'; } elseif ( isset($_REQUEST['wp_http_referer']) ) { $redirect = remove_query_arg(array('wp_http_referer', 'updated', 'delete_count'), stripslashes($_REQUEST['wp_http_referer'])); $referer = ''; } else { $redirect = 'users.php'; } switch ($action) { case 'promote': check_admin_referer('bulk-users'); if (empty($_REQUEST['users'])) { wp_redirect($redirect); exit(); } if ( !current_user_can('edit_users') ) wp_die(__('You can’t edit users.')); $userids = $_REQUEST['users']; $update = 'promote'; foreach($userids as $id) { if ( ! current_user_can('edit_user', $id) ) wp_die(__('You can’t edit that user.')); // The new role of the current user must also have edit_users caps if($id == $current_user->ID && !$wp_roles->role_objects[$_REQUEST['new_role']]->has_cap('edit_users')) { $update = 'err_admin_role'; continue; } $user = new WP_User($id); $user->set_role($_REQUEST['new_role']); } wp_redirect(add_query_arg('update', $update, $redirect)); exit(); break; case 'dodelete': wp_die(__('This function is disabled.')); check_admin_referer('delete-users'); if ( empty($_REQUEST['users']) ) { wp_redirect($redirect); exit(); } if ( !current_user_can('delete_users') ) wp_die(__('You can’t delete users.')); $userids = $_REQUEST['users']; $update = 'del'; $delete_count = 0; foreach ( (array) $userids as $id) { if ( ! current_user_can('delete_user', $id) ) wp_die(__('You can’t delete that user.')); if($id == $current_user->ID) { $update = 'err_admin_del'; continue; } switch($_REQUEST['delete_option']) { case 'delete': wp_delete_user($id); break; case 'reassign': wp_delete_user($id, $_REQUEST['reassign_user']); break; } ++$delete_count; } $redirect = add_query_arg( array('delete_count' => $delete_count, 'update' => $update), $redirect); wp_redirect($redirect); exit(); break; case 'delete': wp_die(__('This function is disabled.')); check_admin_referer('bulk-users'); if ( empty($_REQUEST['users']) ) { wp_redirect($redirect); exit(); } if ( !current_user_can('delete_users') ) $errors = new WP_Error('edit_users', __('You can’t delete users.')); $userids = $_REQUEST['users']; include ('admin-header.php'); ?>

  • '.__('Attribute all posts and links to:')." $user_dropdown"; ?>

id) { $update = 'err_admin_remove'; continue; } remove_user_from_blog($id, $blog_id); } wp_redirect('users.php?update=' . $update); break; case 'removeuser': check_admin_referer('bulk-users'); if (empty($_REQUEST['users'])) { wp_redirect('users.php'); } if ( !current_user_can('edit_users') ) $error = new WP_Error('edit_users', __('You can’t remove users.')); $userids = $_REQUEST['users']; include ('admin-header.php'); ?>

urlencode($new_user_login), 'update' => $update), $redirect ); wp_redirect( $redirect . '#user-' . $user_id ); die(); } case 'addexistinguser': check_admin_referer('add-user'); if ( !current_user_can('edit_users') ) die(__('You can’t edit users.')); $new_user_email = wp_specialchars(trim($_REQUEST['newuser'])); /* checking that username has been typed */ if ( !empty($new_user_email) ) { if ( $user_id = email_exists( $new_user_email ) ) { $username = $wpdb->get_var( "SELECT user_login FROM {$wpdb->users} WHERE ID='$user_id'" ); if( ($username != null && is_site_admin( $username ) == false ) && ( array_key_exists($blog_id, get_blogs_of_user($user_id)) ) ) { $location = 'users.php?update=add_existing'; } else { $newuser_key = substr( md5( $user_id ), 0, 5 ); add_option( 'new_user_' . $newuser_key, array( 'user_id' => $user_id, 'email' => $user->user_email, 'role' => $_REQUEST[ 'new_role' ] ) ); wp_mail( $new_user_email, sprintf( __( '[%s] Joining confirmation' ), get_option( 'blogname' ) ), "Hi,\n\nYou have been invited to join '" . get_option( 'blogname' ) . "' at\n" . site_url() . "\nPlease click the following link to confirm the invite:\n" . site_url( "/newbloguser/$newuser_key/" ) ); $location = 'users.php?update=add'; } wp_redirect("$location"); die(); } else { wp_redirect('users.php?update=notfound' ); die(); } } wp_redirect('users.php'); die(); break; default: if ( !empty($_GET['_wp_http_referer']) ) { wp_redirect(remove_query_arg(array('_wp_http_referer', '_wpnonce'), stripslashes($_SERVER['REQUEST_URI']))); exit; } wp_enqueue_script('admin-users'); wp_enqueue_script('admin-forms'); include('admin-header.php'); // Query the users $wp_user_search = new WP_User_Search($_GET['usersearch'], $_GET['userspage'], $_GET['role']); if ( isset($_GET['update']) ) : switch($_GET['update']) { case 'del': case 'del_many': ?>

is_search() ) : ?>

search_term)); ?>

results_are_paged() ) : ?>
page_links(); ?>


search_errors ) ) : ?>
    search_errors->get_error_messages() as $message ) echo "
  • $message
  • "; ?>
get_results() ) : ?> is_search() ) : ?>

get_results() as $userid ) { $user_object = new WP_User($userid); $roles = $user_object->roles; $role = array_shift($roles); $style = ( ' class="alternate"' == $style ) ? '' : ' class="alternate"'; echo "\n\t" . user_row($user_object, $style, $role); } ?>
results_are_paged() ) : ?>
page_links(); ?>

'user_login', 'first_name' => 'user_firstname', 'last_name' => 'user_lastname', 'email' => 'user_email', 'url' => 'user_uri', 'role' => 'user_role') as $formpost => $var ) { $var = 'new_' . $var; $$var = attribute_escape(stripslashes($_REQUEST[$formpost])); } unset($name); } ?>

get_error_messages() as $message ) echo "

$message

"; ?>