aboutsummaryrefslogtreecommitdiff
blob: 492611751ee0c6eafc9732b37f73ca92db5cc22e (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
<?php
/**
 *  Users.
 *  @package mirror
 *  @subpackage admin
 */
$protect=1;  // protect this page
require_once('../cfg/init.php');

// add user 
if (!empty($_POST['add-submit'])&&!empty($_POST['username'])&&!empty($_POST['password'])&&!empty($_POST['rpassword'])) {
    if (Mirror::insert_user($_POST['username'],$_POST['password'],$_POST['rpassword'],$_POST['user_firstname'],$_POST['user_lastname'],$_POST['user_email'])) {
        set_msg('User added successfully.');
        header('Location: http://'.$_SERVER['HTTP_HOST'].WEBPATH.'/admin/users.php');
        exit;
    } else {
        set_error('User could not be added because of an unknown error.');
    }
}

// process actions
if (!empty($_POST['submit'])) {
    if (!empty($_POST['user_id'])) {
        switch($_POST['action']) {
            case 'edit':
                if (!empty($_POST['doit'])) {
                    if (Mirror::update_user($_POST['user_id'],$_POST['username'],$_POST['password'],$_POST['rpassword'],$_POST['user_firstname'],$_POST['user_lastname'],$_POST['user_email'])) {
                        set_msg('User updated successfully.');
                        header('Location: http://'.$_SERVER['HTTP_HOST'].WEBPATH.'/admin/users.php');
                        exit;
                    } else {
                        set_error('User update failed.');
                    }
                } else {
                    $title = 'Edit User';
                    $nav = INC.'/admin_nav.php';
                    require_once(HEADER);
                    echo '<h2>Edit User</h2>';
                    $posts = Mirror::get_one_user($_POST['user_id']);
                    form_start();
                    include_once(INC.'/forms/user.php');
                    form_hidden('doit','1');
                    form_hidden('action','edit');
                    form_hidden('user_id',$_POST['user_id']);
                    form_submit('submit','','button1','Update');
                    form_end();
                    require_once(FOOTER);
                    exit;
                }
                break;
            case 'delete':
                if ($_POST['user_id']==$_SESSION['user']['user_id']) {
                    set_error('You cannot delete yourself.');
                } elseif (Mirror::delete_user($_POST['user_id'])) {
                    set_msg('User deleted successfully.');
                } else {
                    set_error('User could not be deleted because of an error.');
                }
                break;
        }
    } else {
        set_error('You must select a user to continue.');
    }
}

$title = 'Users';
$nav = INC.'/admin_nav.php';
require_once(HEADER);
echo '<h2>Users</h2>';

show_error();
show_msg();

$users = Mirror::get_users();

$_GET['sort'] = (!empty($_GET['sort']))?$_GET['sort']:'user_lastname';
$_GET['order'] = (!empty($_GET['order']))?$_GET['order']:'ASC';
$users = array_order_by($users,$_GET['sort'],$_GET['order']);

$headers = array(
    'user_id'=>'',
    'user_lastname'=>'Last',
    'user_firstname'=>'First',
    'user_email'=>'Email',
    'username'=>'Username'
);

$actions = array(
    'edit'=>'Edit',
    'delete'=>'Delete'
);

form_start();
show_list($users,$headers,'radio',$actions);
form_end();

echo '<h2>Add a User</h2>';
form_start();
include_once(INC.'/forms/user.php');
form_submit('add-submit','','button1','Add User');
form_end();

require_once(FOOTER);
?>