[Openfirst-cvscommit] members/admin editmember.php,1.5,1.6

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Update of /cvsroot/openfirst/members/admin
In directory sc8-pr-cvs1:/tmp/cvs-serv18581

Modified Files:
	editmember.php 
Log Message:
Error was generated when admin does not pass a user value through the querystring. I added a check query feature before running script. This is in reference to bug #3. Description: Undefined index:  user in /home/openfirst/feds201/members/admin/editmember.php on line 76

Index: editmember.php
===================================================================
RCS file: /cvsroot/openfirst/members/admin/editmember.php,v
retrieving revision 1.5
retrieving revision 1.6
diff -C2 -d -r1.5 -r1.6
*** editmember.php	27 Dec 2003 20:02:13 -0000	1.5
--- editmember.php	29 Dec 2003 16:10:17 -0000	1.6
***************
*** 30,37 ****
  
    // Check if user is an admin then allow processes
!   if(! isset($user->user) || $user->membertype != "administrator"){
      showlogin();
      die(include_once($footer));
    }
  
      if (isset($_POST["firstname"]) == true) {
--- 30,43 ----
  
    // Check if user is an admin then allow processes
!   if (! isset($user->user) || $user->membertype != "administrator") {
      showlogin();
      die(include_once($footer));
    }
+   
+   // Check if user has entered a user to edit
+   if (! isset($_GET['user'])){
+     echo "<br><br>You must select a user from the member list to edit! [ <a href='index.php'>Member List</a> ]<br><br>";
+ 	die("$footer");
+   }
  
      if (isset($_POST["firstname"]) == true) {
***************
*** 95,99 ****
      <tr>
        <th>Last Name</th>
!       <td><input type='text' name='lastname' value='<?php echo$edituser->lastname; ?>' /></td>
      </tr>
      <tr>
--- 101,105 ----
      <tr>
        <th>Last Name</th>
!       <td><input type='text' name='lastname' value='<?php echo $edituser->lastname; ?>' /></td>
      </tr>
      <tr>
***************
*** 105,110 ****
        <td> Existing: <br>
          <select name='division'>
!           <?php
!       $div = ofirst_dbquery("SELECT division FROM ofirst_divisions;");
       while($d = ofirst_dbfetch_object($div)) {
         echo("<option value='$d->division'"); 
--- 111,116 ----
        <td> Existing: <br>
          <select name='division'>
! <?php
!      $div = ofirst_dbquery("SELECT division FROM ofirst_divisions;");
       while($d = ofirst_dbfetch_object($div)) {
         echo("<option value='$d->division'");