https://src.bluestatic.org / bugdar.git / blob
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
r925: Adding API error handling for the admin section
[bugdar.git] / admin / user.php
1 <?php
2 /*=====================================================================*\
3 || ###################################################################
4 || # Bugdar [#]version[#]
5 || # Copyright ©2002-[#]year[#] Iris Studios, Inc.
6 || #
7 || # This program is free software; you can redistribute it and/or modify
8 || # it under the terms of the GNU General Public License as published by
9 || # the Free Software Foundation; version [#]gpl[#] of the License.
10 || #
11 || # This program is distributed in the hope that it will be useful, but
12 || # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
13 || # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
14 || # more details.
15 || #
16 || # You should have received a copy of the GNU General Public License along
17 || # with this program; if not, write to the Free Software Foundation, Inc.,
18 || # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
19 || ###################################################################
20 \*=====================================================================*/
21
22 require_once('./global.php');
23 require_once('./includes/api_user.php');
24
25 require_once('./includes/class_api_error.php');
26 APIError(array(new API_Error_Handler($admin), 'admin_error'));
27
28 NavLinks::usersPages();
29 $navigator->set_focus('tab', 'users', null);
30
31 if (!can_perform('canadminusers'))
32 {
33 admin_login();
34 }
35
36 // ###################################################################
37
38 if (empty($_REQUEST['do']))
39 {
40 $_REQUEST['do'] = 'modify';
41 }
42
43 // ###################################################################
44
45 if ($_REQUEST['do'] == 'kill')
46 {
47 $user = new UserAPI($bugsys);
48 $user->set('userid', $bugsys->in['userid']);
49 $user->set_condition();
50 $user->delete();
51
52 $admin->redirect('user.php');
53 }
54
55 // ###################################################################
56
57 if ($_REQUEST['do'] == 'delete')
58 {
59 $admin->page_confirm($lang->string('Are you sure you want to delete this user?'), 'user.php?do=kill&amp;userid=' . $bugsys->input_clean('userid', TYPE_UINT));
60 }
61
62 // ###################################################################
63
64 if ($_POST['do'] == 'insert')
65 {
66 $user = new UserAPI($bugsys);
67 $user->set('displayname', $bugsys->in['displayname']);
68 $user->set('email', $bugsys->in['email']);
69 $user->set('showemail', $bugsys->in['showemail']);
70 $user->set('showcolours', $bugsys->in['showcolours']);
71 $user->set('usergroupid', $bugsys->in['usergroupid']);
72 $user->set('languageid', $bugsys->in['languageid']);
73 $user->set('timezone', $bugsys->in['timezone']);
74 $user->set('usedst', $bugsys->in['usedst']);
75 $user->set('password', $bugsys->in['password']);
76 $user->insert();
77
78 $admin->redirect('user.php?do=edit&userid=' . $user->insertid);
79 }
80
81 // ###################################################################
82
83 if ($_POST['do'] == 'update')
84 {
85 $user = new UserAPI($bugsys);
86 $user->set('userid', $bugsys->in['userid']);
87 $user->set_condition();
88 $user->set('displayname', $bugsys->in['displayname']);
89 $user->set('email', $bugsys->in['email']);
90 $user->set('showemail', $bugsys->in['showemail']);
91 $user->set('showcolours', $bugsys->in['showcolours']);
92 $user->set('usergroupid', $bugsys->in['usergroupid']);
93 $user->set('languageid', $bugsys->in['languageid']);
94 $user->set('timezone', $bugsys->in['timezone']);
95 $user->set('usedst', $bugsys->in['usedst']);
96 $user->set('password', $bugsys->in['password']);
97 $user->update();
98
99 $admin->redirect('user.php?do=edit&userid=' . $user->objdata['userid']);
100 }
101
102 // ###################################################################
103
104 if ($_REQUEST['do'] == 'edit' OR $_REQUEST['do'] == 'add')
105 {
106 $add = ($_REQUEST['do'] == 'add');
107 $edit = (!$add);
108
109 if ($edit)
110 {
111 NavLinks::usersEdit($bugsys->in['userid']);
112 $navigator->set_focus('link', 'users-pages-users', 'users-pages');
113
114 $user = $db->query_first("SELECT * FROM " . TABLE_PREFIX . "user WHERE userid = " . $bugsys->input_clean('userid', TYPE_UINT));
115 if (!$user)
116 {
117 $admin->error($lang->getlex('error_invalid_id'));
118 }
119 }
120 else
121 {
122 NavLinks::usersAdd();
123 $navigator->set_focus('link', 'users-add', 'users');
124 }
125
126 $admin->page_start(($add ? $lang->string('Add User') : $lang->string('Edit User')));
127
