qemudb/preferences.php

<?php
/*******************************/
/* preferences and user editor */
/*******************************/

/*
 * application environment
 */     
include("path.php");
include(BASE."include/"."incl.php");

if(!$_SESSION['current']->isLoggedIn())
{
    errorpage("You must be logged in to edit preferences");
    exit;
}

// we come from the administration to edit an user
if($_SESSION['current']->hasPriv("admin") && 
   is_numeric($_REQUEST['userId']) &&
   is_numeric($_REQUEST['iLimit']) &&
   in_array($_REQUEST['sOrderBy'],array("email","realname","created"))
) 
{
    $oUser = new User($_REQUEST['userId']);
} else
{
    $oUser = &$_SESSION['current'];
}


function build_prefs_list()
{
    global $oUser;
    $result = query_appdb("SELECT * FROM prefs_list ORDER BY id");
    while($result && $r = mysql_fetch_object($result))
        {
            //skip admin options
            //TODO: add a field to prefs_list to flag the user level for the pref
            if(!$_SESSION['current']->hasPriv("admin"))
                {
                    if($r->name == "query:mode")
                        continue;
                    if($r->name == "sidebar")
                        continue;
                    if($r->name == "window:query")
                        continue;
                    if($r->name == "query:hide_header")
                        continue;
                    if($r->name == "query:hide_sidebar")
                        continue;
                    if($r->name == "debug")
                        continue;
                }
                
            $input = html_select("pref_$r->name", explode('|', $r->value_list), 
                                 $oUser->getpref($r->name, $r->def_value));
            echo html_tr(array("&nbsp; $r->description", $input));
        }
}

function show_user_fields()
{
    global $oUser;

    $ext_realname = $oUser->sRealname;
    $ext_email = $oUser->sEmail;
    $CVSrelease = $oUser->sWineRelease;
    if($oUser->hasPriv("admin"))
        $ext_hasadmin = 'checked="true"';
    else
        $ext_hasadmin = "";
    
    include(BASE."include/form_edit.php");

    echo "<tr><td>&nbsp; Wine version </td><td>";
    make_bugzilla_version_list("CVSrelease", $CVSrelease);
    echo "</td></tr>";
}

if($_POST)
{   
    while(list($key, $value) = each($_REQUEST))
        {
            if(!ereg("^pref_(.+)$", $key, $arr))
                continue;
            $oUser->setPref($arr[1], $value);
        }
    
    if ($_REQUEST['ext_password'] == $_REQUEST['ext_password2'])
    {
        $str_passwd = $_REQUEST['ext_password'];
    }
    else if ($_REQUEST['ext_password'])
    {
        addmsg("The Passwords you entered did not match.", "red");
    }
    if ($oUser->update($_REQUEST['ext_email'], $str_passwd, $_REQUEST['ext_realname'], $_REQUEST['CVSrelease']))
    {
        addmsg("Preferences Updated", "green");
        // we were managing an user, let's go back to the admin after updating tha admin status
        if($oUser->iUserId == $_REQUEST['userId'] && $_SESSION['current']->hasPriv("admin"))
        {
            if($_POST['ext_hasadmin']=="on") 
                $oUser->addPriv("admin");
            else 
                $oUser->delPriv("admin");
            redirect(BASE."admin/adminUsers.php?userId=".$oUser->iUserId."&sSearch=".$_REQUEST['sSearch']."&iLimit=".$_REQUEST['iLimit']."&sOrderBy=".$_REQUEST['sOrderBy']."&sSubmit=true");
        }
    }
    else
    {
        addmsg("There was a problem updating your user info", "red");
    }
}

apidb_header("User Preferences");

echo "<form method=\"post\" action=\"preferences.php\">\n";

// if we manage another user we give the parameters to go back to the admin
if($oUser->iUserId == $_REQUEST['userId'])
{
    echo "<input type=\"hidden\" name=\"iLimit\" value=\"".$_REQUEST['iLimit']."\">\n";
    echo "<input type=\"hidden\" name=\"sOrderBy\" value=\"".$_REQUEST['sOrderBy']."\">\n";
    echo "<input type=\"hidden\" name=\"sSearch\" value=\"".addslashes($_REQUEST['sSearch'])."\">\n";
    echo "<input type=\"hidden\" name=\"userId\" value=\"".$_REQUEST['userId']."\">\n";
}

echo html_frame_start("Preferences for ".$oUser->sRealname, "80%");
echo html_table_begin("width='100%' border=0 align=left cellspacing=0 class='box-body'");

show_user_fields();

