\n"; if ($admin=="TRUE") { $mode="A"; } else if ($editor=="TRUE") { $mode="E"; } else if ($disabled=="TRUE") {$mode="D"; } else { $mode="U"; } if ($trusted !=="TRUE") {$trusted="FALSE"; } $sql = "UPDATE `t_userprofiles` SET `UserMode`= '$mode', `UserTrusted`= '$trusted' WHERE `UserID`='$i'"; $sql_result = mysql_query($sql, $connection) or trigger_error("MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); } unset($i); echo"Your changes to the User List have been succesfully completed
"; //Do Special Disable, Delete, Enable Account Operations if ($_POST["selected"] AND $_POST["submit"] !=="Update") { //$selected = $_POST["selected"]; if ($_POST["submit"]=="Disable Selected") { $sql = "UPDATE `t_userprofiles` SET `UserMode`= 'D' WHERE `UserID`='$_POST[selected]'"; $sql_result = mysql_query($sql, $connection) or trigger_error("MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); echo"User Account for User Number $_POST[selected] Disabled
\n"; } else if ($_POST["submit"]=="Delete Selected") { $sql = "DELETE FROM `t_userprofiles` WHERE `UserID`='$_POST[selected]' LIMIT 1"; $sql_result = mysql_query($sql, $connection) or trigger_error("MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); echo"User Account for User Number $_POST[selected] Deleted
\n"; } else if ($_POST["submit"]=="Enable Selected") { $sql = "UPDATE `t_userprofiles` SET `UserMode`= 'U' WHERE `UserID`='$_POST[selected]'"; $sql_result = mysql_query($sql, $connection) or trigger_error("MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); echo"User Account for User Number $_POST[selected] Enabled, User Mode set to User
\n"; } } echo"
\n"; } ?> $maxuserid) {$maxuserid =$userid;} if ($usermode=="A") {$a="TRUE"; $e="TRUE"; } else if ($usermode=="E") {$e="TRUE"; $a="FALSE"; } else if ($usermode=="U") {$e="FALSE"; $a="FALSE"; } else if ($usermode=="D") {$d="TRUE";} $i++; echo""; echo"\n"; echo"\n"; echo"\n"; echo"\n"; echo"\n"; unset($a,$e,$t); } echo""; ?>
Manage User List:
Name E-Mail Address S E A T
$i  $username  $useremail"; echo""; echo""; echo""; if ($d=="TRUE") {echo"\n"; } echo"
New User E-Mail:
MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); echo"
Your update to $_POST[username], has been submitted successfully...
"; } else if ($_POST["submit"] == "Delete User") { if ($_SESSION["level"] !=="admin" && $_SESSION["uid"] !== $_POST["userid"]) {$_POST["userid"]=$_SESSION["uid"];} $sql = "DELETE FROM `t_userprofiles` WHERE `UserID`='$_POST[userid]'"; $sql_result = mysql_query($sql, $connection) or trigger_error("MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); echo"
You've successfully deleted $_POST[username]...
"; } if (!$userid) {$userid=$_POST["userid"];} //Show Edit Form $sql = "SELECT * FROM `t_userprofiles` WHERE `UserID` = '$userid' LIMIT 1"; $sql_result = mysql_query($sql, $connection) or trigger_error("MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); $row = mysql_fetch_array($sql_result); $userid = $row["UserID"]; $username = $row["UserName"]; $useremail = $row["UserEmail"]; $userwebsite = $row["UserWebsite"]; $userpass = $row["UserPass"]; $usermode = $row["UserMode"]; $trusted = $row["UserTrusted"]; $useremailhide = $row["UserEmailHide"]; ?> \n"; echo"\n"; echo"\n"; echo"\n"; echo"\n"; echo"\n"; echo"\n"; ?>
Edit Profile for :
Name:
E-Mail:
Website:
Password:Change Password
Permissions:"; if ($_SESSION["level"]=="user" or $_SESSION[level]=="editor") { if ($usermode=="U") {echo"User \n"; //To prevent being reset to null on submit. } else if ($usermode=="E") { echo"Editor \n"; } else { echo"Unknown \n"; } if ($trusted=="TRUE") { echo"Trusted \n"; } } else if ($_SESSION["level"]=="admin") { if ($usermode=="A") {$a="TRUE"; $e="TRUE"; } else if ($usermode=="E") {$e="TRUE"; $a="FALSE"; } else if ($usermode=="U") {$e="FALSE"; $a="FALSE"; } echo"Editor: \n "; echo"Admin: \n "; echo"Trusted: \n"; } echo"
E-Mail Public:"; if ($useremailhide==="1") { echo"Hidden: Visible: "; } else if ($useremailhide==="0") { echo"Hidden: Visible: "; } else { echo"Hidden: Visible: "; } echo"
    
