Menu
▾
▴
[Meshdb-cvs] www/ipdb adduser.php,NONE,1.1 admin.php,NONE,1.1 deluser.php,NONE,1.1 edituser.php,NONE,1.1 logout.php,NONE,1.1
|
From: <ma...@pr...> - 2004-09-20 15:00:47
|
Update of /cvsroot/meshdb/www/ipdb In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv21407 Added Files: adduser.php admin.php deluser.php edituser.php logout.php Log Message: allow "admin" users to add/edit/remove users --- NEW FILE: adduser.php --- <?php require_once('include/globals.php'); ?> <?php function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "") { $theValue = (!get_magic_quotes_gpc()) ? addslashes($theValue) : $theValue; switch ($theType) { case "text": $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL"; break; case "long": case "int": $theValue = ($theValue != "") ? intval($theValue) : "NULL"; break; case "double": $theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL"; break; case "date": $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL"; break; case "defined": $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue; break; } return $theValue; } $editFormAction = $HTTP_SERVER_VARS['PHP_SELF']; if (isset($HTTP_SERVER_VARS['QUERY_STRING'])) { $editFormAction .= "?" . $HTTP_SERVER_VARS['QUERY_STRING']; } if ((isset($HTTP_POST_VARS["MM_insert"])) && ($HTTP_POST_VARS["MM_insert"] == "addUser")) { $insertSQL = sprintf("INSERT INTO auth (fullName, userid, password) VALUES (%s, %s, %s)", GetSQLValueString($HTTP_POST_VARS['fullName'], "text"), GetSQLValueString($HTTP_POST_VARS['username'], "text"), GetSQLValueString($HTTP_POST_VARS['password'], "text")); mysql_select_db($database_meship, $meship); $Result1 = mysql_query($insertSQL, $meship) or die(mysql_error()); $insertGoTo = "admin.php"; if (isset($HTTP_SERVER_VARS['QUERY_STRING'])) { $insertGoTo .= (strpos($insertGoTo, '?')) ? "&" : "?"; $insertGoTo .= $HTTP_SERVER_VARS['QUERY_STRING']; } header(sprintf("Location: %s", $insertGoTo)); } ?> <?php include_once("include/globals.php"); ?> <?php auth_check("admin"); ?> <html><!-- InstanceBegin template="/Templates/default.dwt.php" codeOutsideHTMLIsLocked="false" --> <head> <!-- InstanceBeginEditable name="doctitle" --> <title>Untitled Document</title> <!-- InstanceEndEditable --> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <link href="css/style.css" rel="stylesheet" type="text/css"> <link rel="SHORTCUT ICON" href="images/mesh-favico.ico"> <!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable --> </head> <body> <table width="100%" border="1" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <tr> <td width="203" bgcolor="#FFFFFF"> <div align="center"><img src="images/mesh-small.gif" width="137" height="86"></div></td> <!-- InstanceBeginEditable name="banner" --> <td width="479" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <h1>Add New User</h1></td> <!-- InstanceEndEditable --> </tr> <tr> <td width="203" valign="top" nowrap bordercolor="#0099FF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Client IP: <?php echo getServerVariable("REMOTE_ADDR"); ?></font></div></td> <td valign="top" nowrap bordercolor="#0099FF" bgcolor="#0099FF"> <div align="right"> <?php if (issetSessionVariable("username")) { ?> <font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Logged in as <strong><?php echo getSessionVariable("username"); ?></strong> <a href="logout.php">[log out] </a></font> <?php } else { ?> <font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Logged in as <strong>nobody</strong> <a href="login.php">[log in]</a></font> <?php } ?> </div> </td> </tr> <tr> <td width="203" valign="top" bgcolor="#FFFFFF"> <div align="center"> <table width="80%" border="0" cellpadding="2" cellspacing="2" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="index.php">Home</a></font></div></td> </tr> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="zones.php">Browse</a></font></div></td> </tr> <?php if (issetSessionVariable("username") && isUserInRole(getSessionVariable("username"), "admin")) { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="admin.php">Administration</a></font></div></td> </tr> <?php } ?