diff --git a/wp-admin/user-edit.php b/wp-admin/user-edit.php new file mode 100644 index 000000000..254382f03 --- /dev/null +++ b/wp-admin/user-edit.php @@ -0,0 +1,209 @@ +user_level >= $user_level) die( __('You do not have permission to edit this user.') ); + +/* checking the nickname has been typed */ +if (empty($_POST["new_nickname"])) { + die (__("ERROR: please enter your nickname (can be the same as your login)")); + return false; +} + +if ($_POST['pass1'] == '') { + if ($_POST['pass2'] != '') + die (__("ERROR: you typed your new password only once. Go back to type it twice.")); + $updatepassword = ''; +} else { + if ($_POST['pass2'] == "") + die (__("ERROR: you typed your new password only once. Go back to type it twice.")); + if ($_POST['pass1'] != $_POST['pass2']) + die (__("ERROR: you typed two different passwords. Go back to correct that.")); + $new_pass = $_POST["pass1"]; + $updatepassword = "user_pass=MD5('$new_pass'), "; +} + +$new_user_login = $_POST['new_user_login']; +$new_firstname = $_POST['new_firstname']; +$new_lastname = $_POST['new_lastname']; +$new_nickname = $_POST['new_nickname']; +$new_nicename = sanitize_title($new_nickname); +$new_icq = $_POST['new_icq']; +$new_aim = $_POST['new_aim']; +$new_msn = $_POST['new_msn']; +$new_yim = $_POST['new_yim']; +$new_email = $_POST['new_email']; +$new_url = $_POST['new_url']; +$new_url = preg_match('/^(https?|ftps?|mailto|news|gopher):/is', $new_url) ? $new_url : 'http://' . $new_url; +$new_idmode = $_POST['new_idmode']; +$new_description = $_POST['user_description']; + +$result = $wpdb->query("UPDATE $wpdb->users SET user_login = '$new_user_login', user_firstname = '$new_firstname', $updatepassword user_lastname='$new_lastname', user_nickname='$new_nickname', user_icq='$new_icq', user_email='$new_email', user_url='$new_url', user_aim='$new_aim', user_msn='$new_msn', user_yim='$new_yim', user_idmode='$new_idmode', user_description = '$user_description', user_nicename = '$new_nicename' WHERE ID = $user_id"); + +header("Location: user-edit.php?user_id=$user_id&updated=true"); + +break; + +case 'switchposts': + +$standalone = 1; +require_once('admin-header.php'); + +check_admin_referer(); + +/* TODO: Switch all posts from one user to another user */ + +break; + +default: + +$standalone = 0; +include ('admin-header.php'); + +$edituser = get_userdata($user_id); + +if ($edituser->user_level >= $user_level) die( __('You do not have permission to edit this user.') ); +?> +
+ + ++