// if we don't manage another user
if($oUser->iUserId != $_REQUEST['userId']) build_prefs_list();

echo html_table_end();
echo html_frame_end();
echo "<br /> <div align=center> <input type=\"submit\" value=\"Update\" /> </div> <br />\n";
echo "</form>\n";

apidb_footer();
?>
- replaced tons of tabs with spaces - replaced <? with <?php for compatibility sake (see TODO and CODING_STANDARD to know more) - improved overall code lisibility 2004-12-12 03:51:51 +00:00			`<?php`
make it possible to add/remove administrators 2005-01-17 04:30:39 +00:00			`/*******************************/`
			`/* preferences and user editor */`
			`/*******************************/`
Uniform headers 2004-12-25 20:08:00 +00:00
			`/*`
Fix header patch typo 2004-12-27 23:54:55 +00:00			`* application environment`
Uniform headers 2004-12-25 20:08:00 +00:00			`*/`
Initial revision 2004-03-15 16:22:00 +00:00			`include("path.php");`
			`include(BASE."include/"."incl.php");`

- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`if(!$_SESSION['current']->isLoggedIn())`
Initial revision 2004-03-15 16:22:00 +00:00			`{`
			`errorpage("You must be logged in to edit preferences");`
			`exit;`
			`}`

add a user management panel for administrators 2005-01-16 02:04:03 +00:00			`// we come from the administration to edit an user`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`if($_SESSION['current']->hasPriv("admin") &&`
add a user management panel for administrators 2005-01-16 02:04:03 +00:00			`is_numeric($_REQUEST['userId']) &&`
			`is_numeric($_REQUEST['iLimit']) &&`
			`in_array($_REQUEST['sOrderBy'],array("email","realname","created"))`
			`)`
			`{`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`$oUser = new User($_REQUEST['userId']);`
add a user management panel for administrators 2005-01-16 02:04:03 +00:00			`} else`
			`{`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`$oUser = &$_SESSION['current'];`
add a user management panel for administrators 2005-01-16 02:04:03 +00:00			`}`


Initial revision 2004-03-15 16:22:00 +00:00			`function build_prefs_list()`
			`{`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`global $oUser;`
Authors: Jonathan Ernst <Jonathan@ernstfamily.ch>, Paul van Schayck <polleke@gmail.com>, Tony Lambregts <tony_lambregts@telusplanet.net> New preferences fix 2005-01-14 05:28:58 +00:00			`$result = query_appdb("SELECT * FROM prefs_list ORDER BY id");`
			`while($result && $r = mysql_fetch_object($result))`
Integrate APPDB with Bugzilla to use the versions table from Bugzilla. 2004-12-13 03:50:11 +00:00			`{`
			`//skip admin options`
			`//TODO: add a field to prefs_list to flag the user level for the pref`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`if(!$_SESSION['current']->hasPriv("admin"))`
Integrate APPDB with Bugzilla to use the versions table from Bugzilla. 2004-12-13 03:50:11 +00:00			`{`
			`if($r->name == "query:mode")`
			`continue;`
			`if($r->name == "sidebar")`
			`continue;`
			`if($r->name == "window:query")`
			`continue;`
			`if($r->name == "query:hide_header")`
			`continue;`
			`if($r->name == "query:hide_sidebar")`
			`continue;`
			`if($r->name == "debug")`
			`continue;`
			`}`

			`$input = html_select("pref_$r->name", explode('\|', $r->value_list),`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`$oUser->getpref($r->name, $r->def_value));`
Integrate APPDB with Bugzilla to use the versions table from Bugzilla. 2004-12-13 03:50:11 +00:00			`echo html_tr(array("  $r->description", $input));`
			`}`
Initial revision 2004-03-15 16:22:00 +00:00			`}`

			`function show_user_fields()`
			`{`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`global $oUser;`

			`$ext_realname = $oUser->sRealname;`
			`$ext_email = $oUser->sEmail;`
			`$CVSrelease = $oUser->sWineRelease;`
			`if($oUser->hasPriv("admin"))`
			`$ext_hasadmin = 'checked="true"';`
			`else`
			`$ext_hasadmin = "";`

			`include(BASE."include/form_edit.php");`
add a user management panel for administrators 2005-01-16 02:04:03 +00:00
			`echo "<tr><td>  Wine version </td><td>";`
			`make_bugzilla_version_list("CVSrelease", $CVSrelease);`
			`echo "</td></tr>";`
Initial revision 2004-03-15 16:22:00 +00:00			`}`