> <?php if (issetSessionVariable("username")) { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="logout.php">Logout</a></font></div></td> </tr> <?php } else { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="login.php">Log In</a></font></div></td> </tr> <?php } ?> </table> </div></td> <!-- InstanceBeginEditable name="body" --> <td valign="top" bordercolor="#FFFFFF" bgcolor="#FFFFFF"><p> </p> <form name="addUser" method="POST" action="<?php echo $editFormAction; ?>"> <table border="1"> <tr> <td>User Name</td> <td width="73%"><input type="text" name="username"></td> </tr> <tr> <td>Full Name</td> <td><input type="text" name="fullName"></td> </tr> <tr> <td>Password</td> <td><input name="password" type="password" id="password"></td> </tr> <tr> <td>Password (verify)</td> <td><input name="passwordAgain" type="password" id="passwordAgain"></td> </tr> <tr> <td> </td> <td colspan="2"> </td> </tr> <tr> <td>Permissions</td> <td colspan="2"><table border="1"> <tr> <td width="28%" nowrap> <p> <input name="zoneAdmin" type="checkbox" id="zoneAdmin" value="checkbox"> Zone Admin<br> </p></td> <td width="25%" nowrap> <p> <label> <input type="radio" name="zoneAll" value="radio"> All</label> <br> <label> <input type="radio" name="zoneSpecific" value="radio"> Zones --></label> <br> </p></td> <td width="20%" valign="bottom" nowrap> <input name="zoneList" type="text" id="zoneList" size="8"> </td> </tr> <tr> <td nowrap> <input name="podAdmin" type="checkbox" id="podAdmin" value="checkbox"> Pod Admin</td> <td nowrap> <label> <input type="radio" name="podAll" value="radio"> All</label> <br> <label> <input type="radio" name="podSpecific" value="radio"> Pods --></label> </td> <td valign="bottom" nowrap> <input name="podList" type="text" id="podList" size="8"> </td> </tr> <tr> <td nowrap> <input name="nodeAdmin" type="checkbox" id="nodeAdmin" value="checkbox"> Node Admin</td> <td nowrap> <label> <input type="radio" name="nodeAll" value="radio"> All</label> <br> <label> <input type="radio" name="nodeSpecific" value="radio"> Nodes --></label></td> <td valign="bottom" nowrap> <input name="nodeList2" type="text" id="nodeList2" size="8"> </td> </tr> <tr> <td nowrap> </td> <td nowrap> </td> <td nowrap> </td> </tr> </table></td> </tr> <tr> <td> </td> <td colspan="2"> </td> </tr> <tr> <td> </td> <td colspan="2"><input name="addUser2" type="submit" id="addUser23" value="Add User"></td> </tr> </table> <input type="hidden" name="MM_insert" value="addUser"> </form> <p> </p> <p> </p> <p> </p></td> <!-- InstanceEndEditable --> </tr> </table> </body> <!-- InstanceEnd --></html> --- NEW FILE: admin.php --- <?php include_once("include/globals.php"); ?> <?php auth_check("admin"); ?> <?php $currentPage = $HTTP_SERVER_VARS["PHP_SELF"]; $maxRows_admin = 10; $pageNum_admin = 0; if (isset($HTTP_GET_VARS['pageNum_admin'])) { $pageNum_admin = $HTTP_GET_VARS['pageNum_admin']; } $startRow_admin = $pageNum_admin * $maxRows_admin; mysql_select_db($database_meship, $meship); $query_admin = "SELECT * FROM auth"; $query_limit_admin = sprintf("%s LIMIT %d, %d", $query_admin, $startRow_admin, $maxRows_admin); $admin = mysql_query($query_limit_admin, $meship) or die(mysql_error()); $row_admin = mysql_fetch_assoc($admin); if (isset($HTTP_GET_VARS['totalRows_admin'])) { $totalRows_admin = $HTTP_GET_VARS['totalRows_admin']; } else { $all_admin = mysql_query($query_admin); $totalRows_admin = mysql_num_rows($all_admin); } $totalPages_admin = ceil($totalRows_admin/$maxRows_admin)-1; $queryString_admin = ""; if (!empty($HTTP_SERVER_VARS['QUERY_STRING'])) { $params = explode("&", $HTTP_SERVER_VARS['QUERY_STRING']); $newParams = array(); foreach ($params as $param) { if (stristr($param, "pageNum_admin") == false && stristr($param, "totalRows_admin") == false) { array_push($newParams, $param); } } if (count($newParams) != 0) { $queryString_admin = "&" . implode("&", $newParams); } } $queryString_admin = sprintf("&totalRows_admin=%d%s", $totalRows_admin, $queryString_admin); ?> <html><!-- InstanceBegin template="/Templates/default.dwt.php" codeOutsideHTMLIsLocked="false" --> <head> <!-- InstanceBeginEditable name="doctitle" --> <title>Untitled Document</title> <!