diff options
| author | donncha <donncha@7be80a69-a1ef-0310-a953-fb0f7c49ff36> | 2005-07-14 07:09:38 +0000 |
|---|---|---|
| committer | donncha <donncha@7be80a69-a1ef-0310-a953-fb0f7c49ff36> | 2005-07-14 07:09:38 +0000 |
| commit | 25a558f83f0dc55ffe4a849b1c652f227bef3e33 (patch) | |
| tree | 14a7f1e8aa0688b6c5c2889b43def7debd760d71 /wp-inst/wp-admin/users.php | |
| parent | e8e403c56f499f37aa39e91b9bdfe9f1b5e218e6 (diff) | |
Merged changes from WP SVN.
git-svn-id: http://svn.automattic.com/wordpress-mu/trunk@22 7be80a69-a1ef-0310-a953-fb0f7c49ff36
Diffstat (limited to 'wp-inst/wp-admin/users.php')
| -rw-r--r-- | wp-inst/wp-admin/users.php | 367 |
1 files changed, 212 insertions, 155 deletions
diff --git a/wp-inst/wp-admin/users.php b/wp-inst/wp-admin/users.php index 296c6a8..7e91124 100644 --- a/wp-inst/wp-admin/users.php +++ b/wp-inst/wp-admin/users.php @@ -8,140 +8,242 @@ $parent_file = 'profile.php'; $action = $_REQUEST['action']; switch ($action) { -case 'adduser': + +case 'promote': check_admin_referer(); - $user_login = wp_specialchars(trim($_POST['user_login'])); - $pass1 = $_POST['pass1']; - $pass2 = $_POST['pass2']; - $user_email = wp_specialchars(trim($_POST['email'])); - $user_firstname = wp_specialchars(trim($_POST['firstname'])); - $user_lastname = wp_specialchars(trim($_POST['lastname'])); - $user_uri = wp_specialchars(trim($_POST['uri'])); - - /* checking that username has been typed */ - if ($user_login == '') - die (__('<strong>ERROR</strong>: Please enter a username.')); + if (empty($_POST['users'])) { + header('Location: users.php'); + } - /* checking the password has been typed twice */ - do_action('check_passwords', array($user_login, &$pass1, &$pass2)); - if ($pass1 == '' || $pass2 == '') - die (__('<strong>ERROR</strong>: Please enter your password twice.')); + if ( !current_user_can('edit_users') ) + die(__('You can’t edit users.')); - /* checking the password has been typed twice the same */ - if ($pass1 != $pass2) - die (__('<strong>ERROR</strong>: Please type the same password in the two password fields.')); + $userids = $_POST['users']; + foreach($userids as $id) { + $user = new WP_User($id); + $user->set_role($_POST['new_role']); + } + + header('Location: users.php?update=promote'); - $user_nickname = $user_login; +break; - if ( username_exists( $user_login ) ) - die (__('<strong>ERROR</strong>: This username is already registered, please choose another one.')); +case 'dodelete': - /* checking e-mail address */ - if (empty($user_email)) { - die (__("<strong>ERROR</strong>: please type an e-mail address")); - return false; - } else if (!is_email($user_email)) { - die (__("<strong>ERROR</strong>: the email address isn't correct")); - return false; + check_admin_referer(); + + if (empty($_POST['users'])) { + header('Location: users.php'); } - $user_ID = create_user( $user_login, $pass1, $user_email, 0 ); + if ( !current_user_can('edit_users') ) + die(__('You can’t delete users.')); - update_usermeta( $user_ID, 'first_name', $user_firstname); - update_usermeta( $user_ID, 'last_name', $user_lastname); - update_usermeta( $user_ID, 'first_name', $user_firstname); + $userids = $_POST['users']; - $stars = ''; - for ($i = 0; $i < strlen($pass1); $i = $i + 1) - $stars .= '*'; + foreach($userids as $id) { + switch($_POST['delete_option']) { + case 'delete': + wp_delete_user($id); + break; + case 'reassign': + wp_delete_user($id, $_POST['reassign_user']); + break; + } + } - $user_login = stripslashes($user_login); - $message = sprintf(__('New user registration on your blog %s:'), get_settings('blogname')) . "\r\n\r\n"; - $message .