<form action="admin.php" method="POST"> <select style='width:150px;' name="mail" id="mail"> <?php echo display_users(); ?> </select> <input type='submit' name='submit' value='delete_user'> </form> </div> </div> <div class="session_log" style="margin-top:20px;"> <form action="admin.php" method="POST"> <div style="text-align: center;"> <select style='width:150px;' name="mail" id="mail"> <?php echo display_users(); ?> </select> <input type='submit' name='submit' value='make_admin'> </form> </div> </div> <div class="session_log" style="margin-top:20px;"> <div style="text-align:center;"> <form action="admin.php" method="POST"> <select style='width:150px;' name="id" id="ID"> <?php echo display_id(); ?> </select> <input type='submit' name='submit' value="mod_item">
if (!empty($_SESSION['message'])) { echo '<div class="alert alert-success alert-dismissible" role="alert"> <button type="button" class="close" data-dismiss="alert" aria-label="Close"><span aria-hidden="true">×</span></button>'; display_message(); echo '</div>'; } ?> <div class="col-md-12"> <table class="table table-hover"> <thead> <tr> <th>User Id</th> <th>Username</th> <th>Name</th> <th>Email</th> <th>Active</th> <th>Type</th> </tr> </thead> <tbody> <?php display_users(); ?> </tbody> </table> <!--End of Table--> </div> </div> </div>
} if ($user->isAdmin()) { $facility_id = $database->queryFirstValue("SELECT `facility_id` FROM `users` WHERE `id` = " . intval($_REQUEST['id']) . " LIMIT 1"); if (!$facility_id) { display_error("Error: Invalid user ID", "Please check your ID and try again."); break; } elseif (intval($facility_id) != $user->facility['id']) { display_error("Error: Insufficient privileges", "You may only view your own facility's users."); break; } } echo "<h1>Modify a user</h1>\r\n"; display_user_edit_form($user, intval($_REQUEST['id'])); break; case 'show': $userName = $database->queryFirstValue("SELECT `name` FROM `users` WHERE `id` = " . intval($_REQUEST['id']) . " LIMIT 1"); if (!$userName) { echo "This user was not found. Please select another user and try again."; } else { echo "<h1>" . escape_output($userName) . "</h1>\r\n"; display_user_profile($user, intval($_REQUEST['id'])); } break; default: case 'index': echo "<h1>Users</h1>\r\n"; display_users($user); echo "<a href='user.php?action=new'>Add a new user</a><br />\r\n"; break; } display_footer();