-- InstanceEndEditable --> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <link href="css/style.css" rel="stylesheet" type="text/css"> <link rel="SHORTCUT ICON" href="images/mesh-favico.ico"> <!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable --> </head> <body> <table width="100%" border="1" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <tr> <td width="203" bgcolor="#FFFFFF"> <div align="center"><img src="images/mesh-small.gif" width="137" height="86"></div></td> <!-- InstanceBeginEditable name="banner" --> <td width="479" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <h1>User Administation</h1></td> <!-- InstanceEndEditable --> </tr> <tr> <td width="203" valign="top" nowrap bordercolor="#0099FF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Client IP: <?php echo getServerVariable("REMOTE_ADDR"); ?></font></div></td> <td valign="top" nowrap bordercolor="#0099FF" bgcolor="#0099FF"> <div align="right"> <?php if (issetSessionVariable("username")) { ?> <font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Logged in as <strong><?php echo getSessionVariable("username"); ?></strong> <a href="logout.php">[log out] </a></font> <?php } else { ?> <font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Logged in as <strong>nobody</strong> <a href="login.php">[log in]</a></font> <?php } ?> </div> </td> </tr> <tr> <td width="203" valign="top" bgcolor="#FFFFFF"> <div align="center"> <table width="80%" border="0" cellpadding="2" cellspacing="2" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="index.php">Home</a></font></div></td> </tr> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="zones.php">Browse</a></font></div></td> </tr> <?php if (issetSessionVariable("username") && isUserInRole(getSessionVariable("username"), "admin")) { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="admin.php">Administration</a></font></div></td> </tr> <?php } ?> <?php if (issetSessionVariable("username")) { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="logout.php">Logout</a></font></div></td> </tr> <?php } else { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="login.php">Log In</a></font></div></td> </tr> <?php } ?> </table> </div></td> <!-- InstanceBeginEditable name="body" --> <td valign="top" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <BR> <table width="100%" border="1"> <tr> <td width="29%">UserId</td> <td width="61%">User Name</td> <td width="5%">Edit</td> <td width="5%">Delete</td> </tr> <?php do { ?> <tr> <td><?php echo $row_admin['userid']; ?></td> <td><?php echo $row_admin['fullName']; ?></td> <td> <form name="editForm" method="get" action="edituser.php"> <input type="hidden" name="authid" value="<?php echo $row_admin['authid']; ?>"> <input name="mode" type="submit" id="mode" value="Edit"> </form></td> <td><form name="deleteForm" method="get" action="deluser.php"> <input type="hidden" name="authid" value="<?php echo $row_admin['authid']; ?>"> <input name="mode" type="submit" id="mode" value="Delete"> </form></td> </tr> <?php } while ($row_admin = mysql_fetch_assoc($admin)); ?> </table><BR> <table width="100%" border="0"> <tr> <td><a href="<?php printf("%s?pageNum_admin=%d%s", $currentPage, max(0, $pageNum_admin - 1), $queryString_admin); ?>">< Previous 10</a></td> <td><div align="right"><a href="<?php printf("%s?pageNum_admin=%d%s", $currentPage, min($totalPages_admin, $pageNum_admin + 1), $queryString_admin); ?>">> Next 10</a></div></td> </tr> </table> <p><a href="adduser.php">Add New User</a></p></td> <!-- InstanceEndEditable --> </tr> </table> </body> <!-- InstanceEnd --></html> <?php mysql_free_result($admin); ?> --- NEW FILE: deluser.php --- <?php require_once('include/globals.php'); ?> <?php if (getServerVariable("REQUEST_METHOD") == "POST" && getRequestVariable("authid") != "") { $deleteSQL = sprintf("DELETE FROM auth WHERE authid = %s", getRequestVariable("authid")); mysql_select_db($database_meship, $meship); mysql_query($deleteSQL, $meship) or die("'" . $deleteSQL . "'" . "-" . mysql_error()); header("Location: http://" . getServerVariable("HTTP_HOST") . dirname(getServerVariable("PHP_SELF")) . "/admin.php"); die; } if (getServerVariable("REQUEST_METHOD") == "GET" && getRequestVariable("authid") != "") { mysql_select_db($database_meship, $meship); $queryShowUser = sprintf("SELECT * FROM auth WHERE authid = %s", getRequestVariable("authid")); $showUser = mysql_query($queryShowUser, $meship) or die(mysql_error()); $rowShowUser = mysql_fetch_assoc($showUser); } ?