«« Return to User Manager
Your two passwords did not match, go back and try again..."; } //Add User to MySQL Table if ($errors !="true") { $_POST["username"] = htmlspecialchars($_POST["username"]); $admin = $_POST["admin"]; $editor = $_POST["editor"]; $trusted = $_POST["trusted"]; $disabled = $_POST["disabled"]; //echo"$i - $admin - $editor - $trusted
\n"; if ($admin=="TRUE") { $mode="A"; } else if ($editor=="TRUE") { $mode="E"; } else if ($disabled=="TRUE") {$mode="D"; } else { $mode="U"; } if ($trusted !=="TRUE") {$trusted="FALSE"; } $sql = "INSERT INTO `t_userprofiles` (`UserName`, `UserEmail`, `UserWebsite`, `UserPass`, `UserMode`, `UserTrusted`, `UserEmailHide`) VALUES ('$_POST[username]', '$_POST[useremail]', '$_POST[userwebsite]', '$_POST[userpass]', '$mode', '$trusted', '$_POST[useremailhide]');"; $result = mysql_query($sql) or trigger_error("MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); //include"mail_sendaccountdetails.php"; echo"
The user $_POST[username] has been Successfully Added...
"; } } ?>
Add New User:
E-Mail:" SIZE=30 MAXLENGTH=100>
Name:
Website:
Password:
Confirm:  
Permissions:Editor: Admin: Trusted:
E-Mail Public:Hidden: Visible:
  
«« Return to User Manager
"; $sql = "SELECT `UserPass` FROM `t_userprofiles` WHERE `UserID` = '$_POST[userid]' LIMIT 1"; $sql_result = mysql_query($sql, $connection) or trigger_error("MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); $row = mysql_fetch_array($sql_result); $userpass = $row["UserPass"]; $oldpass = md5($_POST[oldpass]); if ($_SESSION["level"]=="admin") {$oldpass=$userpass; } //Bypass Old Password check for Admins only if ($userpass==$oldpass) { if ($_POST[newpass]==$_POST[newpass2]) { $userpass = md5($_POST["newpass"]); $sql = "UPDATE `t_userprofiles` SET `UserPass`='$userpass' WHERE `UserID`='$_POST[userid]'"; //echo"$sql\n
"; $sql_result = mysql_query($sql, $connection) or trigger_error("MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); echo"The password has been successfully reset.
"; } else { echo"The two passwords did not match, please go back and try again."; } } else { echo"Your Old password did not match the password on file, please try again."; } echo"\n"; } if (!$userid) { $userid = $_POST["userid"]; } //Get Name of User for Form $sql = "SELECT `UserName` FROM `t_userprofiles` WHERE `UserID` = '$userid' LIMIT 1"; $sql_result = mysql_query($sql, $connection) or trigger_error("MySQL Error ".mysql_errno().": ".mysql_error()."", E_USER_NOTICE); $row = mysql_fetch_array($sql_result); $username = $row["UserName"]; ?> ">
Change password for :
Old Password:
New Password:
Retype New Password:   
  
«« Return to User Manager