source: admin/user.php @ 1474:122a77514ce1

Visit:

Revision 1474:122a77514ce1, 10.2 KB checked in by Anne Kozlika <kozlika@…>, 12 years ago (diff)
Fixes typo and other html mistakes. Thanks to brol. Fixes #1477 Fixes #1479 Fixes #1480 Fixes #1481

Rev	Line
[175]	1	<?php
	2	# -- BEGIN LICENSE BLOCK ---------------------------------------
	3	#
	4	# This file is part of Dotclear 2.
	5	#
[1179]	6	# Copyright (c) 2003-2013 Olivier Meunier & Association Dotclear
[175]	7	# Licensed under the GPL version 2.0 license.
	8	# See LICENSE file or
	9	# http://www.gnu.org/licenses/old-licenses/gpl-2.0.html
	10	#
	11	# -- END LICENSE BLOCK -----------------------------------------
	12
	13	require dirname(__FILE__).'/../inc/admin/prepend.php';
	14
	15	dcPage::checkSuper();
	16
[1305]	17	$page_title = __('New user');
[175]	18
	19	$user_id = '';
	20	$user_super = '';
	21	$user_pwd = '';
	22	$user_change_pwd = '';
	23	$user_name = '';
	24	$user_firstname = '';
	25	$user_displayname = '';
	26	$user_email = '';
	27	$user_url = '';
	28	$user_lang = $core->auth->getInfo('user_lang');
	29	$user_tz = $core->auth->getInfo('user_tz');
	30	$user_post_status = '';
	31
	32	$user_options = $core->userDefaults();
	33
	34	foreach ($core->getFormaters() as $v) {
	35	$formaters_combo[$v] = $v;
	36	}
	37
	38	foreach ($core->blog->getAllPostStatus() as $k => $v) {
	39	$status_combo[$v] = $k;
	40	}
	41
	42	# Language codes
	43	$langs = l10n::getISOcodes(1,1);
	44	foreach ($langs as $k => $v) {
	45	$lang_avail = $v == 'en' \|\| is_dir(DC_L10N_ROOT.'/'.$v);
	46	$lang_combo[] = new formSelectOption($k,$v,$lang_avail ? 'avail10n' : '');
	47	}
	48
	49	# Get user if we have an ID
	50	if (!empty($_REQUEST['id']))
	51	{
	52	try {
	53	$rs = $core->getUser($_REQUEST['id']);
	54
	55	$user_id = $rs->user_id;
	56	$user_super = $rs->user_super;
	57	$user_pwd = $rs->user_pwd;
	58	$user_change_pwd = $rs->user_change_pwd;
	59	$user_name = $rs->user_name;
	60	$user_firstname = $rs->user_firstname;
	61	$user_displayname = $rs->user_displayname;
	62	$user_email = $rs->user_email;
	63	$user_url = $rs->user_url;
	64	$user_lang = $rs->user_lang;
	65	$user_tz = $rs->user_tz;
	66	$user_post_status = $rs->user_post_status;
	67
	68	$user_options = array_merge($user_options,$rs->options());
	69
	70	$page_title = $user_id;
	71	} catch (Exception $e) {
	72	$core->error->add($e->getMessage());
	73	}
	74	}
	75
	76	# Add or update user
	77	if (isset($_POST['user_name']))
	78	{
	79	try
	80	{
	81	if (empty($_POST['your_pwd']) \|\| !$core->auth->checkPassword(crypt::hmac(DC_MASTER_KEY,$_POST['your_pwd']))) {
	82	throw new Exception(__('Password verification failed'));
	83	}
	84
	85	$cur = $core->con->openCursor($core->prefix.'user');
	86
	87	$cur->user_id = $_POST['user_id'];
	88	$cur->user_super = $user_super = !empty($_POST['user_super']) ? 1 : 0;
	89	$cur->user_name = $user_name = $_POST['user_name'];
	90	$cur->user_firstname = $user_firstname = $_POST['user_firstname'];
	91	$cur->user_displayname = $user_displayname = $_POST['user_displayname'];
	92	$cur->user_email = $user_email = $_POST['user_email'];
	93	$cur->user_url = $user_url = $_POST['user_url'];
