admin/user.php

   1 <?php
   2 /*=====================================================================*\
   3 || ###################################################################
   4 || # Bugdar [#]version[#]
   5 || # Copyright ©2002-[#]year[#] Iris Studios, Inc.
   6 || #
   7 || # This program is free software; you can redistribute it and/or modify
   8 || # it under the terms of the GNU General Public License as published by
   9 || # the Free Software Foundation; version [#]gpl[#] of the License.
  10 || #
  11 || # This program is distributed in the hope that it will be useful, but
  12 || # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
  13 || # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
  14 || # more details.
  15 || #
  16 || # You should have received a copy of the GNU General Public License along
  17 || # with this program; if not, write to the Free Software Foundation, Inc.,
  18 || # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
  19 || ###################################################################
  20 \*=====================================================================*/
  21
  22 require_once('./global.php');
  23 require_once('./includes/api_user.php');
  24
  25 if (!can_perform('canadminusers'))
  26 {
  27         admin_login();
  28 }
  29
  30 // ###################################################################
  31
  32 if (empty($_REQUEST['do']))
  33 {
  34         $_REQUEST['do'] = 'modify';
  35 }
  36
  37 // ###################################################################
  38
  39 if ($_REQUEST['do'] == 'kill')
  40 {
  41         $user = new UserAPI($bugsys);
  42         $user->set('userid',    $bugsys->in['userid']);
  43         $user->set_condition();
  44         $user->delete();
  45
  46         $admin->redirect('user.php');
  47 }
  48
  49 // ###################################################################
  50
  51 if ($_REQUEST['do'] == 'delete')
  52 {
  53         $admin->page_confirm($lang->string('Are you sure you want to delete this user?'), 'user.php?do=kill&amp;userid=' . $bugsys->input_clean('userid', TYPE_UINT));
  54 }
  55
  56 // ###################################################################
  57
  58 if ($_POST['do'] == 'insert')
  59 {
  60         $user = new UserAPI($bugsys);
  61         $user->set('dispayname',        $bugsys->in['displayname']);
  62         $user->set('email',                     $bugsys->in['email']);
  63         $user->set('showemail',         $bugsys->in['showemail']);
  64         $user->set('showcolours',       $bugsys->in['showcolours']);
  65         $user->set('usergroupid',       $bugsys->in['usergroupid']);
  66         $user->set('languageid',        $bugsys->in['languageid']);
  67         $user->set('timezone',          $bugsys->in['timezone']);
  68         $user->set('password',          $bugsys->in['password']);
  69         $user->insert();
  70
  71         $admin->redirect('user.php?do=edit&userid=' . $db->insert_id());
  72 }
  73
  74 // ###################################################################
  75
  76 if ($_POST['do'] == 'update')
  77 {
  78         $user = new UserAPI($bugsys);
  79         $user->set('userid',            $bugsys->in['userid']);
  80         $user->set_condition();
  81         $user->set('dispayname',        $bugsys->in['displayname']);
  82         $user->set('email',                     $bugsys->in['email']);
  83         $user->set('showemail',         $bugsys->in['showemail']);
  84         $user->set('showcolours',       $bugsys->in['showcolours']);
  85         $user->set('usergroupid',       $bugsys->in['usergroupid']);
  86         $user->set('languageid',        $bugsys->in['languageid']);
  87         $user->set('timezone',          $bugsys->in['timezone']);
  88         $user->set('password',          $bugsys->in['password']);
  89         $user->update();
  90
  91         $admin->redirect('user.php?do=edit&userid=' . $user['userid']);
  92 }
  93
  94 // ###################################################################
  95
  96 if ($_REQUEST['do'] == 'edit' OR $_REQUEST['do'] == 'add')
  97 {
  98         $add = ($_REQUEST['do'] == 'add');
  99         $edit = (!$add);
 100
 101         if ($edit)
 102         {
 103                 $user = $db->query_first("SELECT * FROM " . TABLE_PREFIX . "user WHERE userid = " . $bugsys->input_clean('userid', TYPE_UINT));
 104                 if (!$user)
 105                 {
 106                         $admin->error($lang->getlex('error_invalid_id'));
 107                 }
 108         }
 109
 110         $admin->page_start(($add ? $lang->string('Add User') : $lang->string('Edit User')), 2, 'user_manage');
 111
 112         $admin->form_start('user.php', ($add ? 'insert' : 'update'));
 113
 114         if ($edit)
 115         {
 116                 $admin->form_hidden_field('userid', $user['userid']);
 117         }
 118
 119         $admin->table_start();
 120
 121         $admin->table_head(($add ? $lang->string('Add User') : sprintf($lang->string('Edit User (userid: %1$s)'), $user['userid'])));
 122
 123         $admin->row_input($lang->string('Display Name'), 'displayname', $user['displayname']);
