home *** CD-ROM | disk | FTP | other *** search
/ Cricao de Sites - 650 Layouts Prontos / WebMasters.iso / CMS / xoops-2.0.18.1.exe / xoops-2.0.18.1 / htdocs / modules / system / admin / users / main.php < prev    next >
Encoding:
PHP Script  |  2007-09-09  |  10.9 KB  |  239 lines
  1. <?php
  2. // $Id: main.php 1029 2007-09-09 03:49:25Z phppp $
  3. //  ------------------------------------------------------------------------ //
  4. //                XOOPS - PHP Content Management System                      //
  5. //                    Copyright (c) 2000 XOOPS.org                           //
  6. //                       <http://www.xoops.org/>                             //
  7. //  ------------------------------------------------------------------------ //
  8. //  This program is free software; you can redistribute it and/or modify     //
  9. //  it under the terms of the GNU General Public License as published by     //
  10. //  the Free Software Foundation; either version 2 of the License, or        //
  11. //  (at your option) any later version.                                      //
  12. //                                                                           //
  13. //  You may not change or alter any portion of this comment or credits       //
  14. //  of supporting developers from this source code or any supporting         //
  15. //  source code which is considered copyrighted (c) material of the          //
  16. //  original comment or credit authors.                                      //
  17. //                                                                           //
  18. //  This program is distributed in the hope that it will be useful,          //
  19. //  but WITHOUT ANY WARRANTY; without even the implied warranty of           //
  20. //  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the            //
  21. //  GNU General Public License for more details.                             //
  22. //                                                                           //
  23. //  You should have received a copy of the GNU General Public License        //
  24. //  along with this program; if not, write to the Free Software              //
  25. //  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307 USA //
  26. //  ------------------------------------------------------------------------ //
  27. // Author: Kazumi Ono (AKA onokazu)                                          //
  28. // URL: http://www.myweb.ne.jp/, http://www.xoops.org/, http://jp.xoops.org/ //
  29. // Project: The XOOPS Project                                                //
  30. // ------------------------------------------------------------------------- //
  31.  
  32. if ( !is_object($xoopsUser) || !is_object($xoopsModule) || !$xoopsUser->isAdmin($xoopsModule->mid()) ) {
  33.     exit("Access Denied");
  34. }
  35. $op = 'mod_users';
  36. include_once XOOPS_ROOT_PATH."/modules/system/admin/users/users.php";
  37. if (isset($_POST)) {
  38.     foreach ( $_POST as $k => $v ) {
  39.         ${$k} = $v;
  40.     }
  41. }
  42. if (isset($_GET['op'])) {
  43.     $op = trim($_GET['op']);
  44.     if (isset($_GET['uid'])) {
  45.         $uid = intval($_GET['uid']);
  46.     }
  47. }
  48. switch ($op) {
  49.  
  50. case "modifyUser":
  51.     modifyUser($uid);
  52.     break;
  53. case "updateUser":
  54.     if (!$GLOBALS['xoopsSecurity']->check()) {
  55.         redirect_header("admin.php?fct=users", 3, implode('<br />', $GLOBALS['xoopsSecurity']->getErrors()));
  56.     }
  57.     // RMV-NOTIFY
  58.     $user_avatar = $theme = null;
  59.     if ( !isset( $attachsig ) ) $attachsig = null;
  60.     if ( !isset( $user_viewemail ) ) $user_viewemail = null;
  61.     updateUser($uid, $username, $name, $url, $email, $user_icq, $user_aim, $user_yim, $user_msnm, $user_from, $user_occ, $user_intrest, $user_viewemail, $user_avatar, $user_sig, $attachsig, $theme, $password, $pass2, $rank, $bio, $uorder, $umode, $notify_method, $notify_mode, $timezone_offset, $user_mailok, $groups);
  62.     break;
  63. case "delUser":
  64.     xoops_cp_header();
  65.     $member_handler =& xoops_gethandler('member');
  66.     $userdata =& $member_handler->getUser($uid);
  67.     xoops_confirm(array('fct' => 'users', 'op' => 'delUserConf', 'del_uid' => $userdata->getVar('uid')), 'admin.php', sprintf(_AM_AYSYWTDU,$userdata->getVar('uname')));
  68.     xoops_cp_footer();
  69.     break;
  70. case "delete_many":
  71.     xoops_cp_header();
  72.     $count = count($memberslist_id);
  73.     if ( $count > 0 ) {
  74.         $list = "<a href='".XOOPS_URL."/userinfo.php?uid=".$memberslist_id[0]."' target='_blank'>".$memberslist_uname[$memberslist_id[0]]."</a>";
  75.         $hidden = "<input type='hidden' name='memberslist_id[]' value='".$memberslist_id[0]."' />\n";
  76.         for ( $i = 1; $i < $count; $i++ ) {
  77.             $list .= ", <a href='".XOOPS_URL."/userinfo.php?uid=".$memberslist_id[$i]."' target='_blank'>".$memberslist_uname[$memberslist_id[$i]]."</a>";
  78.             $hidden .= "<input type='hidden' name='memberslist_id[]' value='".$memberslist_id[$i]."' />\n";
  79.         }
  80.         echo "<div><h4>".sprintf(_AM_AYSYWTDU," ".$list." ")."</h4>";
  81.         echo _AM_BYTHIS."<br /><br />
  82.         <form action='admin.php' method='post'>
  83.         <input type='hidden' name='fct' value='users' />
  84.         <input type='hidden' name='op' value='delete_many_ok' />
  85.         ".$GLOBALS['xoopsSecurity']->getTokenHTML()."
