<td class=\"centeredcell\"><input type=\"submit\" value=\"Save Password\"></td></form>
</tr>
<tr>
<td colspan=1 class=\"centeredcellbold\">Email</td>
<form action=\"./index.php?pageid=adminsaveemail\" method=\"POST\"><td colspan=3 class=\"centeredcell\"><input type=\"hidden\" name=\"userid\" value=\"".$user['user_id']."\"><input type=\"text\" name=\"email\" size=30 value=\"".$user['email']."\"><input type=\"submit\" value=\"Save Email\"></td></form>
</tr>
<tr>
<td colspan=1 class=\"centeredcellbold\">Userlevel</td>
<form action=\"./index.php?pageid=adminsavelevel\" method=\"POST\"><td colspan=3 class=\"centeredcell\">
<input type=\"hidden\" name=\"userid\" value=\"".$user['user_id']."\">".getUserLevelDropDownSelected("level",$user['user_level'])."<input type=\"submit\" value=\"Save Level\"></td>
</form>
</tr>
<tr>
<td colspan=1 class=\"centeredcellbold\">Warnings</td>
<td class=\"centeredcell\" colspan=2><a href=\"./index.php?pageid=viewwarnings&user_id=".$user['user_id']."\">".mysql_num_rows(getActiveWarningsForUser($user['user_id']))."(".mysql_num_rows(getWarningsForUser($user['user_id'])).")</a></td>
<td class=\"centeredcell\" colspan=1><a href=\"./index.php?pageid=warnuser&user_id=".$user['user_id']."\">Warn User</a></td>
</tr>
<tr>
<td colspan=4 class=\"centeredcellbold\">User Notes</th>
} else {
if ($pageid == "adminsavenotes") {
changeUserNotes($userid, $_POST['notes']);
$message = "User Saved!<br><br>";
}
}
}
}
if ($pageid == "edituser" || $pageid == "adminsavepassword" || $pageid == "adminsaveemail" || $pageid == "adminsavelevel") {
$sel = "";
} else {
$sel = " SELECTED";
}
while ($row = mysql_fetch_assoc($result)) {
if (isset($userid) && $row['user_id'] == $userid) {
$sel = " SELECTED";
}
$users = $users . "<option value=\"" . $row['user_id'] . "\"{$sel}>" . $row['name'] . "</option>";
$sel = "";
}
if ($pageid == "edituser" || $pageid == "adminsavepassword" || $pageid == "adminsaveemail" || $pageid == "adminsavenotes" || $pageid == "adminsavelevel") {
echo "<center><h3>Manage Users</h3></center>\r\n<center><form action=\"index.php\" method=\"GET\"><input type=\"hidden\" name=\"pageid\" value=\"edituser\"><select name=\"user\">\r\n" . $users . "\r\n</select><input type=\"submit\" value=\"Edit\"></form>" . $message . "</center>";
$user = mysql_fetch_assoc(getUserByID($userid));
$passwordRows = "";
if (!getConfigVar("use_ldap")) {
$passwordRows = "<tr>\r\n\t\t\r\n\t\t\t<td class=\"centeredcellbold\">Change Password</td>\r\n\t\t\t<td class=\"centeredcellbold\">New Password</td>\r\n\t\t\t<td class=\"centeredcellbold\">Confirm Password</td>\r\n\t\t\t<td class=\"centeredcellbold\">--</td>\r\n\t\r\n\t\t</tr>\r\n\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<form action=\"./index.php?pageid=adminsavepassword\" method=\"POST\"><td class=\"centeredcellbold\">--</td>\r\n\t\t\t<td class=\"centeredcell\"><input type=\"hidden\" name=\"userid\" value=\"" . $user['user_id'] . "\"><input type=\"password\" name=\"newpass\"></td>\r\n\t\t\t<td class=\"centeredcell\"><input type=\"password\" name=\"confpass\"></th>\r\n\t\t\t<td class=\"centeredcell\"><input type=\"submit\" value=\"Save Password\"></td></form>\r\n\t\r\n\t\t</tr>";
}