Check for a submit using $_POST not $_REQUEST 2004-12-18 01:50:58 +00:00			`if($_POST)`
Fixed bugs in preferences.php 2004-12-15 00:10:27 +00:00			`{`
			`while(list($key, $value) = each($_REQUEST))`
Integrate APPDB with Bugzilla to use the versions table from Bugzilla. 2004-12-13 03:50:11 +00:00			`{`
			`if(!ereg("^pref_(.+)$", $key, $arr))`
			`continue;`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`$oUser->setPref($arr[1], $value);`
Integrate APPDB with Bugzilla to use the versions table from Bugzilla. 2004-12-13 03:50:11 +00:00			`}`
Initial revision 2004-03-15 16:22:00 +00:00
Fixed bugs in preferences.php 2004-12-15 00:10:27 +00:00			`if ($_REQUEST['ext_password'] == $_REQUEST['ext_password2'])`
Initial revision 2004-03-15 16:22:00 +00:00			`{`
Fixed bugs in preferences.php 2004-12-15 00:10:27 +00:00			`$str_passwd = $_REQUEST['ext_password'];`
Initial revision 2004-03-15 16:22:00 +00:00			`}`
Fixed bugs in preferences.php 2004-12-15 00:10:27 +00:00			`else if ($_REQUEST['ext_password'])`
Initial revision 2004-03-15 16:22:00 +00:00			`{`
			`addmsg("The Passwords you entered did not match.", "red");`
			`}`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`if ($oUser->update($_REQUEST['ext_email'], $str_passwd, $_REQUEST['ext_realname'], $_REQUEST['CVSrelease']))`
Initial revision 2004-03-15 16:22:00 +00:00			`{`
			`addmsg("Preferences Updated", "green");`
make it possible to add/remove administrators 2005-01-17 04:30:39 +00:00			`// we were managing an user, let's go back to the admin after updating tha admin status`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`if($oUser->iUserId == $_REQUEST['userId'] && $_SESSION['current']->hasPriv("admin"))`
add a user management panel for administrators 2005-01-16 02:04:03 +00:00			`{`
make it possible to add/remove administrators 2005-01-17 04:30:39 +00:00			`if($_POST['ext_hasadmin']=="on")`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`$oUser->addPriv("admin");`
make it possible to add/remove administrators 2005-01-17 04:30:39 +00:00			`else`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`$oUser->delPriv("admin");`
			`redirect(BASE."admin/adminUsers.php?userId=".$oUser->iUserId."&sSearch=".$_REQUEST['sSearch']."&iLimit=".$_REQUEST['iLimit']."&sOrderBy=".$_REQUEST['sOrderBy']."&sSubmit=true");`
add a user management panel for administrators 2005-01-16 02:04:03 +00:00			`}`
Initial revision 2004-03-15 16:22:00 +00:00			`}`
			`else`
			`{`
Fix typos 2006-06-06 18:54:12 +00:00			`addmsg("There was a problem updating your user info", "red");`
Initial revision 2004-03-15 16:22:00 +00:00			`}`
			`}`

			`apidb_header("User Preferences");`

add a user management panel for administrators 2005-01-16 02:04:03 +00:00			`echo "<form method=\"post\" action=\"preferences.php\">\n";`

			`// if we manage another user we give the parameters to go back to the admin`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`if($oUser->iUserId == $_REQUEST['userId'])`
add a user management panel for administrators 2005-01-16 02:04:03 +00:00			`{`
			`echo "<input type=\"hidden\" name=\"iLimit\" value=\"".$_REQUEST['iLimit']."\">\n";`
			`echo "<input type=\"hidden\" name=\"sOrderBy\" value=\"".$_REQUEST['sOrderBy']."\">\n";`
			`echo "<input type=\"hidden\" name=\"sSearch\" value=\"".addslashes($_REQUEST['sSearch'])."\">\n";`
			`echo "<input type=\"hidden\" name=\"userId\" value=\"".$_REQUEST['userId']."\">\n";`
			`}`

- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`echo html_frame_start("Preferences for ".$oUser->sRealname, "80%");`
Initial revision 2004-03-15 16:22:00 +00:00			`echo html_table_begin("width='100%' border=0 align=left cellspacing=0 class='box-body'");`

			`show_user_fields();`
add a user management panel for administrators 2005-01-16 02:04:03 +00:00
			`// if we don't manage another user`
- OO version of user class - no more duplicated functions - improved performances (much less duplicated mysql queries) - less code and better error handling 2005-01-30 23:12:48 +00:00			`if($oUser->iUserId != $_REQUEST['userId']) build_prefs_list();`
Initial revision 2004-03-15 16:22:00 +00:00
			`echo html_table_end();`
			`echo html_frame_end();`
add a user management panel for administrators 2005-01-16 02:04:03 +00:00			`echo "<br /> <div align=center> <input type=\"submit\" value=\"Update\" /> </div> <br />\n";`
Initial revision 2004-03-15 16:22:00 +00:00			`echo "</form>\n";`

			`apidb_footer();`
			`?>`