> <html><!-- InstanceBegin template="/Templates/default.dwt.php" codeOutsideHTMLIsLocked="false" --> <head> <!-- InstanceBeginEditable name="doctitle" --> <title>Untitled Document</title> <!-- InstanceEndEditable --> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <link href="css/style.css" rel="stylesheet" type="text/css"> <link rel="SHORTCUT ICON" href="images/mesh-favico.ico"> <!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable --> </head> <body> <table width="100%" border="1" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <tr> <td width="203" bgcolor="#FFFFFF"> <div align="center"><img src="images/mesh-small.gif" width="137" height="86"></div></td> <!-- InstanceBeginEditable name="banner" --> <td width="479" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> </td> <!-- InstanceEndEditable --> </tr> <tr> <td width="203" valign="top" nowrap bordercolor="#0099FF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Client IP: <?php echo getServerVariable("REMOTE_ADDR"); ?></font></div></td> <td valign="top" nowrap bordercolor="#0099FF" bgcolor="#0099FF"> <div align="right"> <?php if (issetSessionVariable("username")) { ?> <font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Logged in as <strong><?php echo getSessionVariable("username"); ?></strong> <a href="logout.php">[log out] </a></font> <?php } else { ?> <font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Logged in as <strong>nobody</strong> <a href="login.php">[log in]</a></font> <?php } ?> </div> </td> </tr> <tr> <td width="203" valign="top" bgcolor="#FFFFFF"> <div align="center"> <table width="80%" border="0" cellpadding="2" cellspacing="2" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="index.php">Home</a></font></div></td> </tr> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="zones.php">Browse</a></font></div></td> </tr> <?php if (issetSessionVariable("username") && isUserInRole(getSessionVariable("username"), "admin")) { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="admin.php">Administration</a></font></div></td> </tr> <?php } ?> <?php if (issetSessionVariable("username")) { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="logout.php">Logout</a></font></div></td> </tr> <?php } else { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="login.php">Log In</a></font></div></td> </tr> <?php } ?> </table> </div></td> <!-- InstanceBeginEditable name="body" --> <td valign="top" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <p> </p> <h2>Delete User</h2> <table border="1"> <tr> <td nowrap>Username</td> <td><?php echo $rowShowUser['userid']; ?></td> </tr> <tr> <td nowrap>Full Name</td> <td><?php echo $rowShowUser['fullName']; ?></td> </tr> </table> <p>Is this the user you wish to delete ?</p> <form name="deleteUser" method="post" action="deluser.php"> <input type="submit" name="Submit" value="Submit"> <input type="hidden" name="authid" value="<?php echo $rowShowUser['authid'] ?>"> </form> <p> </p></td> <!-- InstanceEndEditable --> </tr> </table> </body> <!-- InstanceEnd --></html> <?php mysql_free_result($showUser); ?> --- NEW FILE: edituser.php --- <?php require_once('include/globals.php'); ?> <?php $editFormAction = getServerVariable("PHP_SELF"); if ((isset($HTTP_POST_VARS["MM_update"])) && ($HTTP_POST_VARS["MM_update"] == "editUser")) { $updateSQL = sprintf("UPDATE auth SET fullName='%s', userid='%s' WHERE authid=%s", getRequestVariable("fullName"), getRequestVariable("username"), getRequestVariable("authid")); mysql_select_db($database_meship, $meship); mysql_query($updateSQL, $meship) or die(mysql_error()); header("Location: http://" . getServerVariable("HTTP_HOST") . dirname(getServerVariable("PHP_SELF")) . "/admin.php"); } $colname_userEdit = "1"; if (isset($HTTP_GET_VARS['authid'])) { $colname_userEdit = (get_magic_quotes_gpc()) ? $HTTP_GET_VARS['authid'] : addslashes($HTTP_GET_VARS['authid']); } mysql_select_db($database_meship, $meship); $query_userEdit = sprintf("SELECT * FROM auth WHERE authid = %s", $colname_userEdit); $userEdit = mysql_query($query_userEdit, $meship) or die(mysql_error()); $row_userEdit = mysql_fetch_assoc($userEdit); $totalRows_userEdit = mysql_num_rows($userEdit); ?