  86.         <input type='submit' value='"._YES."' />
  87.         <input type='button' value='"._NO."' onclick='javascript:location.href=\"admin.php?op=adminMain\"' />";
  88.         echo $hidden;
  89.         echo "</form></div>";
  90.     } else {
  91.         echo _AM_NOUSERS;
  92.     }
  93.     xoops_cp_footer();
  94.     break;
  95. case "delete_many_ok":
  96.     if (!$GLOBALS['xoopsSecurity']->check()) {
  97.         redirect_header("admin.php?fct=users", 3, implode('<br />', $GLOBALS['xoopsSecurity']->getErrors()));
  98.     }
  99.     $count = count($memberslist_id);
  100.     $output = "";
  101.     $member_handler =& xoops_gethandler('member');
  102.     for ( $i = 0; $i < $count; $i++ ) {
  103.         $deluser =& $member_handler->getUser($memberslist_id[$i]);
  104.         $delgroups = $deluser->getGroups();
  105.         if (in_array(XOOPS_GROUP_ADMIN, $delgroups)) {
  106.             $output .= sprintf('Admin user cannot be deleted. (User: %s)', $deluser->getVar("uname"))."<br />";
  107.         } else {
  108.             if (!$member_handler->deleteUser($deluser)) {
  109.                 $output .= "Could not delete ".$deluser->getVar("uname")."<br />";
  110.             } else {
  111.                 $output .= $deluser->getVar("uname")." deleted<br />";
  112.             }
  113.             // RMV-NOTIFY
  114.             xoops_notification_deletebyuser($deluser->getVar('uid'));
  115.         }
  116.     }
  117.     xoops_cp_header();
  118.     echo $output;
  119.     xoops_cp_footer();
  120.     break;
  121. case "delUserConf":
  122.     if (!$GLOBALS['xoopsSecurity']->check()) {
  123.         redirect_header("admin.php?fct=users", 3, implode('<br />', $GLOBALS['xoopsSecurity']->getErrors()));
  124.     }
  125.     $member_handler =& xoops_gethandler('member');
  126.     $user =& $member_handler->getUser($del_uid);
  127.     $groups = $user->getGroups();
  128.     if (in_array(XOOPS_GROUP_ADMIN, $groups)) {
  129.         xoops_cp_header();
  130.         echo sprintf('Admin user cannot be deleted. (User: %s)', $user->getVar("uname"));
  131.         xoops_cp_footer();
  132.     } elseif (!$member_handler->deleteUser($user)) {
  133.         xoops_cp_header();
  134.         echo "Could not delete ".$deluser->getVar("uname");
  135.         xoops_cp_footer();
  136.     } else {
  137.         $online_handler =& xoops_gethandler('online');
  138.         $online_handler->destroy($del_uid);
  139.         // RMV-NOTIFY
  140.         xoops_notification_deletebyuser($del_uid);
  141.         redirect_header("admin.php?fct=users",1,_AM_DBUPDATED);
  142.     }
  143.     break;
  144. case "addUser":
  145.     if (!$GLOBALS['xoopsSecurity']->check()) {
  146.         redirect_header("admin.php?fct=users", 3, implode('<br />', $GLOBALS['xoopsSecurity']->getErrors()));
  147.     }
  148.     if (!$username || !$email || !$password) {
  149.         $adduser_errormsg = _AM_YMCACF;
  150.     } else {
  151.         $member_handler =& xoops_gethandler('member');
  152.         // make sure the username doesnt exist yet
  153.         if ($member_handler->getUserCount(new Criteria('uname', $username)) > 0) {
  154.             $adduser_errormsg = 'User name '.$username.' already exists';
  155.         } else {
  156.             $newuser =& $member_handler->createUser();
  157.             if ( isset($user_viewemail) ) {
  158.                 $newuser->setVar("user_viewemail",$user_viewemail);
  159.             }
  160.             if ( isset($attachsig) ) {
  161.                 $newuser->setVar("attachsig",$attachsig);