= sprintf(__('Username: %s'), $user_login) . "\r\n\r\n"; - $message .= sprintf(__('E-mail: %s'), $user_email) . "\r\n"; + header('Location: users.php?update=del'); - @wp_mail(get_settings('admin_email'), sprintf(__('[%s] New User Registration'), get_settings('blogname')), $message); - header('Location: users.php'); break; -case 'promote': +case 'delete': + check_admin_referer(); - if (empty($_GET['prom'])) { + if (empty($_POST['users'])) { header('Location: users.php'); } - $id = (int) $_GET['id']; - $prom = $_GET['prom']; + if ( !current_user_can('edit_users') ) + $error['edit_users'] = __('You can’t delete users.'); - $user_data = get_userdata($id); + $userids = $_POST['users']; - $usertopromote_level = $user_data->user_level; - - if ( $user_level <= $usertopromote_level ) - die(__('Can’t change the level of a user whose level is higher than yours.')); - - if ('up' == $prom) { - $new_level = $usertopromote_level + 1; - } elseif ('down' == $prom) { - $new_level = $usertopromote_level - 1; + include ('admin-header.php'); +?> +<form action="" method="post" name="updateusers" id="updateusers"> +<div class="wrap"> + <h2><?php _e('Delete Users'); ?></h2> + <p><?php _e('You have specified these users for deletion:'); ?></p> + <ul> + <?php + foreach($userids as $id) { + $user = new WP_User($id); + echo "<li><input type=\"hidden\" name=\"users[]\" value=\"{$id}\" />"; + echo "{$id}: {$user->data->user_login}</li>\n"; } - update_usermeta( $id, $wpdb->prefix . 'user_level', $new_level); - - header('Location: users.php'); + $all_logins = $wpdb->get_results("SELECT ID, user_login FROM $wpdb->users ORDER BY user_login"); + $user_dropdown = '<select name="reassign_user">'; + foreach($all_logins as $login) { + if(!in_array($login->ID, $userids)) { + $user_dropdown .= "<option value=\"{$login->ID}\">{$login->user_login}</option>"; + } + } + $user_dropdown .= '</select>'; + ?> + </ul> + <p><?php _e('What should be done with posts and links owned by this user?'); ?></p> + <ul style="list-style:none;"> + <li><label><input type="radio" id="delete_option0" name="delete_option" value="delete" checked="checked" /> + <?php _e('Delete all posts and links.'); ?></label></li> + <li><input type="radio" id="delete_option1" name="delete_option" value="reassign" /> + <?php echo sprintf(__('<label for="delete_option1">Attribute all posts and links to:</label> %s'), $user_dropdown); ?></li> + </ul> + <input type="hidden" name="action" value="dodelete" /> + <p class="submit"><input type="submit" name="submit" value="<?php _e('Confirm Deletion'); ?>" /></p> +</div> +</form> +<?php break; -case 'delete': - +case 'adduser': check_admin_referer(); - $id = (int) $_GET['id']; + $new_user_login = wp_specialchars(trim($_POST['user_login'])); + $new_pass1 = $_POST['pass1']; + $new_pass2 = $_POST['pass2']; + $new_user_email = wp_specialchars(trim($_POST['email'])); + $new_user_firstname = wp_specialchars(trim($_POST['firstname'])); + $new_user_lastname = wp_specialchars(trim($_POST['lastname'])); + $new_user_uri = wp_specialchars(trim($_POST['uri'])); + + $errors = array(); + + /* checking that username has been typed */ + if ($new_user_login == '') + $errors['user_login'] = __('<strong>ERROR</strong>: Please enter a username.'); - if (!