bludit/bl-kernel/admin/controllers/edit-user.php

54 lines
1.6 KiB
PHP
Raw Normal View History

2015-05-05 03:00:01 +02:00
<?php defined('BLUDIT') or die('Bludit CMS.');
2015-05-15 00:07:45 +02:00
// ============================================================================
// Functions
// ============================================================================
2015-08-03 02:49:12 +02:00
// ============================================================================
// Main before POST
// ============================================================================
2015-05-15 00:07:45 +02:00
// ============================================================================
// POST Method
// ============================================================================
2015-05-05 03:00:01 +02:00
if( $_SERVER['REQUEST_METHOD'] == 'POST' )
{
// Prevent non-administrators to change other users
if($Login->role()!=='admin') {
2015-05-15 00:07:45 +02:00
$_POST['username'] = $Login->username();
unset($_POST['role']);
}
2015-07-22 05:15:02 +02:00
if(isset($_POST['delete-user-all'])) {
deleteUser($_POST, $deleteContent=true);
2015-07-22 05:15:02 +02:00
}
elseif(isset($_POST['delete-user-associate'])) {
deleteUser($_POST, $deleteContent=false);
2015-07-22 05:15:02 +02:00
}
2016-09-07 02:14:57 +02:00
elseif(isset($_POST['disable-user'])) {
disableUser($_POST['username']);
}
2015-10-19 00:45:58 +02:00
else {
2015-07-22 05:15:02 +02:00
editUser($_POST);
2015-05-05 03:00:01 +02:00
}
Alert::set($Language->g('The changes have been saved'));
2015-05-15 00:07:45 +02:00
}
// ============================================================================
2015-08-03 02:49:12 +02:00
// Main after POST
2015-05-15 00:07:45 +02:00
// ============================================================================
// Prevent non-administrators to change other users
2015-05-15 00:07:45 +02:00
if($Login->role()!=='admin') {
$layout['parameters'] = $Login->username();
2015-05-05 03:00:01 +02:00
}
$User = $dbUsers->getUser($layout['parameters']);
2015-05-05 03:00:01 +02:00
// If the user doesn't exist, redirect to the users list.
if($User===false) {
Redirect::page('users');
2015-05-15 00:07:45 +02:00
}