jrtechs
/
jrtechs-Club-Panda
mirror of https://github.com/jrtechs/Club-Panda.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
Simple website with some JavaScript games.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10 Commits
1 Branch
1.7 MiB
Tree: 854efd60b3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '854efd60b3'
${ noResults }
jrtechs-Club-Panda/user/editUser.php

101 lines
3.5 KiB
Raw Normal View History

Initial commit
7 years ago
 
  1. <?php
  2. 

  3.     if($admin)
  4.     {
  5.         $errors = array();
  6.         
  7.         if(isset($_POST['edit_user']))
  8.         {
  9.             $i_username = mysqli_real_escape_string($dbc, trim($_POST['edit_user_username']));
  10.             
  11.             $i_first = mysqli_real_escape_string($dbc, trim($_POST['edit_user_first']));
  12.             
  13.             $i_last = mysqli_real_escape_string($dbc, trim($_POST['edit_user_last']));
  14.             
  15.             $i_password = mysqli_real_escape_string($dbc, trim($_POST['edit_user_pass']));
  16.             
  17.             $i_admin = mysqli_real_escape_string($dbc, trim($_POST['edit_user_admin']));
  18.             
  19.             $passcom = $i_password . $i_first;
  20.             
  21.             $passcom = SHA1($passcom);
  22.             
  23.             if($i_admin)
  24.             {
  25.                 $admin_temp = "true";
  26.             }
  27.             else
  28.             {
  29.                 $admin_temp = "false";
  30.             }
  31.             
  32.             $q = "select user_id from users where user_name ='$i_username'";
  33.             $r = mysqli_query($dbc, $q);
  34.             
  35.             while($row = mysqli_fetch_array($r))
  36.             {
  37.                 $q = "update users set first_name ='$i_first' where user_id='" . $row['user_id'] . "'";
  38.                 $r2 = mysqli_query($dbc, $q);
  39.                 
  40.                 $q = "update users set last_name ='$i_last' where user_id='" . $row['user_id'] . "'";
  41.                 $r2 = mysqli_query($dbc, $q);
  42.                 
  43.                 $q = "update users set pass ='$passcom' where user_id='" . $row['user_id'] . "'";
  44.                 $r2 = mysqli_query($dbc, $q);
  45.                 //echo $q;

  46.                 
  47.                 $q = "update users set admin =$admin_temp where user_id='" . $row['user_id'] . "'";
  48.                 $r2 = mysqli_query($dbc, $q);
  49.                 //echo $q;

  50.                 
  51.             }
  52.             
  53.             header("Location: admin.php");
  54.         }
  55.         
  56.         echo '<h1 class="w3-text-teal"><center>Edit User</center></h1>';
  57.         
  58.         echo '<form action="admin.php" method ="post" class="w3-container w3-card-4">';
  59.         
  60.         $q = "select user_name from users";
  61.         $r = mysqli_query($dbc, $q);
  62.         echo '<select class="w3-select" name ="edit_user_username">';
  63.         
  64.         while($row = mysqli_fetch_array($r))
  65.         {
  66.             echo '<option value="' . $row['user_name'] . '">';
  67.             
  68.             echo $row['user_name'] . '</option>';
  69.         }
  70.         
  71.         echo '</select>';
  72. 

  73.         echo '<div class="w3-group">
  74.             <input class="w3-input" type="text" name="edit_user_first" required>
  75.             <label class="w3-label w3-validate">First Name</label>
  76.         </div>
  77.         <div class="w3-group">
  78.             <input class="w3-input" type="text" name="edit_user_last" required>
  79.             <label class="w3-label w3-validate">Last Name</label>
  80.         </div>
  81.         <div class="w3-group">
  82.             <input class="w3-input" type="password" name="edit_user_pass" maxlength="20" required>
  83.             <label class="w3-label w3-validate">Password</label>
  84.         </div>
  85. 

  86.         <input class="w3-check" type="checkbox" name="edit_user_admin">
  87.         <label class="w3-validate">Admin<label>
  88. 

  89. 

  90.         <p><input type="submit" name="Submit" value="Edit User" class="w3-padding-16 w3-hover-dark-grey w3-btn-block w3-center-align" /></p>
  91.         <input type="hidden" name="edit_user" value="TRUE" />
  92.             
  93.         
  94.         </form>';
  95.         
  96.         foreach($errors as $msg)
  97.         {
  98.             echo " - $msg<br />";
  99.         }
  100.     }
  101.        
  102. ?>