bludit/admin/controllers/edit-user.php

<?php defined('BLUDIT') or die('Bludit CMS.');

// ============================================================================
// Functions
// ============================================================================

function editUser($args)
{
	global $dbUsers;
	global $Language;

	if( $dbUsers->set($args) ) {
		Alert::set($Language->g('The changes have been saved'));
	}
	else {
		Log::set(__METHOD__.LOG_SEP.'Error occurred when trying to edit the user.');
	}
}

function setPassword($username, $new_password, $confirm_password)
{
	global $dbUsers;
	global $Language;

	if( ($new_password===$confirm_password) && !Text::isEmpty($new_password) )
	{
		if( $dbUsers->setPassword($username, $new_password) ) {
			Alert::set($Language->g('The changes have been saved'));
		}
		else {
			Log::set(__METHOD__.LOG_SEP.'Error occurred when trying to change the user password.');
		}
	}
	else {
		Alert::set($Language->g('The password and confirmation password do not match'));
		return false;
	}
}

function deleteUser($args, $deleteContent=false)
{
	global $dbUsers;
	global $dbPosts;
	global $Language;
	global $Login;

	// The user admin cannot be deleted.
	if($args['username']=='admin') {
		return false;
	}

	// The editors cannot delete users.
	if($Login->role()!=='admin') {
		return false;
	}

	if($deleteContent) {
		$dbPosts->deletePostsByUser($args['username']);
	}
	else {
		$dbPosts->linkPostsToUser($args['username'], 'admin');
	}

	if( $dbUsers->delete($args['username']) ) {
		Alert::set($Language->g('User deleted'));
	}
	else {
		Log::set(__METHOD__.LOG_SEP.'Error occurred when trying to delete the user.');
	}
}

// ============================================================================
// Main before POST
// ============================================================================

// ============================================================================
// POST Method
// ============================================================================

if( $_SERVER['REQUEST_METHOD'] == 'POST' )
{
	// Prevent editors to administrate other users.
	if($Login->role()!=='admin')
	{
		$_POST['username'] = $Login->username();
		unset($_POST['role']);
	}

	if(isset($_POST['delete-user-all'])) {
		deleteUser($_POST, true);
	}
	elseif(isset($_POST['delete-user-associate'])) {
		deleteUser($_POST, false);
	}
	elseif( !empty($_POST['new-password']) && !empty($_POST['confirm-password']) ) {
		setPassword($_POST['username'], $_POST['new-password'], $_POST['confirm-password']);
	}
	else {
		editUser($_POST);
	}
}

// ============================================================================
// Main after POST
// ============================================================================

if($Login->role()!=='admin') {
	$layout['parameters'] = $Login->username();
}

$_user = $dbUsers->getDb($layout['parameters']);

// If the user doesn't exist, redirect to the users list.
if($_user===false) {
	Redirect::page('admin', 'users');
}

$_user['username'] = $layout['parameters'];
New features 2015-05-05 01:00:01 +00:00			`<?php defined('BLUDIT') or die('Bludit CMS.');`

New features 2015-05-14 22:07:45 +00:00			`// ============================================================================`
			`// Functions`
			`// ============================================================================`

New features 2015-05-05 01:00:01 +00:00			`function editUser($args)`
			`{`
			`global $dbUsers;`
Paginator 2015-07-20 00:14:12 -03:00			`global $Language;`
Minor changes 2015-08-02 21:49:12 -03:00
User delete functionality 2015-07-22 00:15:02 -03:00			`if( $dbUsers->set($args) ) {`
			`Alert::set($Language->g('The changes have been saved'));`
			`}`
			`else {`
			`Log::set(__METHOD__.LOG_SEP.'Error occurred when trying to edit the user.');`
			`}`
			`}`

Login access code via email 2015-10-20 00:14:28 -03:00			`function setPassword($username, $new_password, $confirm_password)`
User delete functionality 2015-07-22 00:15:02 -03:00			`{`
			`global $dbUsers;`
			`global $Language;`