128 $admin->form_start('user.php', ($add ? 'insert' : 'update'));
129
130 if ($edit)
131 {
132 $admin->form_hidden_field('userid', $user['userid']);
133 }
134
135 $admin->table_start();
136
137 $admin->table_head(($add ? $lang->string('Add User') : sprintf($lang->string('Edit User (userid: %1$s)'), $user['userid'])));
138
139 $admin->row_input($lang->string('Display Name'), 'displayname', $user['displayname']);
140 $admin->row_input($lang->string('Email'), 'email', $user['email']);
141 $admin->row_input(($add ? $lang->string('Password') : $lang->string('Password (Leave blank for no change)')), 'password');
142
143 foreach ($bugsys->datastore['usergroup'] AS $group)
144 {
145 $admin->list_item($group['title'], $group['usergroupid'], ($user['usergroupid'] == $group['usergroupid']));
146 }
147 $admin->row_list($lang->string('Usergroup'), 'usergroupid');
148
149 $admin->row_yesno($lang->string('Show Email Publicly'), 'showemail', $user['showemail']);
150 $admin->row_yesno($lang->string('Show Status Colours on Bug Listings'), 'showcolours', $user['showcolours']);
151
152 foreach ($bugsys->datastore['language'] AS $language)
153 {
154 $admin->list_item($language['title'], $language['languageid'], ($user['languageid'] == $language['languageid']));
155 }
156 $admin->row_list($lang->string('Language'), 'languageid');
157
158 foreach ($datef->fetch_timezone_list() AS $value => $string)
159 {
160 $admin->list_item($string, $value, ($user['timezone'] == $value));
161 }
162 $admin->row_list($lang->string('Timezone'), 'timezone');
163 $admin->row_yesno($lang->string('Observe Daylight Savings Time (DST)'), 'usedst', $user['usedst']);
164
165 $admin->row_submit();
166
167 $admin->table_end();
168 $admin->form_end();
169
170 $admin->page_end();
171 }
172
173 // ###################################################################
174
175 if ($_REQUEST['do'] == 'search')
176 {
177 $fail = false;
178
179 NavLinks::usersAdd();
180 $navigator->set_focus('link', 'users-pages-users', 'users-pages');
181
182 if (is_numeric($bugsys->in['userdata']))
183 {
184 $bugsys->input_clean('userdata', TYPE_UINT);
185 if ($db->query_first("SELECT * FROM " . TABLE_PREFIX . "user WHERE userid = " . $bugsys->in['userdata']))
186 {
187 header('Location: user.php?do=edit&userid=' . $bugsys->in['userdata']);
188 }
189 else
190 {
191 $fail = true;
192 }
193 }
194 else
195 {
196 $bugsys->in['userdata'] = str_replace('%', '\%', $bugsys->in['userdata']);
197 $results = $db->query("SELECT * FROM " . TABLE_PREFIX . "user WHERE email LIKE '%" . $bugsys->input_escape('userdata') . "%' OR displayname LIKE '%" . $bugsys->input_escape('userdata') . "%'");
198
199 if ($db->num_rows($results) < 1)
200 {
201 $fail = true;
202 }
203 else
204 {
205 $admin->page_start($lang->string('Search Results'));
206
207 $admin->table_start();
208 $admin->table_head($lang->string('Search Results'), 4);
209 $admin->table_column_head(array($lang->string('Display Name'), $lang->string('Email'), $lang->string('User ID'), $lang->string('Actions')));
210
211 while ($row = $db->fetch_array($results))
212 {
213 $admin->row_multi_item(array(
214 $row['displayname'] => 'l',
215 $row['email'] => 'c',
216 $row['userid'] => 'c',
217 '<a href="user.php?do=edit&amp;userid=' . $row['userid'] . '">[' . $lang->string('Edit') . ']</a>' => 'c'
218 ));
219 }
220
221 $admin->table_end();
222
223 $admin->page_end();
224 }
225 }
226
227 if ($fail)
228 {
229 $admin->error($lang->string('Sorry, we could not find any users that matched your criteria.'));
230 }
231 }
232
233 // ###################################################################
234
235 if ($_REQUEST['do'] == 'modify')
236 {
237 NavLinks::usersAdd();
238 $navigator->set_focus('link', 'users-pages-users', 'users-pages');
239
240 $admin->page_start($lang->string('User Search'));
241
242 $admin->form_start('user.php', 'search');
243 $admin->table_start(true, '45%');
244
245 $admin->table_head($lang->string('User Search'));
246 $admin->row_input($lang->string('Name/Email/ID'), 'userdata');
247
248 $admin->row_submit('', ':save:', '');
249
250 $admin->table_end();
251 $admin->form_end();
252
253 $admin->page_end();
254 }
255
256 /*=====================================================================*\
257 || ###################################################################
258 || # $HeadURL$
259 || # $Id$
260 || ###################################################################
261 \*=====================================================================*/
262 ?>
Open-source PHP-MySQL bug tracking system that has customizable CSS/XHTML templates, email notifications, Atom syndication, internationalization support, and a very simple setup.