'; ?> Edit Filtered User var myPW = '".$myPW."';"; ?> alert('Username must be unique!');"; } else{ $sql = "Insert INTO mb_user (mb_user_name, mb_user_password, mb_user_owner, mb_user_description, "; $sql .= "mb_user_email, mb_user_phone, mb_user_department, mb_user_resolution) VALUES "; $sql.= "($1,$2,$3,$4,$5,$6,$7,$8)"; $tmpPW = md5($password); $v = array($name,$tmpPW,$owner_id,$description,$email,$phone,$department,$resolution); $t = array('s','s','i','s','s','s','s','i'); $res = db_prep_query($sql,$v,$t); $selected_user = db_insert_id($res,"mb_user","mb_user_id"); } } #update if($action == 'update'){ $sql = "SELECT mb_user_id FROM mb_user WHERE mb_user_name = $1 AND mb_user_id <> $2"; $v = array($name,$selected_user); $t = array('s','i'); $res = db_prep_query($sql,$v,$t); if(db_fetch_row($res)){ echo ""; } else{ $sql = "UPDATE mb_user SET mb_user_name = $1"; $sql.=", mb_user_description = $2"; $sql.=", mb_user_login_count = $3"; $sql.=", mb_user_email = $4"; $sql.=", mb_user_phone = $5"; $sql.=", mb_user_department = $6"; $sql.=", mb_user_resolution = $7"; $sql.=" where mb_user_id = $8"; $v = array($name,$description,$login_count,$email,$phone,$department,$resolution,$selected_user); $t = array('s','s','i','s','s','s','i','i'); $res = db_prep_query($sql,$v,$t); if($password != ''){ $sql = "UPDATE mb_user SET mb_user_password = $1 WHERE mb_user_name = $2"; $v = array(md5($password), $name); $t = array('s','s'); $res = db_prep_query($sql,$v,$t); if($password && $res){ echo ""; } } } } if (!isset($name) || $selected_user == 'new'){ $name = ""; $password = ""; $owner_id = $_SESSION["mb_user_id"]; $owner_name = $_SESSION["mb_user_name"]; $description = ""; $login_count = 0; $email = ""; $phone = ""; $department = ""; $resolution = 72; } /*HTML*****************************************************************************************************/ echo "
"; echo ""; #User echo ""; echo ""; echo ""; echo ""; if(isset($selected_user) && $selected_user != 0){ $sql = "SELECT * FROM mb_user WHERE mb_user_id = $1 ORDER BY mb_user_name "; $v = array($selected_user); $t = array('i'); $res = db_prep_query($sql,$v,$t); if($row = db_fetch_array($res)){ $name = $row["mb_user_name"]; $password = $row["mb_user_password"]; $owner_id = $row["mb_user_owner"]; $description = $row["mb_user_description"]; $login_count = $row["mb_user_login_count"]; $email = $row["mb_user_email"]; $phone = $row["mb_user_phone"]; $department = $row["mb_user_department"]; $resolution = $row["mb_user_resolution"]; } $sql = "SELECT mb_user_name FROM mb_user WHERE mb_user_id = $1"; $v = array($owner_id); $t = array('i'); $res = db_prep_query($sql,$v,$t); if($row = db_fetch_array($res)){ $owner_name = $row["mb_user_name"]; } } #name echo ""; echo ""; echo ""; echo ""; #password echo ""; echo ""; echo ""; echo ""; #confirm password echo ""; echo ""; echo ""; echo ""; #owner echo ""; echo ""; echo ""; echo ""; #description echo ""; echo ""; echo ""; echo ""; #login_count echo ""; echo ""; echo ""; echo ""; #email echo ""; echo ""; echo ""; echo ""; #phone echo ""; echo ""; echo ""; echo ""; #department echo ""; echo ""; echo ""; echo ""; echo"
"; echo "User: "; echo ""; echo ""; echo "
"; echo "
Name:"; echo ""; echo "
Password: "; echo ""; echo "
Confirm password: "; echo ""; echo "
Owner: "; echo ""; echo ""; echo "
Description: "; echo ""; echo "
Login_count: "; echo ""; echo "
Email: "; echo ""; echo "
Phone: "; echo ""; echo "
Department: "; echo ""; echo "
"; #resolution #echo ""; # echo "Resolution: "; # echo ""; echo ""; # echo ""; #echo ""; if($selected_user == 'new' || !isset($selected_user)){ echo ""; } if($_SESSION["mb_user_id"] == $owner_id && $selected_user != 'new' && $selected_user != '' ){ echo ""; echo ""; } ?>