  162.             }
  163.             $newuser->setVar("name", $name);
  164.             $newuser->setVar("uname", $username);
  165.             $newuser->setVar("email", $email);
  166.             $newuser->setVar("url", formatURL($url));
  167.             $newuser->setVar("user_avatar",'blank.gif');
  168.             $newuser->setVar("user_icq", $user_icq);
  169.             $newuser->setVar("user_from", $user_from);
  170.             $newuser->setVar("user_sig", $user_sig);
  171.             $newuser->setVar("user_aim", $user_aim);
  172.             $newuser->setVar("user_yim", $user_yim);
  173.             $newuser->setVar("user_msnm", $user_msnm);
  174.             if ($pass2 != "") {
  175.                 if ( $password != $pass2 ) {
  176.                     xoops_cp_header();
  177.                     echo "
  178.                     <b>"._AM_STNPDNM."</b>";
  179.                     xoops_cp_footer();
  180.                     exit();
  181.                 }
  182.                 $newuser->setVar("pass", md5($password));
  183.             }
  184.             $newuser->setVar("timezone_offset", $timezone_offset);
  185.             $newuser->setVar("uorder", $uorder);
  186.             $newuser->setVar("umode", $umode);
  187.             // RMV-NOTIFY
  188.             $newuser->setVar("notify_method", $notify_method);
  189.             $newuser->setVar("notify_mode", $notify_mode);
  190.             $newuser->setVar("bio", $bio);
  191.             $newuser->setVar("rank", $rank);
  192.             $newuser->setVar("level", 1);
  193.             $newuser->setVar("user_occ", $user_occ);
  194.             $newuser->setVar("user_intrest", $user_intrest);
  195.             $newuser->setVar('user_mailok', $user_mailok);
  196.             if (!$member_handler->insertUser($newuser)) {
  197.                 $adduser_errormsg = _AM_CNRNU;
  198.             } else {
  199.                 $groups_failed = array();
  200.                 foreach ($groups as $group) {
  201.                     if (!$member_handler->addUserToGroup($group, $newuser->getVar('uid'))) {
  202.                         $groups_failed[] = $group;
  203.                     }
  204.                 }
  205.                 if (!empty($groups_failed)) {
  206.                     $group_names = $member_handler->getGroupList(new Criteria('groupid', "(".implode(", ", $groups_failed).")", 'IN'));
  207.                     $adduser_errormsg = sprintf(_AM_CNRNU2, implode(", ", $group_names));
  208.                 } else {
  209.                     redirect_header("admin.php?fct=users",1,_AM_DBUPDATED);
  210.                     exit();
  211.                 }
  212.             }
  213.         }
  214.     }
  215.     xoops_cp_header();
  216.     xoops_error($adduser_errormsg);
  217.     xoops_cp_footer();
  218.     break;
  219. case "synchronize":
  220.     if (!$GLOBALS['xoopsSecurity']->check()) {
  221.         redirect_header("admin.php?fct=users", 3, implode('<br />', $GLOBALS['xoopsSecurity']->getErrors()));
  222.     }
  223.     synchronize($id, $type);
  224.     break;
  225. case "reactivate":
  226.     $result=$xoopsDB->query("UPDATE ".$xoopsDB->prefix("users")." SET level=1 WHERE uid=".$uid);
  227.     if(!$result){
  228.         exit();
  229.     }
  230.     redirect_header("admin.php?fct=users&op=modifyUser&uid=".$uid,1,_AM_DBUPDATED);
  231.     break;
  232. case "mod_users":
  233. default:
  234.     include_once XOOPS_ROOT_PATH.'/class/pagenav.php';
  235.     displayUsers();
  236.     break;
  237. }
  238. ?>
  239.