2018-07-13 18:39:55 +02:00
|
|
|
<?php
|
|
|
|
|
2019-02-10 06:35:15 +01:00
|
|
|
/*
|
|
|
|
* Copyright (c) Codiad & Kent Safranski (codiad.com), distributed
|
|
|
|
* as-is and without warranty under the MIT License. See
|
|
|
|
* [root]/license.txt for more. This information must remain intact.
|
|
|
|
*/
|
|
|
|
require_once('../../common.php');
|
|
|
|
require_once('./class.user.php');
|
|
|
|
$User = new User();
|
|
|
|
//////////////////////////////////////////////////////////////////
|
|
|
|
// Verify Session or Key
|
|
|
|
//////////////////////////////////////////////////////////////////
|
|
|
|
|
|
|
|
checkSession();
|
|
|
|
|
|
|
|
switch($_GET['action']){
|
|
|
|
|
|
|
|
//////////////////////////////////////////////////////////////
|
|
|
|
// List Projects
|
|
|
|
//////////////////////////////////////////////////////////////
|
|
|
|
|
|
|
|
case 'list':
|
|
|
|
|
|
|
|
$projects_assigned = false;
|
|
|
|
|
|
|
|
if( ! checkAccess() ) {
|
|
|
|
|
|
|
|
?>
|
|
|
|
<label><?php i18n("Restricted"); ?></label>
|
|
|
|
<pre><?php i18n("You can not edit the user list"); ?></pre>
|
|
|
|
<button onclick="codiad.modal.unload();return false;"><?php i18n("Close"); ?></button>
|
|
|
|
<?php
|
|
|
|
} else {
|
|
|
|
|
|
|
|
$admin = is_admin();
|
|
|
|
?>
|
|
|
|
<label><?php i18n("User List"); ?></label>
|
|
|
|
<div id="user-list">
|
|
|
|
<table width="100%">
|
|
|
|
<tr>
|
|
|
|
<th width="150"><?php i18n("Username"); ?></th>
|
|
|
|
<th width="85"><?php i18n("Password"); ?></th>
|
|
|
|
<?php
|
|
|
|
|
|
|
|
if( $admin ) {
|
|
|
|
|
|
|
|
?>
|
|
|
|
<th width="70"><?php i18n("Access"); ?></th>
|
|
|
|
<?php
|
|
|
|
}
|
|
|
|
?>
|
|
|
|
<th width="70"><?php i18n("Delete"); ?></th>
|
|
|
|
</tr>
|
|
|
|
</table>
|
|
|
|
<div class="user-wrapper">
|
|
|
|
<table width="100%" style="word-wrap: break-word;word-break: break-all;">
|
|
|
|
<?php
|
|
|
|
|
|
|
|
// Get projects JSON data
|
|
|
|
$users = $User->list_users();
|
|
|
|
foreach( $users as $user => $data ) {
|
|
|
|
?>
|
|
|
|
<tr>
|
|
|
|
<td width="150"><?php echo($data['username']); ?></td>
|
|
|
|
<td width="85"><a onclick="codiad.user.password('<?php echo($data['username']); ?>');" class="icon-flashlight bigger-icon"></a></td>
|
|
|
|
<?php
|
|
|
|
|
|
|
|
if( $admin ) {
|
|
|
|
|
|
|
|
?>
|
|
|
|
<td width="75">
|
|
|
|
<select onchange="codiad.user.update_access( event, '<?php echo( $data['username'] ); ?>' )">
|
|
|
|
<?php
|
|
|
|
foreach( User::ACCESS as $role ) {
|
|
|
|
|
|
|
|
?>
|
|
|
|
<option value="<?php echo $role;?>" <?php if( $data["access"] == $role ) { echo 'selected="selected"'; }?>><?php echo i18n( $role );?></option>
|
|
|
|
<?php
|
|
|
|
}
|
|
|
|
?>
|
|
|
|
</select>
|
|
|
|
</td>
|
|
|
|
<?php
|
|
|
|
}
|
|
|
|
|
|
|
|
if( $_SESSION['user'] == $data['username'] ) {
|
|
|
|
|
|
|
|
?>
|
|
|
|
<td width="75"><a onclick="codiad.message.error('You Cannot Delete Your Own Account');" class="icon-block bigger-icon"></a></td>
|
|
|
|
<?php
|
|
|
|
} else {
|
|
|
|
|
|
|
|
?>
|
|
|
|
<td width="70"><a onclick="codiad.user.delete('<?php echo($data['username']); ?>');" class="icon-cancel-circled bigger-icon"></a></td>
|
|
|
|
<?php
|
|
|
|
}
|
|
|
|
?>
|
|
|
|
</tr>
|
|
|
|
<?php
|
|
|
|
}
|
|
|
|
?>
|
|
|
|
</table>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<button class="btn-left" onclick="codiad.user.createNew();"><?php i18n("New Account"); ?></button>
|
|
|
|
<button class="btn-right" onclick="codiad.modal.unload();return false;"><?php i18n("Close"); ?></button>
|
|
|
|
<?php
