$_POST['associate'], 'user_id'=>$item)); } mass_inserts(USER_GROUP_TABLE, array('group_id', 'user_id'), $datas); } if (-1 != $_POST['dissociate']) { $query = ' DELETE FROM '.USER_GROUP_TABLE.' WHERE group_id = '.$_POST['dissociate'].' AND user_id IN ('.implode(',', $collection).') '; pwg_query($query); } // properties to set for the collection (a user list) $datas = array(); $dbfields = array('primary' => array('id'), 'update' => array()); $formfields = array('nb_image_line', 'nb_line_page', 'template', 'language', 'recent_period', 'expand', 'show_nb_comments', 'maxwidth', 'maxheight', 'status'); foreach ($formfields as $formfield) { if ($_POST[$formfield.'_action'] != 'leave') { array_push($dbfields['update'], $formfield); } } // updating elements is useful only if needed... if (count($dbfields['update']) > 0) { $datas = array(); foreach ($collection as $user_id) { $data = array(); $data['id'] = $user_id; // TODO : verify if submited values are semanticaly correct foreach ($dbfields['update'] as $dbfield) { // if the action is 'unset', the key won't be in row and // mass_updates function will set this field to NULL if ('set' == $_POST[$dbfield.'_action']) { $data[$dbfield] = $_POST[$dbfield]; } } // Webmaster (user_id = 1) status must not be changed if (1 == $user_id and isset($data['status'])) { $data['status'] = 'admin'; } array_push($datas, $data); } // echo '
'; print_r($dbfields); echo ''; // echo '
'; print_r($datas); echo ''; mass_updates(USERS_TABLE, $dbfields, $datas); } } // +-----------------------------------------------------------------------+ // | groups list | // +-----------------------------------------------------------------------+ $groups = array(); $query = ' SELECT id, name FROM '.GROUPS_TABLE.' ;'; $result = pwg_query($query); while ($row = mysql_fetch_array($result)) { $groups[$row['id']] = $row['name']; } // +-----------------------------------------------------------------------+ // | template init | // +-----------------------------------------------------------------------+ $template->set_filenames(array('user_list'=>'admin/user_list.tpl')); $base_url = add_session_id(PHPWG_ROOT_PATH.'admin.php?page=user_list'); $conf['users_page'] = 10; if (isset($_GET['start']) and is_numeric($_GET['start'])) { $start = $_GET['start']; } else { $start = 0; } $template->assign_vars( array( 'L_AUTH_USER'=>$lang['permuser_only_private'], 'L_GROUP_ADD_USER' => $lang['group_add_user'], 'L_SUBMIT'=>$lang['submit'], 'L_STATUS'=>$lang['user_status'], 'L_USERNAME' => $lang['login'], 'L_PASSWORD' => $lang['password'], 'L_EMAIL' => $lang['mail_address'], 'L_ORDER_BY' => $lang['order_by'], 'L_ACTIONS' => $lang['actions'], 'L_PERMISSIONS' => $lang['permissions'], 'L_USERS_LIST' => $lang['title_liste_users'], 'L_LANGUAGE' => $lang['language'], 'L_NB_IMAGE_LINE' => $lang['nb_image_per_row'], 'L_NB_LINE_PAGE' => $lang['nb_row_per_page'], 'L_TEMPLATE' => $lang['theme'], 'L_RECENT_PERIOD' => $lang['recent_period'], 'L_EXPAND' => $lang['auto_expand'], 'L_SHOW_NB_COMMENTS' => $lang['show_nb_comments'], 'L_MAXWIDTH' => $lang['maxwidth'], 'L_MAXHEIGHT' => $lang['maxheight'], 'L_YES' => $lang['yes'], 'L_NO' => $lang['no'], 'L_SUBMIT' => $lang['submit'], 'L_RESET' => $lang['reset'], 'L_DELETE' => $lang['user_delete'], 'L_DELETE_HINT' => $lang['user_delete_hint'], 'F_ADD_ACTION' => $base_url, 'F_USERNAME' => @$_GET['username'], 'F_FILTER_ACTION' => PHPWG_ROOT_PATH.'admin.php' )); if (isset($_GET['id'])) { $template->assign_block_vars('session', array('ID' => $_GET['id'])); } $order_by_items = array('id' => $lang['registration_date'], 'username' => $lang['login']); foreach ($order_by_items as $item => $label) { $selected = (isset($_GET['order_by']) and $_GET['order_by'] == $item) ? 'selected="selected"' : ''; $template->assign_block_vars( 'order_by', array( 'VALUE' => $item, 'CONTENT' => $label, 'SELECTED' => $selected )); } $direction_items = array('asc' => $lang['ascending'], 'desc' => $lang['descending']); foreach ($direction_items as $item => $label) { $selected = (isset($_GET['direction']) and $_GET['direction'] == $item) ? 'selected="selected"' : ''; $template->assign_block_vars( 'direction', array( 'VALUE' => $item, 'CONTENT' => $label, 'SELECTED' => $selected )); } $blockname = 'group_option'; $template->assign_block_vars( $blockname, array( 'VALUE'=> -1, 'CONTENT' => '------------', 'SELECTED' => '' )); foreach ($groups as $group_id => $group_name) { $selected = (isset($_GET['group']) and $_GET['group'] == $group_id) ? 