echo "<table class=\"userinfo\">\r\n\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"header\">User Information</td>\r\n\t\t\r\n\t\t</tr>\r\n\t\r\n\t\t<tr>\r\n\r\n\t\t\t<td class=\"centeredcellbold\">ID Number</th>\r\n\t\t\t<td colspan=3 class=\"centeredcell\">" . $user['username'] . "</td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\r\n\t\t<tr>\r\n\r\n\t\t\t<td class=\"centeredcellbold\">Name</td>\r\n\t\t\t<td colspan=3 class=\"centeredcell\">" . $user['name'] . "</td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\r\n\t\t" . $passwordRows . "\r\n\t\r\n\t\t<tr>\r\n\t\t\t\r\n\t\t\t<td colspan=1 class=\"centeredcellbold\">Email</td>\r\n\t\t\t<form action=\"./index.php?pageid=adminsaveemail\" method=\"POST\"><td colspan=3 class=\"centeredcell\"><input type=\"hidden\" name=\"userid\" value=\"" . $user['user_id'] . "\"><input type=\"text\" name=\"email\" size=30 value=\"" . $user['email'] . "\"><input type=\"submit\" value=\"Save Email\"></td></form>\r\n\t\t\t\t\r\n\t\t</tr>\r\n\t\r\n\t\t<tr>\r\n\t\t\t\r\n\t\t\t<td colspan=1 class=\"centeredcellbold\">Userlevel</td>\r\n\t\t\t<form action=\"./index.php?pageid=adminsavelevel\" method=\"POST\"><td colspan=3 class=\"centeredcell\">\r\n\t\t\t<input type=\"hidden\" name=\"userid\" value=\"" . $user['user_id'] . "\">" . getUserLevelDropDownSelected("level", $user['user_level']) . "<input type=\"submit\" value=\"Save Level\"></td>\r\n\t\t\t</form>\r\n\t\t\t\t\r\n\t\t</tr>\r\n\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=1 class=\"centeredcellbold\">Warnings</td>\r\n\t\t\t<td class=\"centeredcell\" colspan=2><a href=\"./index.php?pageid=viewwarnings&user_id=" . $user['user_id'] . "\">" . mysql_num_rows(getActiveWarningsForUser($user['user_id'])) . "(" . mysql_num_rows(getWarningsForUser($user['user_id'])) . ")</a></td>\r\n\t\t\t<td class=\"centeredcell\" colspan=1><a href=\"./index.php?pageid=warnuser&user_id=" . $user['user_id'] . "\">Warn User</a></td>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"centeredcellbold\">User Notes</th>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"centeredcellbold\"><br><form action=\"./index.php?pageid=adminsavenotes\" method=\"POST\"><input type=\"hidden\" name=\"userid\" value=\"" . $user['user_id'] . "\"><textarea cols=60 rows=8 name=\"notes\">" . $user['notes'] . "</textarea><br><input type=\"submit\" value=\"Save Notes\"</form></th>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\t\r\n\t</table>";
} else {
echo "<center><h3>Manage Users</h3></center>\r\n\t<center><form action=\"index.php\" method=\"GET\"><input type=\"hidden\" name=\"pageid\" value=\"edituser\"><select name=\"user\" size=10>\r\n\t" . $users . "\r\n\t</select><br><input type=\"button\" value=\"Create User\" onClick=\"window.location = './index.php?pageid=newuser'\"><input type=\"submit\" value=\"Edit\"></form></center>";
}
if (getSessionVariable('user_level') >= RES_USERLEVEL_ADMIN) {
} else {
die("Error: You don't have permissions to access this page!");
}
} else {
die("Error: You don't have permissions to access this page!");
}
$message = "";
$equipid = 0;
if ($pageid == "saveequip") {
require 'adminfunctions.php';
saveEquipment($_POST['equipid'], $_POST['name'], $_POST['type'], $_POST['serial'], $_POST['max'], $_POST['minuserlevel'], $_POST['checkoutfrom'], $_POST['description']);
$equipid = $_POST['equipid'];
$message = "<font color=\"#005500\"><b>Successfully saved this equipment!</b><br><br></font>";
