exit; } if (pg_numrows($channels) > 1) { echo "<center><h1>Weird?! multiple channels matching name/id ??</h1></center>\n"; echo "<b>Listing entries</b> (id) #name [reg_ts]<br><br>\n"; for ($x = 0; $x < pg_numrows($channels); $x++) { $roo = pg_fetch_object($channels, $x); echo "(" . $roo->id . ") " . $roo->name . " [" . $roo->registered_ts . "]<br>\n"; } echo "<br><br>- END OF REPORT.\n"; echo "</body></html>\n\n"; die; } unset($access); $channel = pg_fetch_object($channels, 0); $access = get_channel_access($database, $user_id, $channel->id); if (($channel->id == 1 || (int) $channel->flags & 0x2) && $admin < 1 && $nrw_lvl <= 0 && $access == 0) { // hide * and channels tagged as SPECIAL for non-* persons. echo "<center><h2>Sorry, you can't view details of that channel.</h2></center>"; echo "</body></html>\n\n"; die; } unset($edit); unset($force); $edit = 0; $force = 0; switch ($action) { case "edit": //$edit=1; $edit = 0; // disabled for now
<?php /* $Id: save_user.php,v 1.20 2005/03/07 08:48:25 nighty Exp $ */ require "../../php_includes/cmaster.inc"; std_init(); $cTheme = get_theme_info(); // Currently reserved for admins only // when we go fully live this condition can be removed if ($admin < 600 && !acl(XAT_CAN_EDIT)) { header("Location: users.php?id={$id}&r=1&fc=" . md5($id . 1 . CRC_SALT_0013)); exit; } // Admin's/ACLs can't edit people with higher access than themselves (level 1000 can, 1000 can do *anything*) $isAdminLvl = get_channel_access($database, $id, 1); if ($isAdminLvl > 0) { $isAdmin = 1; } else { $isAdmin = 0; } if ($isAdmin && $isAdminLvl >= $admin && $user_id != $id && $admin != 1000) { header("Location: users.php?id={$id}&r=2&fc=" . md5($id . 2 . CRC_SALT_0013)); exit; } // non admin's/ACL can't edit people other than themselves if ($admin < 600 && !acl(XAT_CAN_EDIT) && $user_id != $id) { header("Location: users.php?id={$id}&r=3&fc=" . md5($id . 3 . CRC_SALT_0013)); exit; } $id = $id + 0; //activate user_log if an admin or an acl user modifies someone else than him/herself if (($admin > 0 || acl(XAT_CAN_EDIT)) && $user_id != $id) {