
case 'show':
$userName = $database->queryFirstValue("SELECT `name` FROM `users` WHERE `id` = " . intval($_REQUEST['id']) . " LIMIT 1");
if (!$userName) {
echo "This user was not found. Please select another user and try again.";
} else {
echo "<h1>" . escape_output($userName) . "</h1>\r\n";
display_user_profile($user, intval($_REQUEST['id']));
}
break;
default:
case 'index':
echo "<h1>Users</h1>\r\n";
display_users($user);
echo "<a href='user.php?action=new'>Add a new user</a><br />\r\n";
break;
}
display_footer();