}
if ($equipid == 0) {
$equipid = $_POST['selector'];
}
$equip = mysql_fetch_assoc(getEquipmentByID($equipid));
$users = "<select name=\"checkoutfrom\"><option value=\"-1\">None</option>";
$userresult = getAllUsersOrderByName();
while ($row = mysql_fetch_assoc($userresult)) {
$selected = false;
if ($row['user_id'] == $equip['checkoutfrom']) {
$users = $users . "<option value=\"" . $row['user_id'] . "\" SELECTED>" . $row['name'] . "</option>";
} else {
$users = $users . "<option value=\"" . $row['user_id'] . "\">" . $row['name'] . "</option>";
}
}
echo "<center><h3>Edit Equipment</h3>" . $message . "</center>\r\n\r\n\t<form enctype=\"multipart/form-data\" action=\"./index.php?pageid=saveequip\" method=\"post\">\r\n\t<input type=\"hidden\" name=\"equipid\" value=\"" . $equipid . "\">\r\n\t<table class=\"newequip\">\r\n\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"header\">Equipment Information</td>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=2 class=\"centeredcellbold\">Name</td>\r\n\t\t\t<td colspan=2 class=\"centeredcell\"><input type=\"text\" size=30 name=\"name\" value=\"" . $equip['name'] . "\"></td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=2 class=\"centeredcellbold\">Equipment Type</td>\r\n\t\t\t<td colspan=2 class=\"centeredcell\">" . getEquipmentTypesDropDownSelected("type", 1, $equip['type']) . "</td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=2 class=\"centeredcellbold\">Primary Serial Number</td>\r\n\t\t\t<td colspan=2 class=\"centeredcell\"><input type=\"text\" size=30 name=\"serial\" value=\"" . $equip['serial'] . "\"></td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=2 class=\"centeredcellbold\">Checkout From</td>\r\n\t\t\t<td colspan=2 class=\"centeredcell\">" . $users . "</td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td class=\"centeredcellbold\">Max Length (days)</td>\r\n\t\t\t<td class=\"centeredcell\"><input type=\"text\" size=4 name=\"max\" value=\"" . $equip['max_length'] . "\"></td>\r\n\t\t\t<td class=\"centeredcell\"><b>Minimum User Level</b></td>\r\n\t\t\t<td class=\"centeredcell\">" . getUserLevelDropDownSelected("minuserlevel", $equip['min_user_level']) . "</td>\r\n\t\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"header\">Equipment Description</td>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"centeredcell\"><textarea cols=50 rows=10 name=\"description\">" . $equip['description'] . "</textarea></td>\r\n\t\t\r\n\t\t</tr>\r\n\t\t\r\n\t\t<tr>\r\n\t\t\r\n\t\t\t<td colspan=4 class=\"centeredcellbold\"><input type=\"submit\" value=\"save\"></td>\r\n\t\t\r\n\t\t</tr>\r\n\t\r\n\t</table>\r\n\t\r\n\t</form>";
</tr>
<tr>
<td colspan=2 class=\"centeredcellbold\">Checkout From</td>
<td colspan=2 class=\"centeredcell\">".$users."</td>
</tr>
<tr>
<td class=\"centeredcellbold\">Max Length (days)</td>
<td class=\"centeredcell\"><input type=\"text\" size=4 name=\"max\" value=\"".$equip['max_length']."\"></td>
<td class=\"centeredcell\"><b>Minimum User Level</b></td>
<td class=\"centeredcell\">".getUserLevelDropDownSelected("minuserlevel", $equip['min_user_level'])."</td>
</tr>
<tr>
<td colspan=4 class=\"header\">Equipment Description</td>
</tr>
<tr>
<td colspan=4 class=\"centeredcell\"><textarea cols=50 rows=10 name=\"description\">".$equip['description']."</textarea></td>
</tr>