	94	$cur->user_lang = $user_lang = $_POST['user_lang'];
	95	$cur->user_tz = $user_tz = $_POST['user_tz'];
	96	$cur->user_post_status = $user_post_status = $_POST['user_post_status'];
	97
[313]	98	if ($cur->user_id == $core->auth->userID() && $core->auth->isSuperAdmin()) {
	99	// force super_user to true if current user
	100	$cur->user_super = $user_super = true;
	101	}
[175]	102	if ($core->auth->allowPassChange()) {
	103	$cur->user_change_pwd = !empty($_POST['user_change_pwd']) ? 1 : 0;
	104	}
	105
	106	if (!empty($_POST['new_pwd'])) {
	107	if ($_POST['new_pwd'] != $_POST['new_pwd_c']) {
	108	throw new Exception(__("Passwords don't match"));
	109	} else {
	110	$cur->user_pwd = $_POST['new_pwd'];
	111	}
	112	}
	113
	114	$user_options['post_format'] = $_POST['user_post_format'];
	115	$user_options['edit_size'] = (integer) $_POST['user_edit_size'];
	116
	117	if ($user_options['edit_size'] < 1) {
	118	$user_options['edit_size'] = 10;
	119	}
	120
	121	$cur->user_options = new ArrayObject($user_options);
	122
	123	# Udate user
	124	if ($user_id)
	125	{
	126	# --BEHAVIOR-- adminBeforeUserUpdate
	127	$core->callBehavior('adminBeforeUserUpdate',$cur,$user_id);
	128
	129	$new_id = $core->updUser($user_id,$cur);
	130
	131	# --BEHAVIOR-- adminAfterUserUpdate
	132	$core->callBehavior('adminAfterUserUpdate',$cur,$new_id);
	133
	134	if ($user_id == $core->auth->userID() &&
	135	$user_id != $new_id) {
	136	$core->session->destroy();
	137	}
	138
	139	http::redirect('user.php?id='.$new_id.'&upd=1');
	140	}
	141	# Add user
	142	else
	143	{
	144	if ($core->getUsers(array('user_id' => $cur->user_id),true)->f(0) > 0) {
	145	throw new Exception(sprintf(__('User "%s" already exists.'),html::escapeHTML($cur->user_id)));
	146	}
	147
	148	# --BEHAVIOR-- adminBeforeUserCreate
	149	$core->callBehavior('adminBeforeUserCreate',$cur);
	150
	151	$new_id = $core->addUser($cur);
	152
	153	# --BEHAVIOR-- adminAfterUserCreate
	154	$core->callBehavior('adminAfterUserCreate',$cur,$new_id);
	155
[547]	156	if (!empty($_POST['saveplus'])) {
	157	http::redirect('user.php?add=1');
	158	} else {
	159	http::redirect('user.php?id='.$new_id.'&add=1');
	160	}
[175]	161	}
	162	}
	163	catch (Exception $e)
	164	{
	165	$core->error->add($e->getMessage());
	166	}
	167	}
	168
	169
	170	/* DISPLAY
	171	-------------------------------------------------------- */
	172	dcPage::open($page_title,
	173	dcPage::jsConfirmClose('user-form').
	174
	175	# --BEHAVIOR-- adminUserHeaders
[1358]	176	$core->callBehavior('adminUserHeaders'),
	177
	178	dcPage::breadcrumb(
	179	array(
	180	__('System') => '',
	181	__('Users') => 'users.php',
	182	'<span class="page-title">'.$page_title.'</span>' => ''
	183	))
[175]	184	);
	185
	186	if (!empty($_GET['upd'])) {
[907]	187	dcPage::message(__('User has been successfully updated.'));
[175]	188	}
	189
	190	if (!empty($_GET['add'])) {
[907]	191	dcPage::message(__('User has been successfully created.'));
[175]	192	}
	193
	194	if ($user_id == $core->auth->userID()) {
	195	echo
	196	'<p class="warning">'.__('Warning:').' '.
	197	__('If you change your username, you will have to log in again.').'</p>';