'selected="selected"' : ''; $template->assign_block_vars( $blockname, array( 'VALUE' => $group_id, 'CONTENT' => $group_name, 'SELECTED' => $selected )); } $blockname = 'status_option'; $template->assign_block_vars( $blockname, array( 'VALUE'=> -1, 'CONTENT' => '------------', 'SELECTED' => '' )); foreach (get_enums(USERS_TABLE, 'status') as $status) { $selected = (isset($_GET['status']) and $_GET['status'] == $status) ? 'selected="selected"' : ''; $template->assign_block_vars( $blockname, array( 'VALUE' => $status, 'CONTENT' => $lang['user_status_'.$status], 'SELECTED' => $selected )); } // --- // $user['template'] = $conf['default_template']; // $user['nb_image_line'] = $conf['nb_image_line']; // $user['nb_line_page'] = $conf['nb_line_page']; // $user['language'] = $conf['default_language']; // $user['maxwidth'] = $conf['default_maxwidth']; // $user['maxheight'] = $conf['default_maxheight']; // $user['recent_period'] = $conf['recent_period']; // $user['expand'] = $conf['auto_expand']; // $user['show_nb_comments'] = $conf['show_nb_comments']; // --- if (isset($_POST['pref_submit'])) { // echo '
'; print_r($_POST); echo ''; $template->assign_vars( array( 'NB_IMAGE_LINE' => $_POST['nb_image_line'], 'NB_LINE_PAGE' => $_POST['nb_line_page'], 'MAXWIDTH' => $_POST['maxwidth'], 'MAXHEIGHT' => $_POST['maxheight'], 'RECENT_PERIOD' => $_POST['recent_period'], 'EXPAND_YES' => 'true' == $_POST['expand'] ? 'checked="checked"' : '', 'EXPAND_NO' => 'false' == $_POST['expand'] ? 'checked="checked"' : '', 'SHOW_NB_COMMENTS_YES' => 'true' == $_POST['show_nb_comments'] ? 'checked="checked"' : '', 'SHOW_NB_COMMENTS_NO' => 'false' == $_POST['show_nb_comments'] ? 'checked="checked"' : '' )); } else { $template->assign_vars( array( 'NB_IMAGE_LINE' => $conf['nb_image_line'], 'NB_LINE_PAGE' => $conf['nb_line_page'], 'MAXWIDTH' => @$conf['default_maxwidth'], 'MAXHEIGHT' => @$conf['default_maxheight'], 'RECENT_PERIOD' => $conf['recent_period'], 'EXPAND_YES' => $conf['auto_expand'] ? 'checked="checked"' : '', 'EXPAND_NO' => !$conf['auto_expand'] ? 'checked="checked"' : '', 'SHOW_NB_COMMENTS_YES' => $conf['show_nb_comments'] ? 'checked="checked"' : '', 'SHOW_NB_COMMENTS_NO' => !$conf['show_nb_comments'] ? 'checked="checked"' : '' )); } $blockname = 'template_option'; foreach (get_templates() as $pwg_template) { if (isset($_POST['pref_submit'])) { $selected = $_POST['template']==$pwg_template ? 'selected="selected"' : ''; } else if ($conf['default_template'] == $pwg_template) { $selected = 'selected="selected"'; } else { $selected = ''; } $template->assign_block_vars( $blockname, array( 'VALUE'=> $pwg_template, 'CONTENT' => $pwg_template, 'SELECTED' => $selected )); } $blockname = 'language_option'; foreach (get_languages() as $language_code => $language_name) { if (isset($_POST['pref_submit'])) { $selected = $_POST['language']==$language_code ? 'selected="selected"':''; } else if ($conf['default_language'] == $language_code) { $selected = 'selected="selected"'; } else { $selected = ''; } $template->assign_block_vars( $blockname, array( 'VALUE'=> $language_code, 'CONTENT' => $language_name, 'SELECTED' => $selected )); } $blockname = 'pref_status_option'; foreach (get_enums(USERS_TABLE, 'status') as $status) { if (isset($_POST['pref_submit'])) { $selected = $_POST['status'] == $status ? 'selected="selected"' : ''; } else if ('guest' == $status) { $selected = 'selected="selected"'; } else { $selected = ''; } $template->assign_block_vars( $blockname, array( 'VALUE' => $status, 'CONTENT' => $lang['user_status_'.$status], 'SELECTED' => $selected )); } // associate $blockname = 'associate_option'; $template->assign_block_vars( $blockname, array( 'VALUE'=> -1, 'CONTENT' => '------------', 'SELECTED' => '' )); foreach ($groups as $group_id => $group_name) { if (isset($_POST['pref_submit'])) { $selected = $_POST['associate'] == $group_id ? 'selected="selected"' : ''; } else { $selected = ''; } $template->assign_block_vars( $blockname, array( 'VALUE' => $group_id, 'CONTENT' => $group_name, 'SELECTED' => $selected )); } // dissociate $blockname = 'dissociate_option'; $template->assign_block_vars( $blockname, array( 'VALUE'=> -1, 'CONTENT' => '------------', 'SELECTED' => '' )); foreach ($groups as $group_id => $group_name) { if (isset($_POST['pref_submit'])) { $selected = $_POST['dissociate'] == $group_id ? 