$id) { - header('Location: users.php'); - } + /* checking the password has been typed twice */ + do_action('check_passwords', array($new_user_login, &$new_pass1, &$new_pass2)); + if ($new_pass1 == '' || $new_pass2 == '') + $errors['pass'] = __('<strong>ERROR</strong>: Please enter your password twice.'); - $user_data = get_userdata($id); - $usertodelete_level = $user_data->user_level; + /* checking the password has been typed twice the same */ + if ($new_pass1 != $new_pass2) + $errors['pass'] = __('<strong>ERROR</strong>: Please type the same password in the two password fields.'); - if ($user_level <= $usertodelete_level) - die(__('Can’t delete a user whose level is higher than yours.')); + $new_user_nickname = $new_user_login; - wp_delete_user($id); + if ( username_exists( $new_user_login ) ) + $errors['pass'] = __('<strong>ERROR</strong>: This username is already registered, please choose another one.'); - header('Location: users.php?deleted=true'); + /* checking e-mail address */ + if (empty($new_user_email)) { + $errors['user_email'] = __("<strong>ERROR</strong>: please type an e-mail address"); + } else if (!is_email($new_user_email)) { + $errors['user_email'] = __("<strong>ERROR</strong>: the email address isn't correct"); + } -break; + if(count($errors) == 0) { + $user_ID = create_user( $new_user_login, $new_pass1, $new_user_email, 0 ); + + update_usermeta( $user_ID, 'first_name', $new_user_firstname); + update_usermeta( $user_ID, 'last_name', $new_user_lastname); + update_usermeta( $user_ID, 'first_name', $new_user_firstname); + + $user = new WP_User($user_ID); + $user->set_role(get_settings('default_role')); + + $stars = ''; + for ($i = 0; $i < strlen($pass1); $i = $i + 1) + $stars .= '*'; + + $user_login = stripslashes($new_user_login); + $message = sprintf(__('New user registration on your blog %s:'), get_settings('blogname')) . "\r\n\r\n"; + $message .= sprintf(__('Username: %s'), $new_user_login) . "\r\n\r\n"; + $message .= sprintf(__('E-mail: %s'), $new_user_email) . "\r\n"; + + @wp_mail(get_settings('admin_email'), sprintf(__('[%s] New User Registration'), get_settings('blogname')), $message); + header('Location: users.php?update=add'); + die(); + } default: include ('admin-header.php'); + + $userids = $wpdb->get_col("SELECT ID FROM $wpdb->users;"); + + foreach($userids as $userid) { + $tmp_user = new WP_User($userid); + $roles = array_keys($tmp_user->roles); + $role = $roles[0]; + $roleclasses[$role][$tmp_user->data->user_login] = $tmp_user; + } + ?> -<?php if (isset($_GET['deleted'])) : ?> -<div class="updated"><p><?php _e('User deleted.') ?></p></div> -<?php endif; ?> + <?php + if (isset($_GET['update'])) : + switch($_GET['update']) { + case 'del': + ?> + <div class="updated"><p><?php _e('User deleted.'); ?></p></div> + <?php + break; + case 'add': + ?> + <div class="updated"><p><?php _e('New user created.'); ?></p></div> + <?php + break; + case 'promote': + ?> + <div class="updated"><p><?php _e('Changed roles.'); ?></p></div> + <?php + break; + } + endif; + if ( isset($errors) ) : ?> + <div class="error"> + <ul> + <?php + foreach($errors as $error) echo "<li>$error</li>"; + ?> + </ul> + </div> + <?php + endif; + ?> + +<form action="" method="post" name="updateusers" id="updateusers"> <div class="wrap"> - <h2><?php _e('Authors') ?></h2> + <h2><?php _e('User List by Role'); ?></h2> <table cellpadding="3" cellspacing="3" width="100%"> + <?php + foreach($roleclasses as $role => $roleclass) { + ksort($roleclass); + ?