	198	}
	199
	200	echo
	201	'<form action="user.php" method="post" id="user-form">'.
	202	'<fieldset><legend>'.__('User information').'</legend>'.
	203	'<div class="two-cols">'.
	204	'<div class="col">'.
[1399]	205	'<p><label for="user_id" class="required"><abbr title="'.__('Required field').'">*</abbr> '.__('Username:').'</label> '.
[454]	206	form::field('user_id',20,255,html::escapeHTML($user_id)).
[1399]	207	'</p>'.
[175]	208	'<p class="form-note">'.__('At least 2 characters using letters, numbers or symbols.').'</p>'.
	209
[177]	210	'<p><label for="new_pwd" '.($user_id != '' ? '' : 'class="required"').'>'.
	211	($user_id != '' ? '' : '<abbr title="'.__('Required field').'">*</abbr> ').
[1399]	212	($user_id != '' ? __('New password:') : __('Password:')).'</label> '.
[454]	213	form::password('new_pwd',20,255).
[1399]	214	'</p>'.
[181]	215	'<p class="form-note">'.__('Password must contain at least 6 characters.').'</p>'.
[175]	216
[177]	217	'<p><label for="new_pwd_c" '.($user_id != '' ? '' : 'class="required"').'>'.
[1399]	218	($user_id != '' ? '' : '<abbr title="'.__('Required field').'">*</abbr> ').__('Confirm password:').'</label> '.
[454]	219	form::password('new_pwd_c',20,255).
[1399]	220	'</p>'.
[175]	221
[1399]	222	'<p><label for="user_name">'.__('Last Name:').'</label> '.
[454]	223	form::field('user_name',20,255,html::escapeHTML($user_name)).
[1399]	224	'</p>'.
[175]	225
[1399]	226	'<p><label for="user_firstname">'.__('First Name:').'</label> '.
[454]	227	form::field('user_firstname',20,255,html::escapeHTML($user_firstname)).
[1474]	228	'</p>'.
[175]	229
[1474]	230	'<p><label for="user_displayname">'.__('Display name:').'</label> '.
[454]	231	form::field('user_displayname',20,255,html::escapeHTML($user_displayname)).
[1399]	232	'</p>'.
[175]	233
[1399]	234	'<p><label for="user_email">'.__('Email:').'</label> '.
[454]	235	form::field('user_email',20,255,html::escapeHTML($user_email)).
[1399]	236	'</p>'.
[479]	237	'<p class="form-note">'.__('Mandatory for password recovering procedure.').'</p>'.
[175]	238	'</div>'.
	239
	240	'<div class="col">'.
[1399]	241	'<p><label for="user_url">'.__('URL:').'</label> '.
[454]	242	form::field('user_url',30,255,html::escapeHTML($user_url)).
[1399]	243	'</p>'.
	244	'<p><label for="user_post_format">'.__('Preferred format:').'</label> '.
[454]	245	form::combo('user_post_format',$formaters_combo,$user_options['post_format']).
[1399]	246	'</p>'.
[175]	247
[1399]	248	'<p><label for="user_post_status">'.__('Default entry status:').'</label> '.
[454]	249	form::combo('user_post_status',$status_combo,$user_post_status).
[1399]	250	'</p>'.
[175]	251
[1399]	252	'<p><label for="user_edit_size">'.__('Entry edit field height:').'</label> '.
[454]	253	form::field('user_edit_size',5,4,(integer) $user_options['edit_size']).
[1399]	254	'</p>'.
[175]	255
[1399]	256	'<p><label for="user_lang">'.__('User language:').'</label> '.
[454]	257	form::combo('user_lang',$lang_combo,$user_lang,'l10n').
[1399]	258	'</p>'.
[175]	259
[1399]	260	'<p><label for="user_tz">'.__('User timezone:').'</label> '.
[454]	261	form::combo('user_tz',dt::getZones(true,true),$user_tz).
