codiad/components/user/dialog.php

<?php

/*
*  Copyright (c) Codiad & Kent Safranski (codiad.com), distributed
*  as-is and without warranty under the MIT License. See
*  [root]/license.txt for more. This information must remain intact.
*/
require_once('../../common.php');
require_once('./class.user.php');
$User = new User();
//////////////////////////////////////////////////////////////////
// Verify Session or Key
//////////////////////////////////////////////////////////////////

checkSession();

switch($_GET['action']){
	
	//////////////////////////////////////////////////////////////
	// List Projects
	//////////////////////////////////////////////////////////////
	
	case 'list':
		
		$projects_assigned = false;
		
		if( ! checkAccess() ) {
			
			?>
			<label><?php i18n("Restricted"); ?></label>
			<pre><?php i18n("You can not edit the user list"); ?></pre>
			<button onclick="codiad.modal.unload();return false;"><?php i18n("Close"); ?></button>
			<?php
		} else {
			
			$admin = is_admin();
			?>
			<label><?php i18n("User List"); ?></label>
			<div id="user-list">
				<table width="100%">
					<tr>
						<th width="150"><?php i18n("Username"); ?></th>
						<th width="85"><?php i18n("Password"); ?></th>
						<?php
							
						if( $admin ) {
							
							?>
							<th width="70"><?php i18n("Access"); ?></th>
							<?php
						}
						?>
						<th width="70"><?php i18n("Delete"); ?></th>
					</tr>
				</table>
				<div class="user-wrapper">
					<table width="100%" style="word-wrap: break-word;word-break: break-all;">
					<?php
					
					// Get projects JSON data
					$users = $User->list_users();
					foreach( $users as $user => $data ) {
						?>
						<tr>
							<td width="150"><?php echo($data['username']); ?></td>
							<td width="85"><a onclick="codiad.user.password('<?php echo($data['username']); ?>');" class="icon-flashlight bigger-icon"></a></td>
							<?php
							
						if( $admin ) {
							
							?>
							<td width="75">
								<select onchange="codiad.user.update_access( event, '<?php echo( $data['username'] ); ?>' )">
								<?php
								foreach( Permissions::SYSTEM_LEVELS as $role => $id ) {
									
									?>
									<option value="<?php echo $id;?>" <?php if( $data["access"] == $id ) { echo 'selected="selected"'; }?>><?php echo i18n( $role );?></option>
									<?php
								}
								?>
								</select>
							</td>
							<?php
						}
						
						if( $_SESSION['user'] == $data['username'] ) {
							
							?>
							<td width="75"><a onclick="codiad.message.error('You Cannot Delete Your Own Account');" class="icon-block bigger-icon"></a></td>
							<?php
						} else {
							
							?>
							<td width="70"><a onclick="codiad.user.delete('<?php echo($data['username']); ?>');" class="icon-cancel-circled bigger-icon"></a></td>
							<?php
						}
						?>
						</tr>
						<?php
					}
					?>
					</table>
				</div>
			</div>
			<button class="btn-left" onclick="codiad.user.createNew();"><?php i18n("New Account"); ?></button>
			<button class="btn-right" onclick="codiad.modal.unload();return false;"><?php i18n("Close"); ?></button>
			<?php
		}
	break;
	
	//////////////////////////////////////////////////////////////////////
	// Create New User
	//////////////////////////////////////////////////////////////////////
	
	case 'create':
		
		?>
		<form>
			<label><?php i18n("Username"); ?></label>
			<input type="text" name="username" autofocus="autofocus" autocomplete="off">
			<label><?php i18n("Password"); ?></label>
			<input type="password" name="password1">
			<label><?php i18n("Confirm Password"); ?></label>
			<input type="password" name="password2">
			<button class="btn-left"><?php i18n("Create Account"); ?></button>
			<button class="btn-right" onclick="codiad.user.list();return false;"><?php i18n("Cancel"); ?></button>
		<form>
		<?php
	break;
	
	//////////////////////////////////////////////////////////////////////
	// Delete User
	//////////////////////////////////////////////////////////////////////
	
	case 'delete':
		
		?>
		<form>
			<input type="hidden" name="username" value="<?php echo($_GET['username']); ?>">
			<label><?php i18n("Confirm User Deletion"); ?></label>
			<pre><?php i18n("Account:"); ?> <?php echo($_GET['username']); ?></pre>
			<button class="btn-left"><?php i18n("Confirm"); ?></button>
			<button class="btn-right" onclick="codiad.user.list();return false;"><?php i18n("Cancel"); ?></button>
			<div class="loading"></div>
		<?php
	break;
	