> + + <tr> + <th colspan="8" align="left"> + <h3><?php echo $wp_roles->role_names[$role]; ?></h3> + </th> + <tr> <th><?php _e('ID') ?></th> - <th><?php _e('Nickname') ?></th> + <th><?php _e('Username') ?></th> <th><?php _e('Name') ?></th> <th><?php _e('E-mail') ?></th> <th><?php _e('Website') ?></th> - <th><?php _e('Level') ?></th> <th><?php _e('Posts') ?></th> <th> </th> </tr> <?php - $authors = - $users = get_author_user_ids(); $style = ''; - foreach ($users as $user) { - $user_data = get_userdata($user); + foreach ($roleclass as $user_object) { + $user_data = &$user_object->data; $email = $user_data->user_email; $url = $user_data->user_url; $short_url = str_replace('http://', '', $url); @@ -151,24 +253,18 @@ default: if (strlen($short_url) > 35) $short_url = substr($short_url, 0, 32).'...'; $style = ('class="alternate"' == $style) ? '' : 'class="alternate"'; - $numposts = $wpdb->get_var("SELECT COUNT(*) FROM $wpdb->posts WHERE post_author = '$user' and post_status = 'publish'"); + $numposts = $wpdb->get_var("SELECT COUNT(*) FROM $wpdb->posts WHERE post_author = '$user_data->ID' and post_status = 'publish'"); if (0 < $numposts) $numposts = "<a href='edit.php?author=$user_data->ID' title='" . __('View posts') . "'>$numposts</a>"; echo " <tr $style> - <td align='center'>$user_data->ID</td> - <td><strong>$user_data->user_login</strong></td> - <td>$user_data->first_name $user_data->last_name</td> + <td><input type='checkbox' name='users[]' id='user_{$user_data->ID}' value='{$user_data->ID}' /> <label for='user_{$user_data->ID}'>{$user_data->ID}</label></td> + <td><label for='user_{$user_data->ID}'><strong>$user_data->user_login</strong></label></td> + <td><label for='user_{$user_data->ID}'>$user_data->first_name $user_data->last_name</label></td> <td><a href='mailto:$email' title='" . sprintf(__('e-mail: %s'), $email) . "'>$email</a></td> - <td><a href='$url' title='website: $url'>$short_url</a></td> - <td align='center'>"; - if (($user_level >= 2) and ($user_level > $user_data->user_level) and ($user_data->user_level > 0)) - echo " <a href=\"users.php?action=promote&id=".$user_data->ID."&prom=down\">-</a> "; - echo $user_data->user_level; - if (($user_level >= 2) and ($user_level > ($user_data->user_level + 1))) - echo " <a href=\"users.php?action=promote&id=".$user_data->ID."&prom=up\">+</a> "; - echo "</td><td align='right'>$numposts</td>"; + <td><a href='$url' title='website: $url'>$short_url</a></td>"; + echo "<td align='right'>$numposts</td>"; echo '<td>'; - if (($user_level >= 2) and ($user_level > $user_data->user_level)) + if (current_user_can('edit_users')) echo "<a href='user-edit.php?user_id=$user_data->ID' class='edit'>".__('Edit')."</a>"; echo '</td>'; echo '</tr>'; @@ -176,68 +272,29 @@ default: ?> - </table> -</div> <?php -$users = get_nonauthor_user_ids(); -if ($users) { + } ?> -<div class="wrap"> - <h2><?php _e('Registered Users') ?></h2> - <table cellpadding="3" cellspacing="3" width="100%"> - <tr> - <th><?php _e('ID') ?></th> - <th><?php _e('Nickname') ?></th> - <th><?php _e('Name') ?></th> - <th><?php _e('E-mail') ?></th> - <th><?php _e('Website') ?></th> - <th></th> - <th></th> - <th></th> - </tr> -<?php -$style = ''; -foreach ($users as $user) { - $user_data = get_userdata($user); - $email = $user_data->user_email; - $url = $user_data->user_url; - $short_url = str_replace('http://', '', $url); - $short_url = str_replace('www.', '', $short_url); - if ('/' == substr($short_url, -1)) - $short_url = substr($short_url, 0, -1); - if (strlen($short_url) > 35) - $short_url = substr($short_url, 0, 32).'