Просмотр файла panel/users.php

Размер файла: 4.81Kb
<?php
// by mides, 1da.su

require_once '../system/sys.php';
require_once '../system/auth_a.php';
require_once '../system/header.php';

if ($u['access'] < 3) {
	header('location: ./');
	exit;
}

switch ($act) {
	default:
		tp('Пользователи');
		note();
		$total = mysql_result(mysql_query("SELECT COUNT(`id`) FROM `users`"), 0);
		
		$pages = ceil($total / $config['onpage']);
		if ($page > $pages or $page == 0) {
			$page = 1;
		}
		$begin = ($page - 1) * $config['onpage'];
		
		$users_r = mysql_query("SELECT `id`, `karma` FROM `users` ORDER BY `karma` DESC LIMIT $begin, $config[onpage]");
		while ($user = mysql_fetch_assoc($users_r)) {
			echo '<a href="../profile.php?id='.$user['id'].'">'.login($user['id']).'</a> (<a href="?act=edit&amp;id='.$user['id'].'">ред</a>/<a href="?act=del&amp;id='.$user['id'].'">уд</a>)<br />';
		}
		navig($page, '?', $pages);
		nav('./');
	break;
	
	case 'edit':
		$user = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '$id'"));
		if ($user['id']) {
			if (isset($_GET['ok'])) {
				$email = check($_POST['email']);
				$access = intval($_REQUEST['access']);
				switch ($access) {
					default: $access = $user['access']; break;
					case '1': $access = 1; break;
					case '2': $access = 2; break;
					case '3': $access = 3; break;
					case '4': $access = 0; break;
				}
				$icq = intval($_POST['icq']);
				$skype = check($_POST['skype']);
				$name = check($_POST['name']);
				$sex = intval($_POST['sex']);
				$from = check($_POST['from']);
				$birthday = check($_POST['birthday']);
				$site = check($_POST['site']);
				$about = check($_POST['about']);
				mysql_query("UPDATE `users` SET `email` = '$email', `access` = '$access', `icq` = '$icq', `skype` = '$skype', `name` = '$name', `sex` = '$sex', `from` = '$from', `birthday` = '$birthday', `site` = '$site', `about` = '$about' WHERE `id` = '$id'");
				header('location: ?act=edit&id='.$id);
			} else {
				tp('Ред-ть профиль');
				echo '<form action="?act=edit&amp;id='.$id.'&amp;ok=1" method="post">
				<u>'.access2($user['id']).' </u>
				<select name="access">
				<option value="0">Не изменять</option>
				<option value="4">Пользователь</option>
				<option value="1">Куратор</option>
				<option value="2">Модератор</option>
				<option value="3">Администратор</option>
				</select><br />
				E-mail(max50):<br /><input name="email" type="text" maxlength="50" value="'.$user['email'].'" /><br />
				ICQ(max9):<br /><input name="icq" type="text" maxlength="9" value="'.$user['icq'].'" /><br />
				Skype(max32):<br /><input name="skype" type="text" maxlength="32" value="'.$user['skype'].'" /><br />
				Имя(max20):<br /><input name="name" type="text" maxlength="20" value="'.$user['name'].'" /><br />
				Пол: ';
				switch ($user['sex']) {
					case '1': echo 'муж<input name="sex" type="radio" value="1" checked /> <input name="sex" type="radio" value="2" />жен'; break;
					case '2': echo 'муж<input name="sex" type="radio" value="1" /> <input name="sex" type="radio" value="2" checked />жен'; break;
					default: echo 'муж<input name="sex" type="radio" value="1" /> <input name="sex" type="radio" value="2" />жен'; break;
				}
				echo '<br />
				Откуда(max25):<br /><input name="from" type="text" maxlength="25" value="'.$user['from'].'" /><br />
				Дата рождения (дд.мм.гггг):<br /><input name="birthday" type="text" maxlength="25" value="'.$user['birthday'].'" /><br />
				Wap-сайт(<del>http://</del>, max20):<br /><input name="site" type="text" maxlength="20" value="'.$user['site'].'" /><br />
				О себе(max250):<br /><textarea name="about" cols="" rows="3">'.$user['about'].'</textarea><br />
				<input name="submit" type="submit" value="Ok" />
				</form>';
				nav('?');
			}
		} else {
			error('Пользователь не существует.');
			nav('?');
		}
	break;
	
	case 'del':
		if ($id != 1) {
			if (isset($_GET['ok'])) {
				mysql_query("DELETE FROM `voting` WHERE `type` = 'profile' and `id_for` = '$id'");
				mysql_query("DELETE FROM `users` WHERE `id` = '$id'");
				$_SESSION['note'] = 'Удален.';
				redirect('?');
			} else {
				tp('Подтвердите');
				echo 'Вы действительно хотите удалить пользователя '.login($id).'?
				<form action="?act=del&amp;id='.$id.'&amp;ok=1" method="post">
				<input name="submit" type="submit" value="Да" />
				</form>';
				nav('?');
			}
		} else {
			$_SESSION['note'] = 'Нельзя удалить администратора-создателя.';
			redirect('?');
		}
	break;
	
	
	
	
	
	
	
	
	
	
	
	
	
	
	
	
	
	
	
	
	
	
}

require_once '../system/tail_p.php';
?>