Login access code via email 2015-10-20 00:14:28 -03:00			`if( ($new_password===$confirm_password) && !Text::isEmpty($new_password) )`
New features 2015-05-05 01:00:01 +00:00			`{`
Login access code via email 2015-10-20 00:14:28 -03:00			`if( $dbUsers->setPassword($username, $new_password) ) {`
User delete functionality 2015-07-22 00:15:02 -03:00			`Alert::set($Language->g('The changes have been saved'));`
New features 2015-05-05 01:00:01 +00:00			`}`
			`else {`
User delete functionality 2015-07-22 00:15:02 -03:00			`Log::set(__METHOD__.LOG_SEP.'Error occurred when trying to change the user password.');`
New features 2015-05-05 01:00:01 +00:00			`}`
			`}`
User delete functionality 2015-07-22 00:15:02 -03:00			`else {`
			`Alert::set($Language->g('The password and confirmation password do not match'));`
			`return false;`
			`}`
			`}`

			`function deleteUser($args, $deleteContent=false)`
			`{`
			`global $dbUsers;`
			`global $dbPosts;`
			`global $Language;`
Changes on admin panel 2015-10-18 19:45:58 -03:00			`global $Login;`
User delete functionality 2015-07-22 00:15:02 -03:00
User delete functionality 2015-07-22 22:45:54 -03:00			`// The user admin cannot be deleted.`
			`if($args['username']=='admin') {`
			`return false;`
			`}`

Bug fixes on users 2015-09-29 22:59:02 -03:00			`// The editors cannot delete users.`
			`if($Login->role()!=='admin') {`
			`return false;`
			`}`

User delete functionality 2015-07-22 00:15:02 -03:00			`if($deleteContent) {`
			`$dbPosts->deletePostsByUser($args['username']);`
			`}`
			`else {`
			`$dbPosts->linkPostsToUser($args['username'], 'admin');`
			`}`

			`if( $dbUsers->delete($args['username']) ) {`
			`Alert::set($Language->g('User deleted'));`
			`}`
			`else {`
			`Log::set(__METHOD__.LOG_SEP.'Error occurred when trying to delete the user.');`
New features 2015-05-05 01:00:01 +00:00			`}`
			`}`

Minor changes 2015-08-02 21:49:12 -03:00			`// ============================================================================`
			`// Main before POST`
			`// ============================================================================`

New features 2015-05-14 22:07:45 +00:00			`// ============================================================================`
			`// POST Method`
			`// ============================================================================`

New features 2015-05-05 01:00:01 +00:00			`if( $_SERVER['REQUEST_METHOD'] == 'POST' )`
			`{`
Changes on admin panel 2015-10-18 19:45:58 -03:00			`// Prevent editors to administrate other users.`
New features 2015-05-14 22:07:45 +00:00			`if($Login->role()!=='admin')`
			`{`
			`$_POST['username'] = $Login->username();`
			`unset($_POST['role']);`
			`}`

User delete functionality 2015-07-22 00:15:02 -03:00			`if(isset($_POST['delete-user-all'])) {`
			`deleteUser($_POST, true);`
			`}`
			`elseif(isset($_POST['delete-user-associate'])) {`
			`deleteUser($_POST, false);`
			`}`
Changes on admin panel 2015-10-18 19:45:58 -03:00			`elseif( !empty($_POST['new-password']) && !empty($_POST['confirm-password']) ) {`
Login access code via email 2015-10-20 00:14:28 -03:00			`setPassword($_POST['username'], $_POST['new-password'], $_POST['confirm-password']);`
User delete functionality 2015-07-22 00:15:02 -03:00			`}`
Changes on admin panel 2015-10-18 19:45:58 -03:00			`else {`
User delete functionality 2015-07-22 00:15:02 -03:00			`editUser($_POST);`
New features 2015-05-05 01:00:01 +00:00			`}`
New features 2015-05-14 22:07:45 +00:00			`}`

			`// ============================================================================`
Minor changes 2015-08-02 21:49:12 -03:00			`// Main after POST`
New features 2015-05-14 22:07:45 +00:00			`// ============================================================================`

			`if($Login->role()!=='admin') {`
			`$layout['parameters'] = $Login->username();`
New features 2015-05-05 01:00:01 +00:00			`}`

Plugin configuration 2015-07-14 20:57:18 -03:00			`$_user = $dbUsers->getDb($layout['parameters']);`
New features 2015-05-05 01:00:01 +00:00
			`// If the user doesn't exist, redirect to the users list.`
New features 2015-05-14 22:07:45 +00:00			`if($_user===false) {`
			`Redirect::page('admin', 'users');`
			`}`

Static objects names 2015-05-30 22:06:55 -03:00			`$_user['username'] = $layout['parameters'];`