isLoggedIn()) { header ("location: ../login.php"); exit (); } //variables needed globably in this file. $tablename="$cfg_tableprefix".'users'; $field_names=null; $field_data=null; $id=-1; //checks to see if action is delete and an ID is specified. (only delete uses $_GET.) if(isset($_GET['action']) and isset($_GET['id'])) { $action=$_GET['action']; $id=$_GET['id']; } //checks to make sure data is comming from form ($action is either delete or update) elseif(isset($_POST['first_name']) and isset($_POST['last_name']) and isset($_POST['username']) and isset($_POST['password']) and isset($_POST['cpassword']) and isset($_POST['type']) and isset($_POST['id']) and isset($_POST['action']) ) { $action=$_POST['action']; $id = $_POST['id']; //gets variables entered by user. $first_name = $_POST['first_name']; $last_name = $_POST['last_name']; $username = $_POST['username']; $password = $_POST['password']; $cpassword = $_POST['cpassword']; $type = $_POST['type']; //insure all fields are filled in. if($first_name=='' or $last_name=='' or $username=='' or $password=='' or $cpassword=='' or $type=='') { echo "$lang->forgottenFields"; exit(); } elseif($password!=$cpassword) { echo "$lang->passwordsDoNotMatch"; exit(); } elseif($action=='insert') { //encrypts password for new user and creates arrays to be used later. $password=md5($password); $field_names=array('first_name','last_name','username','password','type'); $field_data=array("$first_name","$last_name","$username","$password","$type"); } elseif($password=="*notchanged*") { /* Does NOT encrypt password because user did not change their password, but other info might have changed and needs to be updated. Info stored in arrays. */ $field_names=array('first_name','last_name','username','type'); $field_data=array("$first_name","$last_name","$username","$type"); } else { /* user did change password and the new password is encrypted. Stores info in arrays */ $password=md5($password); $field_names=array('first_name','last_name','username','password','type'); $field_data=array("$first_name","$last_name","$username","$password","$type"); } } else { //outputs error message because user did not use form to fill out data. echo "$lang->mustUseForm"; exit(); } switch ($action) { //finds out what action needs to be taken and preforms it by calling methods from dbf class. case $action=="insert": $dbf->insert($field_names,$field_data,$tablename,true); break; case $action=="update": $dbf->update($field_names,$field_data,$tablename,$id,true); break; case $action=="delete": $dbf->deleteRow($tablename,$id); break; default: echo "$lang->noActionSpecified"; break; } $dbf->closeDBlink(); ?>
manageUsers"; ?>-->
createUser"; ?>-->