> <?php include_once("include/globals.php"); ?> <html><!-- InstanceBegin template="/Templates/default.dwt.php" codeOutsideHTMLIsLocked="false" --> <head> <!-- InstanceBeginEditable name="doctitle" --> <title>Untitled Document</title> <!-- InstanceEndEditable --> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <link href="css/style.css" rel="stylesheet" type="text/css"> <link rel="SHORTCUT ICON" href="images/mesh-favico.ico"> <!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable --> </head> <body> <table width="100%" border="1" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <tr> <td width="203" bgcolor="#FFFFFF"> <div align="center"><img src="images/mesh-small.gif" width="137" height="86"></div></td> <!-- InstanceBeginEditable name="banner" --> <td width="479" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> </td> <!-- InstanceEndEditable --> </tr> <tr> <td width="203" valign="top" nowrap bordercolor="#0099FF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Client IP: <?php echo getServerVariable("REMOTE_ADDR"); ?></font></div></td> <td valign="top" nowrap bordercolor="#0099FF" bgcolor="#0099FF"> <div align="right"> <?php if (issetSessionVariable("username")) { ?> <font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Logged in as <strong><?php echo getSessionVariable("username"); ?></strong> <a href="logout.php">[log out] </a></font> <?php } else { ?> <font color="#FFFFFF" size="-1" face="Arial, Helvetica, sans-serif">Logged in as <strong>nobody</strong> <a href="login.php">[log in]</a></font> <?php } ?> </div> </td> </tr> <tr> <td width="203" valign="top" bgcolor="#FFFFFF"> <div align="center"> <table width="80%" border="0" cellpadding="2" cellspacing="2" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="index.php">Home</a></font></div></td> </tr> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="zones.php">Browse</a></font></div></td> </tr> <?php if (issetSessionVariable("username") && isUserInRole(getSessionVariable("username"), "admin")) { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="admin.php">Administration</a></font></div></td> </tr> <?php } ?> <?php if (issetSessionVariable("username")) { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="logout.php">Logout</a></font></div></td> </tr> <?php } else { ?> <tr> <td nowrap bordercolor="#FFFFFF" bgcolor="#0099FF"> <div align="center"><font color="#FFFFFF" face="Arial, Helvetica, sans-serif"><a href="login.php">Log In</a></font></div></td> </tr> <?php } ?> </table> </div></td> <!-- InstanceBeginEditable name="body" --> <td valign="top" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> <p> </p> <form action="<?php echo $editFormAction; ?>" method="POST" name="editUser" id="editUser"> <h2>Edit User</h2> <table width="214" height="102" border="1"> <tr> <td nowrap>Username</td> <td> <input value="<?php echo $row_userEdit['userid']; ?>" name="username" type="text" id="username"></td> </tr> <tr> <td nowrap>Full Name</td> <td> <input value="<?php echo $row_userEdit['fullName']; ?>" name="fullName" type="text" id="fullName"></td> </tr> <tr> <td nowrap>Node ID</td> <td> <input name="nodeId" type="text" id="nodeId" size="4"> <font size="-1"> (optional)</font></td> </tr> <tr> <td nowrap>Member ID</td> <td> <input name="memberId" type="text" id="memberId" size="4"> <font size="-1"> (optional)</font> </td> </tr> </table> <p> <input type="hidden" name="authid" value="<?php echo $row_userEdit['authid']; ?>"> <input type="submit" name="Submit" value="Submit"> </p> <input type="hidden" name="MM_update" value="editUser"> </form> <br> <p><br> </p> </td> <!-- InstanceEndEditable --> </tr> </table> </body> <!-- InstanceEnd --></html> <?php mysql_free_result($userEdit); ?> --- NEW FILE: logout.php --- <?php include_once("include/globals.php") ?> <?php unsetSessionVariable("username"); header("Location: http://" . getServerVariable("HTTP_HOST") . dirname(getServerVariable("PHP_SELF")) . "/index.php"); ?> |