...'; - $style = ('class="alternate"' == $style) ? '' : 'class="alternate"'; -echo "\n<tr $style> -<td align='center'>$user_data->ID</td> -<td><strong>$user_data->user_login</strong></td> -<td>$user_data->first_name $user_data->last_name</td> -<td><a href='mailto:$email' title='" . sprintf(__('e-mail: %s'), $email) . "'>$email</a></td> -<td><a href='$url' title='website: $url'>$short_url</a></td> -<td align='center'>"; - - if ($user_level >= 6) - echo "<a href='users.php?action=promote&id=$user_data->ID&prom=up' class='edit'>". __('Promote') . '</a>'; - echo "</td>\n"; - echo '<td>'; - if (($user_level >= 6) and ($user_level > $user_data->user_level)) - echo "<a href='user-edit.php?user_id=$user_data->ID' class='edit'>".__('Edit')."</a>"; - echo '</td><td>'; - if ($user_level >= 6) - echo "<a href='users.php?action=delete&id=$user_data->ID' class='delete' onclick='return confirm(\"" . __('You are about to delete this user \n OK to delete, Cancel to stop.') . "\")'>" . __('Delete'). '</a>'; - echo '</td></tr>'; + </table> -} -?> - - </table> - <p><?php _e('Deleting a user also deletes all posts made by that user.') ?></p> + <h2><?php _e('Update Users'); ?></h2> +<?php +$role_select = '<select name="new_role">'; +foreach($wp_roles->role_names as $role => $name) { + $role_select .= "<option value=\"{$role}\">{$name}</option>"; +} +$role_select .= '</select>'; +?> + <ul style="list-style:none;"> + <li><input type="radio" name="action" id="action0" value="delete"> <label for="action0"><?php _e('Delete checked users.'); ?></label></li> + <li><input type="radio" name="action" id="action1" value="promote"> <?php echo sprintf(__('<label for="action1">Set the Role of checked users to:</label> %s'), $role_select); ?></li> + </ul> + <p class="submit"><input type="submit" value="<?php _e('Update »'); ?>"></p> </div> +</form> - <?php - } ?> <div class="wrap"> <h2><?php _e('Add New User') ?></h2> <?php printf(__('<p>Users can <a href="%s/wp-register.php">register themselves</a> or you can manually create users here.</p>'), get_settings('siteurl')); ?> @@ -246,23 +303,23 @@ echo "\n<tr $style> <tr> <th scope="row" width="33%"><?php _e('Nickname') ?> <input name="action" type="hidden" id="action" value="adduser" /></th> - <td width="66%"><input name="user_login" type="text" id="user_login" /></td> + <td width="66%"><input name="user_login" type="text" id="user_login" value="<?php echo $new_user_login; ?>" /></td> </tr> <tr> <th scope="row"><?php _e('First Name') ?> </th> - <td><input name="firstname" type="text" id="firstname" /></td> + <td><input name="firstname" type="text" id="firstname" value="<?php echo $new_user_firstname; ?>" /></td> </tr> <tr> <th scope="row"><?php _e('Last Name') ?> </th> - <td><input name="lastname" type="text" id="lastname" /></td> + <td><input name="lastname" type="text" id="lastname" value="<?php echo $new_user_lastname; ?>" /></td> </tr> <tr> <th scope="row"><?php _e('E-mail') ?></th> - <td><input name="email" type="text" id="email" /></td> + <td><input name="email" type="text" id="email" value="<?php echo $new_user_email; ?>" /></td> </tr> <tr> <th scope="row"><?php _e('Website') ?></th> - <td><input name="uri" type="text" id="uri" /></td> + <td><input name="uri" type="text" id="uri" value="<?php echo $new_user_uri; ?>" /></td> </tr> <?php $show_password_fields = apply_filters('show_password_fields', true); |