'selected="selected"' : ''; } else { $selected = ''; } $template->assign_block_vars( $blockname, array( 'VALUE' => $group_id, 'CONTENT' => $group_name, 'SELECTED' => $selected )); } // +-----------------------------------------------------------------------+ // | filter | // +-----------------------------------------------------------------------+ $filter = array(); if (isset($_GET['username']) and !empty($_GET['username'])) { $username = str_replace('*', '%', $_GET['username']); if (function_exists('mysql_real_escape_string')) { $username = mysql_real_escape_string($username); } else { $username = mysql_escape_string($username); } if (!empty($username)) { $filter['username'] = $username; } } if (isset($_GET['group']) and -1 != $_GET['group'] and is_numeric($_GET['group'])) { $filter['group'] = $_GET['group']; } if (isset($_GET['status']) and in_array($_GET['status'], get_enums(USERS_TABLE, 'status'))) { $filter['status'] = $_GET['status']; } // +-----------------------------------------------------------------------+ // | navigation bar | // +-----------------------------------------------------------------------+ $query = ' SELECT COUNT(DISTINCT(id)) FROM '.USERS_TABLE.' LEFT JOIN '.USER_GROUP_TABLE.' ON id = user_id WHERE id != 2'; if (isset($filter['username'])) { $query.= ' AND username LIKE \''.$filter['username'].'\''; } if (isset($filter['group'])) { $query.= ' AND group_id = '.$filter['group']; } if (isset($filter['status'])) { $query.= ' AND status = \''.$filter['status']."'"; } $query.= ' ;'; list($counter) = mysql_fetch_row(pwg_query($query)); $url = PHPWG_ROOT_PATH.'admin.php'.get_query_string_diff(array('start')); $navbar = create_navigation_bar($url, $counter, $start, $conf['users_page'], ''); $template->assign_vars(array('NAVBAR' => $navbar)); // +-----------------------------------------------------------------------+ // | user list | // +-----------------------------------------------------------------------+ $profile_url = PHPWG_ROOT_PATH.'admin.php?page=profile&user_id='; $perm_url = PHPWG_ROOT_PATH.'admin.php?page=user_perm&user_id='; $users = array(); $user_ids = array(); $order_by = 'id'; if (isset($_GET['order_by']) and in_array($_GET['order_by'], array_keys($order_by_items))) { $order_by = $_GET['order_by']; } $direction = 'ASC'; if (isset($_GET['direction']) and in_array($_GET['direction'], array_keys($direction_items))) { $direction = strtoupper($_GET['direction']); } $query = ' SELECT DISTINCT(id), username, mail_address, status FROM '.USERS_TABLE.' LEFT JOIN '.USER_GROUP_TABLE.' ON id = user_id WHERE id != 2'; if (isset($filter['username'])) { $query.= ' AND username LIKE \''.$filter['username'].'\''; } if (isset($filter['group'])) { $query.= ' AND group_id = '.$filter['group']; } if (isset($filter['status'])) { $query.= ' AND status = \''.$filter['status']."'"; } $query.= ' ORDER BY '.$order_by.' '.$direction.' LIMIT '.$start.', '.$conf['users_page'].' ;'; $result = pwg_query($query); while ($row = mysql_fetch_array($result)) { array_push($users, $row); array_push($user_ids, $row['id']); $user_groups[$row['id']] = array(); } if (count($user_ids) > 0) { $query = ' SELECT user_id, group_id FROM '.USER_GROUP_TABLE.' WHERE user_id IN ('.implode(',', $user_ids).') ;'; $result = pwg_query($query); while ($row = mysql_fetch_array($result)) { array_push($user_groups[$row['user_id']], $row['group_id']); } foreach ($users as $num => $item) { $groups_string = preg_replace('/(\d+)/e', "\$groups['$1']", implode(', ', $user_groups[$item['id']])); if (isset($_POST['pref_submit']) and isset($_POST['selection']) and in_array($item['id'], $_POST['selection'])) { $checked = 'checked="checked"'; } else { $checked = ''; } $template->assign_block_vars( 'user', array( 'CLASS' => ($num % 2 == 1) ? 'row2' : 'row1', 'ID'=>$item['id'], 'CHECKED'=>$checked, 'U_MOD'=>add_session_id($profile_url.$item['id']), 'U_PERM'=>add_session_id($perm_url.$item['id']), 'USERNAME'=>$item['username'], 'STATUS'=>$lang['user_status_'.$item['status']], 'EMAIL'=>isset($item['mail_address']) ? $item['mail_address'] : '', 'GROUPS'=>$groups_string )); } } // +-----------------------------------------------------------------------+ // | html code display | // +-----------------------------------------------------------------------+ $template->assign_var_from_handle('ADMIN_CONTENT', 'user_list'); ?>