username) { if (!User::check_username($username)) { Error::add('username', T_("Error Username already exists")); } } } if ($pass1 !== $pass2 && !empty($pass1)) { Error::add('password', T_("Error Passwords don't match")); } // Check the mail for correct address formation. if (!Mailer::validate_address($email)) { Error::add('email', T_('Invalid email address')); } /* If we've got an error then show edit form! */ if (Error::occurred()) { require_once AmpConfig::get('prefix') . '/templates/show_edit_user.inc.php'; break; } if ($access != $client->access) { $client->update_access($access); } if ($email != $client->email) { $client->update_email($email); } if ($website != $client->website) { $client->update_website($website); } if ($username != $client->username) { $client->update_username($username); } if ($fullname != $client->fullname) { $client->update_fullname($fullname); } if ($pass1 == $pass2 && strlen($pass1)) { $client->update_password($pass1); } if ($state != $client->state) { $client->update_state($state); } if ($city != $client->city) { $client->update_city($city); } $client->upload_avatar(); show_confirmation(T_('User Updated'), $client->fullname . "(" . $client->username . ")" . T_('updated'), AmpConfig::get('web_path'). '/admin/users.php'); break; case 'add_user': if (AmpConfig::get('demo_mode')) { break; } if (!Core::form_verify('add_user','post')) { UI::access_denied(); exit; } $username = scrub_in($_POST['username']); $fullname = scrub_in($_POST['fullname']); $email = scrub_in($_POST['email']); $website = scrub_in($_POST['website']); $access = scrub_in($_POST['access']); $pass1 = $_POST['password_1']; $pass2 = $_POST['password_2']; $state = scrub_in($_POST['state']); $city = scrub_in($_POST['city']); if ($pass1 !== $pass2 || !strlen($pass1)) { Error::add('password', T_("Error Passwords don't match")); } if (empty($username)) { Error::add('username', T_('Error Username Required')); } /* make sure the username doesn't already exist */ if (!User::check_username($username)) { Error::add('username', T_('Error Username already exists')); } // Check the mail for correct address formation. if (!Mailer::validate_address($email)) { Error::add('email', T_('Invalid email address')); } /* If we've got an error then show add form! */ if (Error::occurred()) { require_once AmpConfig::get('prefix') . '/templates/show_add_user.inc.php'; break; } /* Attempt to create the user */ $user_id = User::create($username, $fullname, $email, $website, $pass1, $access, $state, $city); if (!$user_id) { Error::add('general', T_("Error: Insert Failed")); } $user = new User($user_id); $user->upload_avatar(); if ($access == 5) { $access = T_('Guest');} elseif ($access == 25) { $access = T_('User');} elseif ($access == 100) { $access = T_('Admin');} /* HINT: %1 Username, %2 Access num */ show_confirmation(T_('New User Added'),sprintf(T_('%1$s has been created with an access level of %2$s'), $username, $access), AmpConfig::get('web_path').'/admin/users.php'); break; case 'enable': $client = new User($_REQUEST['user_id']); $client->enable(); if (!AmpConfig::get('user_no_email_confirm')) { Registration::send_account_enabled($client->username, $client->fullname, $client->email); } show_confirmation(T_('User Enabled'),$client->fullname . ' (' . $client->username . ')', AmpConfig::get('web_path'). '/admin/users.php'); break; case 'disable': $client = new User($_REQUEST['user_id']); if ($client->disable()) { show_confirmation(T_('User Disabled'),$client->fullname . ' (' . $client->username . ')', AmpConfig::get('web_path'). '/admin/users.php'); } else { show_confirmation(T_('Error'), T_('Unable to Disabled last Administrator'), AmpConfig::get('web_path').'/admin/users.php'); } break; case 'show_edit': if (AmpConfig::get('demo_mode')) { break; } $client = new User($_REQUEST['user_id']); require_once AmpConfig::get('prefix') . '/templates/show_edit_user.inc.php'; break; case 'confirm_delete': if (AmpConfig::get('demo_mode')) { break; } if (!Core::form_verify('delete_user')) { UI::access_denied(); exit; } $client = new User($_REQUEST['user_id']); if ($client->delete()) { show_confirmation(T_('User Deleted'), sprintf(T_('%s has been Deleted'), $client->username), AmpConfig::get('web_path'). "/admin/users.php"); } else { show_confirmation(T_('Delete Error'), T_("Unable to delete last Admin User"), AmpConfig::get('web_path')."/admin/users.php"); } break; case 'delete': if (AmpConfig::get('demo_mode')) { break; } $client = new User($_REQUEST['user_id']); show_confirmation(T_('Deletion Request'), sprintf(T_('Are you sure you want to permanently delete %s?'), $client->fullname), AmpConfig::get('web_path')."/admin/users.php?action=confirm_delete&user_id=" . $_REQUEST['user_id'],1,'delete_user'); break; case 'show_delete_avatar': $user_id = $_REQUEST['user_id']; $next_url = AmpConfig::get('web_path') . '/admin/users.php?action=delete_avatar&user_id=' . scrub_out($user_id); show_confirmation(T_('User Avatar Delete'), T_('Confirm Deletion Request'), $next_url, 1, 'delete_avatar'); break; case 'delete_avatar': if (AmpConfig::get('demo_mode')) { break; } if (!Core::form_verify('delete_avatar','post')) { UI::access_denied(); exit; } $client = new User($_REQUEST['user_id']); $client->delete_avatar(); $next_url = AmpConfig::get('web_path') . '/admin/users.php'; show_confirmation(T_('User Avater Deleted'), T_('User Avatar has been deleted'), $next_url); break; case 'show_generate_apikey': $user_id = $_REQUEST['user_id']; $next_url = AmpConfig::get('web_path') . '/admin/users.php?action=generate_apikey&user_id=' . scrub_out($user_id); show_confirmation(T_('Generate new API Key'), T_('Confirm API Key Generation'), $next_url, 1, 'generate_apikey'); break; case 'generate_apikey': if (AmpConfig::get('demo_mode')) { break; } if (!Core::form_verify('generate_apikey','post')) { UI::access_denied(); exit; } $client = new User($_REQUEST['user_id']); $client->generate_apikey(); $next_url = AmpConfig::get('web_path') . '/admin/users.php'; show_confirmation(T_('API Key Generated'), T_('New user API Key has been generated.'), $next_url); break; /* Show IP History for the Specified User */ case 'show_ip_history': /* get the user and their history */ $working_user = new User($_REQUEST['user_id']); if (!isset($_REQUEST['all'])) { $history = $working_user->get_ip_history(0,1); } else { $history = $working_user->get_ip_history(); } require AmpConfig::get('prefix') . '/templates/show_ip_history.inc.php'; break; case 'show_add_user': if (AmpConfig::get('demo_mode')) { break; } require_once AmpConfig::get('prefix') . '/templates/show_add_user.inc.php'; break; case 'show_preferences': $client = new User($_REQUEST['user_id']); $preferences = Preference::get_all($client->id); require_once AmpConfig::get('prefix') . '/templates/show_user_preferences.inc.php'; break; default: $browse = new Browse(); $browse->reset_filters(); $browse->set_type('user'); $browse->set_simple_browse(true); $browse->set_sort('name','ASC'); $user_ids = $browse->get_objects(); $browse->show_objects($user_ids); $browse->store(); break; } // end switch on action /* Show the footer */ UI::show_footer();