text("guid"); $form->flag("setpasswd"); $form->text("curpasswd", false); $form->text("passwd", false); $form->text("cpasswd", false); $form->text("alias", false); $form->text("email", false); $form->text("emailVer", false); if (!$form->populate(input())) return; $user = new user($form->guid); /* permissions */ if (!($cu = user::getCurrent()) || !$cu->canModify($user)) { logError(ERROR, "You do not have permission to modify the selected user"); return; } /* image file removal */ if (isset(input()['rmImg-head'])) { if ($user->rmHeadImg()) logError(NOTICE, "User image removed"); else logError(ERROR, "Error removing user image"); return; } if (isset(input()['rmImg-bg'])) { if ($user->rmBgImg()) logError(NOTICE, "Background image removed"); else logError(ERROR, "Error removing background image"); return; } /* image file set */ if ($user->setHeadImg("img-head")) logError(NOTICE, "User image updated"); if ($user->setBgImg("img-bg")) logError(NOTICE, "Background image updated"); /* modify object */ if ($form->setpasswd) { if ($user->validatePasswd($form->curpasswd)) { if ($form->passwd == $form->cpasswd) { $user->setPasswd($form->passwd); logError(NOTICE, "Password updated successfully"); } else logError(WARNING, "Password not changed, passwords did not match"); } else logError(WARNING, "Password not changed, current password was incorrect"); } $user->alias = $form->alias; if ($form->email != $user->email) $user->setEmail($form->email); else if ($form->emailVer != "" && $user->emailConf == 0) { if (!$user->verifyEmail($form->emailVer)) logError(WARNING, "Email not verified, key was incorrect"); } $user->saveObj(); } /* * Action: settings-admin - Modify global settings */ if (isAction("settings-admin")) { $form = new form(); $form->flag("sslOnly"); $form->flag("allowPublicSignup"); $form->text("smtpEmailAddress", false); $form->text("smtpFrom", false); $form->text("smtpServer", false); $form->numeric("smtpPort", 0, 65535); $form->enum("smtpSecurity", array("", "ssl", "tls")); $form->text("smtpUname", false); $form->text("smtpPasswd", false); if (!$form->populate(input())) return; /* permissions */ if (!($cu = user::getCurrent()) || $cu->admin == 0) { logError(ERROR, "You do not have permission to modify global settings"); return; } settings::sslOnly($form->sslOnly); settings::allowPublicSignup($form->allowPublicSignup); settings::smtpEmailAddress($form->smtpEmailAddress); settings::smtpFrom($form->smtpFrom); settings::smtpServer($form->smtpServer); settings::smtpPort($form->smtpPort); settings::smtpSecurity($form->smtpSecurity); settings::smtpUname($form->smtpUname); if ($form->smtpPasswd != "") settings::smtpPasswd($form->smtpPasswd); $log = mesg::initNewAdminLog("%s changed global settings", $cu); } ?>