	//////////////////////////////////////////////////////////////////////
	// Change Password
	//////////////////////////////////////////////////////////////////////
	
	case 'password':
		
		if( $_GET['username'] == 'undefined' ) {
			
			$username = $_SESSION['user'];
		} else {
			$username = $_GET['username'];
		}
		
		?>
		<form>
			<input type="hidden" name="username" value="<?php echo($username); ?>">
			<label><?php i18n("New Password"); ?></label>
			<input type="password" name="password1" autofocus="autofocus">
			<label><?php i18n("Confirm Password"); ?></label>
			<input type="password" name="password2">
			<button class="btn-left"><?php i18n("Change %{username}%&apos;s Password", array("username" => ucfirst($username))) ?></button>
			<button class="btn-right" onclick="codiad.modal.unload();return false;"><?php i18n("Cancel"); ?></button>
		<?php
	break;

}

?>
Updated for PHP 7.2, modified save message function, Updated Collaboration for newer versions. 2018-07-13 18:39:55 +02:00			`<?php`

Updated ReadMe, Updated is admin check, Added initial change user access ability, Started updating update script for new sql methods, Reformatted user init.js indentation, Reformatted indentation on user dialog. 2019-02-10 06:35:15 +01:00			`/*`
			`* Copyright (c) Codiad & Kent Safranski (codiad.com), distributed`
			`* as-is and without warranty under the MIT License. See`
			`* [root]/license.txt for more. This information must remain intact.`
			`*/`
			`require_once('../../common.php');`
			`require_once('./class.user.php');`
			`$User = new User();`
			`//////////////////////////////////////////////////////////////////`
			`// Verify Session or Key`
			`//////////////////////////////////////////////////////////////////`

			`checkSession();`

			`switch($_GET['action']){`

			`//////////////////////////////////////////////////////////////`
			`// List Projects`
			`//////////////////////////////////////////////////////////////`

			`case 'list':`

			`$projects_assigned = false;`

			`if( ! checkAccess() ) {`

			`?>`
			`<label><?php i18n("Restricted"); ?></label>`
			`<pre><?php i18n("You can not edit the user list"); ?></pre>`
			`<button onclick="codiad.modal.unload();return false;"><?php i18n("Close"); ?></button>`
			`<?php`
			`} else {`

			`$admin = is_admin();`
			`?>`
			`<label><?php i18n("User List"); ?></label>`
			`<div id="user-list">`
			`<table width="100%">`
			`<tr>`
			`<th width="150"><?php i18n("Username"); ?></th>`
			`<th width="85"><?php i18n("Password"); ?></th>`
			`<?php`

			`if( $admin ) {`

			`?>`
			`<th width="70"><?php i18n("Access"); ?></th>`
			`<?php`
			`}`
			`?>`
			`<th width="70"><?php i18n("Delete"); ?></th>`
			`</tr>`
			`</table>`
			`<div class="user-wrapper">`
			`<table width="100%" style="word-wrap: break-word;word-break: break-all;">`
			`<?php`

			`// Get projects JSON data`
			`$users = $User->list_users();`
			`foreach( $users as $user => $data ) {`
			`?>`
			`<tr>`
			`<td width="150"><?php echo($data['username']); ?></td>`
			`<td width="85"><a onclick="codiad.user.password('<?php echo($data['username']); ?>');" class="icon-flashlight bigger-icon"></a></td>`
			`<?php`

			`if( $admin ) {`

			`?>`
			`<td width="75">`
			`<select onchange="codiad.user.update_access( event, '<?php echo( $data['username'] ); ?>' )">`
			`<?php`
Continued implementation of new table structures, New SQL procedures, and New function principles, Updated saving methods to support PHP 7.4 and deprecation of magic_quotes 2019-10-16 16:20:09 +02:00			`foreach( Permissions::SYSTEM_LEVELS as $role => $id ) {`
Updated ReadMe, Updated is admin check, Added initial change user access ability, Started updating update script for new sql methods, Reformatted user init.js indentation, Reformatted indentation on user dialog. 2019-02-10 06:35:15 +01:00
			`?>`
Continued implementation of new table structures, New SQL procedures, and New function principles, Updated saving methods to support PHP 7.4 and deprecation of magic_quotes 2019-10-16 16:20:09 +02:00			`<option value="<?php echo $id;?>" <?php if( $data["access"] == $id ) { echo 'selected="selected"'; }?>><?php echo i18n( $role );?></option>`
Updated ReadMe, Updated is admin check, Added initial change user access ability, Started updating update script for new sql methods, Reformatted user init.js indentation, Reformatted indentation on user dialog. 2019-02-10 06:35:15 +01:00			`<?php`
			`}`
			`?>`
			`</select>`
			`</td>`
			`<?php`
			`}`

			`if( $_SESSION['user'] == $data['username'] ) {`

			`?>`
			`<td width="75"><a onclick="codiad.message.error('You Cannot Delete Your Own Account');" class="icon-block bigger-icon"></a></td>`
			`<?php`
			`} else {`