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
|
|
|
|
//////////////////////////////////////////////////////////////////////
|
|
|
|
// Create New User
|
|
|
|
//////////////////////////////////////////////////////////////////////
|
|
|
|
|
|
|
|
case 'create':
|
|
|
|
|
|
|
|
?>
|
|
|
|
<form>
|
|
|
|
<label><?php i18n("Username"); ?></label>
|
|
|
|
<input type="text" name="username" autofocus="autofocus" autocomplete="off">
|
|
|
|
<label><?php i18n("Password"); ?></label>
|
|
|
|
<input type="password" name="password1">
|
|
|
|
<label><?php i18n("Confirm Password"); ?></label>
|
|
|
|
<input type="password" name="password2">
|
|
|
|
<button class="btn-left"><?php i18n("Create Account"); ?></button>
|
2018-07-13 18:39:55 +02:00
|
|
|
<button class="btn-right" onclick="codiad.user.list();return false;"><?php i18n("Cancel"); ?></button>
|
2019-02-10 06:35:15 +01:00
|
|
|
<form>
|
|
|
|
<?php
|
|
|
|
break;
|
|
|
|
|
|
|
|
//////////////////////////////////////////////////////////////////////
|
|
|
|
// Delete User
|
|
|
|
//////////////////////////////////////////////////////////////////////
|
|
|
|
|
|
|
|
case 'delete':
|
|
|
|
|
|
|
|
?>
|
|
|
|
<form>
|
|
|
|
<input type="hidden" name="username" value="<?php echo($_GET['username']); ?>">
|
|
|
|
<label><?php i18n("Confirm User Deletion"); ?></label>
|
|
|
|
<pre><?php i18n("Account:"); ?> <?php echo($_GET['username']); ?></pre>
|
|
|
|
<button class="btn-left"><?php i18n("Confirm"); ?></button>
|
2018-07-13 18:39:55 +02:00
|
|
|
<button class="btn-right" onclick="codiad.user.list();return false;"><?php i18n("Cancel"); ?></button>
|
Changed $path to __DIR__ for config location, Updated auto reload variables, Removed unload listener for auto reload, Changed project default to array so that if no projects exist the program does not crash, Updated autosave to use let instead of vars, Fixed capitalization for sideExpanded variable, Added try catch to pdo initialization on install, Added more error checks on install, Removed password function on install query, Changed default settings array, Added loading div to user delete, Updated queries that threw errors when a default value was zero, Added blank username and password check,
2019-02-09 22:14:27 +01:00
|
|
|
<div class="loading"></div>
|
2019-02-10 06:35:15 +01:00
|
|
|
<?php
|
|
|
|
break;
|
|
|
|
|
|
|
|
//////////////////////////////////////////////////////////////////////
|
|
|
|
// Change Password
|
|
|
|
//////////////////////////////////////////////////////////////////////
|
|
|
|
|
|
|
|
case 'password':
|
|
|
|
|
|
|
|
if( $_GET['username'] == 'undefined' ) {
|
|
|
|
|
|
|
|
$username = $_SESSION['user'];
|
|
|
|
} else {
|
|
|
|
$username = $_GET['username'];
|
|
|
|
}
|
|
|
|
|
|
|
|
?>
|
|
|
|
<form>
|
|
|
|
<input type="hidden" name="username" value="<?php echo($username); ?>">
|
|
|
|
<label><?php i18n("New Password"); ?></label>
|
|
|
|
<input type="password" name="password1" autofocus="autofocus">
|
|
|
|
<label><?php i18n("Confirm Password"); ?></label>
|
|
|
|
<input type="password" name="password2">
|
|
|
|
<button class="btn-left"><?php i18n("Change %{username}%'s Password", array("username" => ucfirst($username))) ?></button>
|
2018-07-13 18:39:55 +02:00
|
|
|
<button class="btn-right" onclick="codiad.modal.unload();return false;"><?php i18n("Cancel"); ?></button>
|
2019-02-10 06:35:15 +01:00
|
|
|
<?php
|
|
|
|
break;
|
2018-07-13 18:39:55 +02:00
|
|
|
|
2019-02-10 06:35:15 +01:00
|
|
|
}
|
2018-07-13 18:39:55 +02:00
|
|
|
|
|
|
|
?>
|