'; ?>
Edit User Settings
var myPW = '".$myPW."';"; ?>
"; die(); } #save if($action == 'save'){ $sql = "SELECT mb_user_id FROM mb_user WHERE mb_user_name = $1 "; $v = array($name); $t = array('s'); $res = db_prep_query($sql,$v,$t); if(db_fetch_row($res)){ echo ""; } else{ $sql = "Insert INTO mb_user (mb_user_name, mb_user_password,mb_user_owner, mb_user_description,"; $sql .= " mb_user_email, mb_user_phone, mb_user_department, mb_user_resolution) VALUES "; $sql.= "($1, $2, $3, $4, $5, $6, $7, $8)"; $v = array($name,md5($passw),$owner_id,$description,$email,$phone,$department,$resolution); $t = array('s','s','i','s','s','s','s','i'); $res = db_prep_query($sql,$t,$v); $selected_user = db_insert_id(); } } #update if($action == 'update'){ $sql = "SELECT mb_user_id FROM mb_user WHERE mb_user_name = $1 AND mb_user_id <> $2"; $v = array($name,$selected_user); $t = array('s','i'); $res = db_prep_query($sql,$v,$t); if(db_fetch_row($res)){ echo ""; } else{ if($passw == ""){ $sql = "SELECT mb_user_password FROM mb_user WHERE mb_user_name = $1 AND mb_user_id = $2"; $v = array($name,$selected_user); $t = array('s','i'); $res = db_prep_query($sql,$v,$t); if($row = db_fetch_row($res)){ $p = $row["mb_user_password"]; } } else{ $p = md5($passw); $password = true; } $sql = "UPDATE mb_user SET mb_user_name = $1"; $sql .= ", mb_user_password = $2"; $sql .=", mb_user_description = $3"; $sql .=", mb_user_login_count = $4"; $sql .=", mb_user_email = $5"; $sql .=", mb_user_phone = $6"; $sql .=", mb_user_department = $7"; $sql .=", mb_user_resolution = $8"; $sql .=" where mb_user_id = $9"; $v = array($name,$p,$description,$login_count,$email,$phone,$department,$resolution,$selected_user); $t = array('s','s','s','i','s','s','s','i','i'); $res = db_prep_query($sql,$v,$t); if($password && $res){ echo ""; } } } if (!isset($name) || $selected_user == 'new'){ $name = ""; $password = ""; $owner_id = $_SESSION["mb_user_id"]; $owner_name = $_SESSION["mb_user_name"]; $description = ""; $login_count = 0; $email = ""; $phone = ""; $department = ""; $resolution = 72; } $selected_user = $_SESSION["mb_user_id"]; /*HTML*****************************************************************************************************/ echo "
"; echo "
"; echo "
"; if(isset($selected_user) && $selected_user != 0){ $sql = "SELECT * FROM mb_user WHERE mb_user_id = $1"; $v = array($_SESSION["mb_user_id"]); $t = array('i'); $res = db_prep_query($sql,$v,$t); if($row = db_fetch_array($res)){ $name = $row["mb_user_name"]; $password = $row["mb_user_password"]; $owner_id = $row["mb_user_owner"]; $description = $row["mb_user_description"]; $login_count = $row["mb_user_login_count"]; $email = $row["mb_user_email"]; $phone = $row["mb_user_phone"]; $department = $row["mb_user_department"]; $resolution = $row["mb_user_resolution"]; $owner_id = $_SESSION["mb_user_id"]; $edit = true; } else { $edit = false; echo "You're not allowed to change the settings!"; } } if ($edit) { #name echo "
"; echo "
Name:
"; echo "
"; echo "
"; echo "
"; echo "
"; #password echo "
"; echo "
Password:
"; echo "
"; echo "
"; echo "
"; echo "
"; #confirm password echo "
"; echo "
Confirm password:
"; echo "
"; echo "
"; echo "
"; echo "
"; #owner echo "
"; echo "
Owner:
"; echo "
"; echo "
"; echo "
"; echo "
"; echo "
"; #description echo "
"; echo "
Description:
"; echo "
"; echo "
"; echo "
"; echo "
"; #login_count echo "
"; echo "
Login_count:
"; echo "
"; echo "
"; echo "
"; echo "
"; #email echo "
"; echo "
Email:
"; echo "
"; echo "
"; echo "
"; echo "
"; #phone echo "
"; echo "
Phone:
"; echo "
"; echo "
"; echo "
"; echo "
"; #department echo "
"; echo "
Department:
"; echo "
"; echo "
"; echo "
"; echo "
"; #resolution echo "
"; echo "
Resolution:
"; echo "
"; echo "
"; echo "
"; echo "
"; echo"
"; if($selected_user == 'new' || !isset($selected_user)){ echo "
"; } if($_SESSION["mb_user_id"] == $owner_id && $selected_user != '' ){ echo "
"; echo "
"; } } ?>