			`?>`
			`<td width="70"><a onclick="codiad.user.delete('<?php echo($data['username']); ?>');" class="icon-cancel-circled bigger-icon"></a></td>`
			`<?php`
			`}`
			`?>`
			`</tr>`
			`<?php`
			`}`
			`?>`
			`</table>`
			`</div>`
			`</div>`
			`<button class="btn-left" onclick="codiad.user.createNew();"><?php i18n("New Account"); ?></button>`
			`<button class="btn-right" onclick="codiad.modal.unload();return false;"><?php i18n("Close"); ?></button>`
			`<?php`
			`}`
			`break;`

			`//////////////////////////////////////////////////////////////////////`
			`// Create New User`
			`//////////////////////////////////////////////////////////////////////`

			`case 'create':`

			`?>`
			`<form>`
			`<label><?php i18n("Username"); ?></label>`
			`<input type="text" name="username" autofocus="autofocus" autocomplete="off">`
			`<label><?php i18n("Password"); ?></label>`
			`<input type="password" name="password1">`
			`<label><?php i18n("Confirm Password"); ?></label>`
			`<input type="password" name="password2">`
			`<button class="btn-left"><?php i18n("Create Account"); ?></button>`
Updated for PHP 7.2, modified save message function, Updated Collaboration for newer versions. 2018-07-13 18:39:55 +02:00			`<button class="btn-right" onclick="codiad.user.list();return false;"><?php i18n("Cancel"); ?></button>`
Updated ReadMe, Updated is admin check, Added initial change user access ability, Started updating update script for new sql methods, Reformatted user init.js indentation, Reformatted indentation on user dialog. 2019-02-10 06:35:15 +01:00			`<form>`
			`<?php`
			`break;`

			`//////////////////////////////////////////////////////////////////////`
			`// Delete User`
			`//////////////////////////////////////////////////////////////////////`

			`case 'delete':`

			`?>`
			`<form>`
			`<input type="hidden" name="username" value="<?php echo($_GET['username']); ?>">`
			`<label><?php i18n("Confirm User Deletion"); ?></label>`
			`<pre><?php i18n("Account:"); ?> <?php echo($_GET['username']); ?></pre>`
			`<button class="btn-left"><?php i18n("Confirm"); ?></button>`
Updated for PHP 7.2, modified save message function, Updated Collaboration for newer versions. 2018-07-13 18:39:55 +02:00			`<button class="btn-right" onclick="codiad.user.list();return false;"><?php i18n("Cancel"); ?></button>`
Changed $path to __DIR__ for config location, Updated auto reload variables, Removed unload listener for auto reload, Changed project default to array so that if no projects exist the program does not crash, Updated autosave to use let instead of vars, Fixed capitalization for sideExpanded variable, Added try catch to pdo initialization on install, Added more error checks on install, Removed password function on install query, Changed default settings array, Added loading div to user delete, Updated queries that threw errors when a default value was zero, Added blank username and password check, 2019-02-09 22:14:27 +01:00			`<div class="loading"></div>`
Updated ReadMe, Updated is admin check, Added initial change user access ability, Started updating update script for new sql methods, Reformatted user init.js indentation, Reformatted indentation on user dialog. 2019-02-10 06:35:15 +01:00			`<?php`
			`break;`

			`//////////////////////////////////////////////////////////////////////`
			`// Change Password`
			`//////////////////////////////////////////////////////////////////////`

			`case 'password':`

			`if( $_GET['username'] == 'undefined' ) {`

			`$username = $_SESSION['user'];`
			`} else {`
			`$username = $_GET['username'];`
			`}`

			`?>`
			`<form>`
			`<input type="hidden" name="username" value="<?php echo($username); ?>">`
			`<label><?php i18n("New Password"); ?></label>`
			`<input type="password" name="password1" autofocus="autofocus">`
			`<label><?php i18n("Confirm Password"); ?></label>`
			`<input type="password" name="password2">`
			`<button class="btn-left"><?php i18n("Change %{username}%'s Password", array("username" => ucfirst($username))) ?></button>`
Updated for PHP 7.2, modified save message function, Updated Collaboration for newer versions. 2018-07-13 18:39:55 +02:00			`<button class="btn-right" onclick="codiad.modal.unload();return false;"><?php i18n("Cancel"); ?></button>`
Updated ReadMe, Updated is admin check, Added initial change user access ability, Started updating update script for new sql methods, Reformatted user init.js indentation, Reformatted indentation on user dialog. 2019-02-10 06:35:15 +01:00			`<?php`
			`break;`
Updated for PHP 7.2, modified save message function, Updated Collaboration for newer versions. 2018-07-13 18:39:55 +02:00
Updated ReadMe, Updated is admin check, Added initial change user access ability, Started updating update script for new sql methods, Reformatted user init.js indentation, Reformatted indentation on user dialog. 2019-02-10 06:35:15 +01:00			`}`
Updated for PHP 7.2, modified save message function, Updated Collaboration for newer versions. 2018-07-13 18:39:55 +02:00
			`?>`