 124         $admin->row_input($lang->string('Email'), 'email', $user['email']);
 125         $admin->row_input(($add ? $lang->string('Password') : $lang->string('Password (Leave blank for no change)')), 'password');
 126
 127         foreach ($bugsys->datastore['usergroup'] AS $group)
 128         {
 129                 $admin->list_item($group['title'], $group['usergroupid'], ($user['usergroupid'] == $group['usergroupid']));
 130         }
 131         $admin->row_list($lang->string('Usergroup'), 'usergroupid');
 132
 133         $admin->row_yesno($lang->string('Show Email Publicly'), 'showemail', $user['showemail']);
 134         $admin->row_yesno($lang->string('Show Status Colours on Bug Listings'), 'showcolours', $user['showcolours']);
 135
 136         foreach ($bugsys->datastore['language'] AS $language)
 137         {
 138                 $admin->list_item($language['title'], $language['languageid'], ($user['languageid'] == $language['languageid']));
 139         }
 140         $admin->row_list($lang->string('Language'), 'languageid');
 141
 142         foreach ($datef->fetch_timezone_list() AS $value => $string)
 143         {
 144                 $admin->list_item($string, $value, ($user['timezone'] == $value));
 145         }
 146         $admin->row_list($lang->string('Timezone'), 'timezone');
 147
 148         $admin->row_submit(($edit ? '<a href="user.php?do=delete&amp;userid=' . $user['userid'] . '">[' . $lang->string('Delete') . ']</a>' : ''), ':save:', ':reset:', 4);
 149
 150         $admin->table_end();
 151         $admin->form_end();
 152
 153         $admin->page_end();
 154 }
 155
 156 // ###################################################################
 157
 158 if ($_REQUEST['do'] == 'search')
 159 {
 160         $fail = false;
 161
 162         if (is_numeric($bugsys->in['userdata']))
 163         {
 164                 $bugsys->input_clean('userdata', TYPE_UINT);
 165                 if ($db->query_first("SELECT * FROM " . TABLE_PREFIX . "user WHERE userid = " . $bugsys->in['userdata']))
 166                 {
 167                         header('Location: user.php?do=edit&userid=' . $bugsys->in['userdata']);
 168                 }
 169                 else
 170                 {
 171                         $fail = true;
 172                 }
 173         }
 174         else
 175         {
 176                 $bugsys->in['userdata'] = str_replace('%', '\%', $bugsys->in['userdata']);
 177                 $results = $db->query("SELECT * FROM " . TABLE_PREFIX . "user WHERE email LIKE '%" . $bugsys->input_escape('userdata') . "%' OR displayname LIKE '%" . $bugsys->input_escape('userdata') . "%'");
 178
 179                 if ($db->num_rows($results) < 1)
 180                 {
 181                         $fail = true;
 182                 }
 183                 else
 184                 {
 185                         $admin->page_start($lang->string('Search Results'));
 186
 187                         $admin->table_start();
 188                         $admin->table_head($lang->string('Search Results'), 4);
 189                         $admin->table_column_head(array($lang->string('Display Name'), $lang->string('Email'), $lang->string('User ID'), $lang->string('Actions')));
 190
 191                         while ($row = $db->fetch_array($results))
 192                         {
 193                                 $admin->row_multi_item(array(
 194                                         $row['displayname'] => 'l',
 195                                         $row['email'] => 'c',
 196                                         $row['userid'] => 'c',
 197                                         '<a href="user.php?do=edit&amp;userid=' . $row['userid'] . '">[' . $lang->string('Edit') . ']</a>' => 'c'
 198                                 ));
 199                         }
 200
 201                         $admin->table_end();
 202
 203                         $admin->page_end();
 204                 }
 205         }
 206
 207         if ($fail)
 208         {
 209                 $admin->error($lang->string('Sorry, we could not find any users that matched your criteria.'));
 210         }
 211 }
 212
 213 // ###################################################################
 214
 215 if ($_REQUEST['do'] == 'modify')
 216 {
 217         $admin->page_start($lang->string('User Search'));
 218
 219         $admin->form_start('user.php', 'search');
 220         $admin->table_start(true, '45%');
 221
 222         $admin->table_head($lang->string('User Search'), 2, 'user_manage');
 223         $admin->row_input($lang->string('Name/Email/ID'), 'userdata');
 224
 225         $admin->row_submit('', ':save:', '');
 226
 227         $admin->table_end();
 228         $admin->form_end();
 229
 230         $admin->page_end();
 231 }
 232
 233 /*=====================================================================*\
 234 || ###################################################################
 235 || # $HeadURL$
 236 || # $Id$
 237 || ###################################################################
 238 \*=====================================================================*/
 239 ?>