[1399]	262	'</p>';
[175]	263
	264	if ($core->auth->allowPassChange()) {
	265	echo
	266	'<p><label for="user_change_pwd" class="classic">'.
[454]	267	form::checkbox('user_change_pwd','1',$user_change_pwd).' '.
[175]	268	__('Password change required to connect').'</label></p>';
	269	}
	270
[313]	271	$super_disabled = $user_super && $user_id == $core->auth->userID();
	272
[175]	273	echo
[454]	274	'<p><label for="user_super" class="classic">'.form::checkbox('user_super','1',$user_super,'','',$super_disabled).' '.
[175]	275	__('Super administrator').'</label></p>'.
	276	'</div>'.
	277	'</div>'.
	278	'</fieldset>';
	279
	280	# --BEHAVIOR-- adminUserForm
	281	$core->callBehavior('adminUserForm',isset($rs) ? $rs : null);
	282
	283	echo
[177]	284	'<p><label for="your_pwd" '.($user_id != '' ? '' : 'class="required"').'>'.
[1399]	285	($user_id != '' ? '' : '<abbr title="'.__('Required field').'">*</abbr> ').__('Your password:').'</label>'.
	286	form::password('your_pwd',20,255).'</p>'.
[547]	287	'<p class="clear"><input type="submit" name="save" accesskey="s" value="'.__('Save').'" />'.
	288	($user_id != '' ? '' : ' <input type="submit" name="saveplus" value="'.__('Save and create another').'" />').
[175]	289	($user_id != '' ? form::hidden('id',$user_id) : '').
	290	$core->formNonce().
	291	'</p>'.
	292
	293	'</form>';
	294
	295	if ($user_id)
	296	{
[860]	297	echo '<div class="clear fieldset"><h3>'.__('Permissions').'</h3>'.
	298	'<form action="users_actions.php" method="post">'.
	299	'<p><input type="submit" value="'.__('Add new permissions').'" />'.
	300	form::hidden(array('redir'),'user.php?id='.$user_id).
	301	form::hidden(array('action'),'blogs').
	302	form::hidden(array('users[]'),$user_id).
	303	$core->formNonce().
	304	'</p>'.
	305	'</form>';
[175]	306
	307	$permissions = $core->getUserPermissions($user_id);
	308	$perm_types = $core->auth->getPermissionsTypes();
	309
	310	if (count($permissions) == 0)
	311	{
	312	echo '<p>'.__('No permissions.').'</p>';
	313	}
	314	else
	315	{
	316	foreach ($permissions as $k => $v)
	317	{
	318	if (count($v['p']) > 0)
	319	{
[860]	320	echo
	321	'<form action="users_actions.php" method="post">'.
	322	'<h4><a href="blog.php?id='.html::escapeHTML($k).'">'.
	323	html::escapeHTML($v['name']).'</a> ('.html::escapeHTML($k).')</h4>';
[175]	324
	325	echo '<ul>';
	326	foreach ($v['p'] as $p => $V) {
	327	if (isset($perm_types[$p])) {
	328	echo '<li>'.__($perm_types[$p]).'</li>';
	329	}
	330	}
[860]	331	echo '</ul>'.
	332	'<p><input type="submit" value="'.__('Change permissions').'" />'.
	333	form::hidden(array('redir'),'user.php?id='.$user_id).
	334	form::hidden(array('action'),'perms').
	335	form::hidden(array('users[]'),$user_id).
	336	form::hidden(array('blogs[]'),$k).
	337	$core->formNonce().
	338	'</p>'.
	339	'</form>';
[175]	340	}
	341	}
	342	}
	343
[860]	344	echo '</div>';
[175]	345	}
	346
	347	dcPage::helpBlock('core_user');
	348	dcPage::close();
[0]	349	?>

Note: See TracBrowser for help on using the repository browser.

Dotclear

Context Navigation

source: admin/user.php @ 1474:122a77514ce1

Download in other formats:

Sites map