Advertisement
Guest User

Untitled

a guest
Aug 13th, 2017
62
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 5.93 KB | None | 0 0
  1. <?php
  2. include ("../scripts/connect_to_mysql.php");
  3.  
  4. $error_msg = '<font color="#FF0000">*IF YOU DO NOT WISH TO CHANGE THE PASSWORD, PLEASE LEAVE THE FIELD BLANK.</font>';
  5.  
  6. $member = $_GET['pid'] ;
  7. $setupquery = "SELECT * FROM members WHERE member_id='$member'";
  8. $userlist = mysqli_query($myconnection, $setupquery) or die (mysqli_error());
  9. $row = mysqli_fetch_array($userlist);
  10. $startalias = $row["alias"];
  11. $startusername = $row["username"];
  12. $startpermissions = $row["permission_level"];
  13.  
  14. if ($_POST['delete'] == true)
  15. {
  16.     $member = mysqli_real_escape_string($myconnection,$_POST['pid']);
  17.     $query = "DELETE FROM members WHERE member_id='$member'";
  18.                     $register = mysqli_query($myconnection, $query);
  19.                     if ($register) { header("LOCATION: indexnew.php"); exit; }
  20.    
  21.    
  22. }
  23.  
  24. if (isset($_POST['save']))
  25. {
  26.     $member = mysqli_real_escape_string($myconnection,$_POST['pid']);
  27.     //grab data from fields
  28.     $alias = mysqli_real_escape_string($myconnection,$_POST['alias']);
  29.     $username = mysqli_real_escape_string($myconnection,$_POST['username']);
  30.     $password = mysqli_real_escape_string($myconnection,$_POST['password']);
  31.     $permissions = mysqli_real_escape_string($myconnection,$_POST['permissions']);
  32.     $date = mysqli_real_escape_string($myconnection,date('F j, Y, g:i a'));
  33.    
  34.    
  35.     if ($alias && $username && $password && $permissions)
  36.     {
  37.         if(strlen($alias)>25 || strlen($username)>25)
  38.         {
  39.             $error_msg = '<font color="#FF0000">*Alias and username cannot contain more than 25 characters.</font>';
  40.            
  41.         }
  42.         else
  43.         {
  44.             if(strlen($password)>25 || strlen($password)<6)
  45.             {
  46.                 $error_msg = '<font color="#FF0000">*A password must contain between 6 and 25 characters.</font>';
  47.             }
  48.             else
  49.             {
  50.                 if($permissions == "High" || $permissions == "Medium" || $permissions == "Low")
  51.                 {
  52.                     $encrypted_password = md5($password);
  53.                     $query = "UPDATE members SET alias='$alias', username='$username', password='$encrypted_password', permission_level='$permissions', date_updated='$date' WHERE member_id='$member'";
  54.                     $register = mysqli_query($myconnection, $query);
  55.                     if ($register) { header("LOCATION: indexnew.php"); exit; }
  56.                    
  57.                 }
  58.                 else
  59.                 {
  60.                     $error_msg = '<font color="#FF0000">*Permission level must be of one of the preset values.</font>';
  61.                 }
  62.                
  63.             }
  64.         }  
  65.        
  66.     }
  67.     else if($alias && $username && $permissions && empty($password))
  68.     {
  69.         if(strlen($alias)>25 || strlen($username)>25)
  70.         {
  71.             $error_msg = '<font color="#FF0000">*Alias and username cannot contain more than 25 characters.</font>';
  72.            
  73.         }
  74.         else
  75.         {
  76.             if($permissions == "High" || $permissions == "Medium" || $permissions == "Low")
  77.                 {
  78.                     $encrypted_password = md5($password);
  79.                     $query = "UPDATE members SET alias='$alias', username='$username', permission_level='$permissions', date_updated='$date' WHERE member_id='$member'";
  80.                     $register = mysqli_query($myconnection, $query);
  81.                     if ($register) { header("LOCATION: indexnew.php"); exit; }
  82.                    
  83.                 }
  84.                 else
  85.                 {
  86.                     $error_msg = '<font color="#FF0000">*Permission level must be of one of the preset values.</font>';
  87.                 }
  88.                
  89.            
  90.         }
  91.     }
  92.     else
  93.     {
  94.         $error_msg = '<font color="#FF0000">*Please fill in all required fields.</font>';
  95.     }  
  96. }
  97. include ("adminheader.php");
  98. ?>
  99.  
  100. <div id="block_content_full">
  101.              <div class="large-content-top">
  102.              <h4>EDIT USER</h4>
  103.              <h5>Edit User Details...</h5>
  104.              </div> <!--end large content top-->
  105.              <div class="large-content-middle">
  106.   <p>
  107. <form method="post" action="<?php echo htmlentities($_SERVER['PHP_SELF']); ?>">
  108. <fieldset>
  109. <legend>Edit User</legend>
  110.     <p>
  111.     <input name="pid" type="hidden" value="<?php echo $_GET['pid']; ?>" />
  112.     <span class="label">
  113.         <label for="alias">Alias:</label>
  114.         </span>
  115.     <input type="text" id="alias" name="alias" value="<?php echo $startalias; ?>" maxlength="25" />
  116.     </p>
  117.     <p>
  118.     <span class="label">
  119.         <label for="username">Username:</label>
  120.         </span>
  121.     <input type="text" id="username" name="username" value="<?php echo $startusername; ?>" maxlength="25" />
  122.     </p>
  123.     <p>
  124.     <span class="label">
  125.         <label for="password">Password:</label>
  126.         </span>
  127.     <input type="password" id="password" name="password" maxlength="25" />
  128.     </p>
  129.      <p>
  130.     <span class="label">
  131.         <label for="permissions">Permission Level:</label>
  132.         </span>
  133.     <select id="permissions" name="permissions">
  134.     <?php if ($startpermissions == "Low")
  135.     {
  136.         echo '
  137.  <option value="Low">Low</option>
  138.  <option value="Medium">Medium</option>
  139.  <option value="High">High</option> ';
  140.     }
  141.     else if ($startpermissions == "Medium")
  142.     { echo'    
  143.  <option value="Medium">Medium</option>
  144.  <option value="Low">Low</option>
  145.  <option value="High">High</option>';
  146.     }
  147.     else
  148.     {  echo '
  149.     <option value="High">High</option>
  150.  <option value="Low">Low</option>
  151.  <option value="Medium">Medium</option>';  
  152.     }?>
  153. </select>
  154.     </p>
  155. </fieldset><br/>
  156.   <?php if(!empty($error_msg)): echo $error_msg; endif; ?><br /><br />
  157.  <span class="center">
  158.  <input type="button" name="cancel" value="Cancel" onclick="if(confirm('Are you sure want to cancel?')){ document.location.href = 'indexnew.php'; } " />
  159.  <input type="submit" name="save" value="Update User">
  160.  <input type="button" class="delete" name="delete" value="Delete User" onClick="window.location.href='edit_user.php?pid=<?php echo $member; ?>&delete=true'" />
  161.  </span>
  162. </form>
  163.      </p>
  164. </div> <!--end large content middle-->
  165.    <div class="large-content-bottom">
  166.    </div> <!--end large content bottom-->
  167.              </div>  <!--end content-->
  168.  
  169. <script type="text/javascript">
  170.         $(document).ready(function() {
  171.             $('.delete').click(function(){
  172.               var answer = confirm('Are you sure you wish to delete this user?');
  173.               return answer // answer is a boolean
  174.             });
  175.         });
  176.     </script>
  177.  
  178.  
  179.  
  180.  
  181.  
  182. <?php include("adminfooter.php");?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement