2007-11-16 06:30:42 +00:00
< ?
/*
This file is part of the 'Science Fair In A Box' project
SFIAB Website : http :// www . sfiab . ca
Copyright ( C ) 2005 Sci - Tech Ontario Inc < info @ scitechontario . org >
Copyright ( C ) 2005 James Grant < james @ lightbox . org >
Copyright ( C ) 2007 David Grant < dave @ lightbox . org >
This program is free software ; you can redistribute it and / or
modify it under the terms of the GNU General Public
License as published by the Free Software Foundation , version 2.
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the GNU
General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program ; see the file COPYING . If not , write to
the Free Software Foundation , Inc . , 59 Temple Place - Suite 330 ,
Boston , MA 02111 - 1307 , USA .
*/
?>
< ?
require_once ( " common.inc.php " );
require_once ( " user.inc.php " );
2007-11-17 21:59:59 +00:00
require_once ( " committee.inc.php " );
2007-11-16 06:30:42 +00:00
if ( ! isset ( $_SESSION [ 'users_type' ])) {
/* No type set, invalid session */
echo " ERROR: session is invalid " ;
exit ;
}
2007-12-21 09:47:18 +00:00
$user_personal_fields = array (
2008-10-22 20:47:45 +00:00
'salutation' => array ( 'name' => 'Salutation' ),
2007-12-21 09:47:18 +00:00
'firstname' => array ( 'name' => 'First Name' ),
'lastname' => array ( 'name' => 'Last Name' ),
'email' => array ( 'name' => 'Email Address' ),
'username' => array ( 'name' => 'Username' ),
'password' => array ( 'name' => 'Password' ),
'address' => array ( 'name' => 'Address 1' ),
'address2' => array ( 'name' => 'Address 2' ),
'city' => array ( 'name' => 'City' ),
2008-07-16 17:23:53 +00:00
'province' => array ( 'name' => $config [ 'provincestate' ]),
2007-12-21 09:47:18 +00:00
'organization' => array ( 'name' => 'Organization' ),
2008-02-15 23:08:33 +00:00
'sex' => array ( 'name' => 'Gender' ),
2008-02-23 03:28:43 +00:00
'firstaid' => array ( 'name' => 'First Aid Training' ,
'type' => 'yesno' ),
'cpr' => array ( 'name' => 'CPR Training' ,
'type' => 'yesno' ),
2007-12-21 09:47:18 +00:00
'phonehome' => array ( 'name' => 'Phone (Home)' ,
'regexp' => '^[1-9][0-9]{2}-[1-9][0-9]{2}-[0-9]{4}( x[0-9]{1,5})?$' ,
'format' => '\'NNN-NNN-NNNN\' or \'NNN-NNN-NNNN xEXT\'' ,),
'phonecell' => array ( 'name' => 'Phone (Cell)' ,
'regexp' => '^[1-9][0-9]{2}-[1-9][0-9]{2}-[0-9]{4}$' ,
'format' => '\'NNN-NNN-NNNN\'' ,),
'phonework' => array ( 'name' => 'Phone (Work)' ,
'regexp' => '^[1-9][0-9]{2}-[1-9][0-9]{2}-[0-9]{4}( x[0-9]{1,5})?$' ,
'format' => '\'NNN-NNN-NNNN\' or \'NNN-NNN-NNNN xEXT\'' ,),
'fax' => array ( 'name' => 'Fax' ,
'regexp' => '^[1-9][0-9]{2}-[1-9][0-9]{2}-[0-9]{4}$' ,
'format' => '\'NNN-NNN-NNNN\'' ,),
2008-07-16 17:23:53 +00:00
'postalcode' => array ( 'name' => $config [ 'postalzip' ],
2007-12-21 09:47:18 +00:00
'regexp' => '^(([A-Z][0-9][A-Z] [0-9][A-Z][0-9])|([0-9]{5}))$' ,
'format' => '\'ANA NAN\' or \'NNNNN\'' ,),
);
2007-11-17 21:59:59 +00:00
/* See if there is an edit request */
2009-01-19 23:33:54 +00:00
if ( $_SESSION [ 'embed_edit_id' ])
$eid = $_SESSION [ 'embed_edit_id' ];
else
$eid = intval ( $_GET [ 'edit' ]);
2007-11-17 21:59:59 +00:00
2009-01-19 23:33:54 +00:00
/* Force them to edit themselves if no eid found */
if ( $eid == 0 ) $eid = $_SESSION [ 'users_id' ];
if ( $_SESSION [ 'users_id' ] != $eid ) {
/* There is an edit request for someone other than the logged in user ,
* the user must be :
2007-11-17 21:59:59 +00:00
* - on the committee
* - with admin access */
user_auth_required ( 'committee' , 'admin' );
2009-01-19 23:33:54 +00:00
$ext_editor = true ;
2007-11-17 21:59:59 +00:00
} else {
2009-01-19 23:33:54 +00:00
/* Else, they are just editing themselves */
$ext_editor = false ;
2007-11-17 21:59:59 +00:00
}
2009-01-19 23:33:54 +00:00
$u = user_load ( $eid );
2007-11-17 21:59:59 +00:00
2007-11-16 06:30:42 +00:00
/* Load the fields the user can edit, and theones that are required */
$fields = array ();
$required = array ();
2007-12-21 09:47:18 +00:00
$errorfields = array ();
2007-11-16 06:30:42 +00:00
foreach ( $u [ 'types' ] as $t ) {
2007-11-26 02:28:45 +00:00
$fields = array_merge ( $fields ,
2007-11-16 06:30:42 +00:00
user_personal_fields ( $t ));
2007-11-26 02:28:45 +00:00
$required = array_merge ( $required ,
2007-11-16 06:30:42 +00:00
user_personal_required_fields ( $t ));
}
2007-11-17 21:59:59 +00:00
if ( committee_auth_has_access ( 'super' )) {
2007-11-26 02:28:45 +00:00
/* If the editer is super, let them see/edit/save the user/pass */
$fields [] = 'username' ;
2007-11-17 21:59:59 +00:00
$fields [] = 'password' ;
}
2007-11-16 06:30:42 +00:00
if ( $_POST [ 'action' ] == " save " )
{
2007-12-21 09:47:18 +00:00
$save = true ;
2007-11-16 06:30:42 +00:00
/* Set values */
foreach ( $fields as $f ) {
2007-12-21 09:47:18 +00:00
$u [ $f ] = stripslashes ( $_POST [ $f ]);
}
foreach ( $u as $f => $v ) {
if ( $v == '' ) continue ;
/* See if this field has a validate */
if ( isset ( $user_personal_fields [ $f ][ 'regexp' ])) {
/* Match the regex */
if ( ! ereg ( $user_personal_fields [ $f ][ 'regexp' ], $v )) {
/* Bad */
$save = false ;
$errorfields [] = $f ;
}
}
2007-11-16 06:30:42 +00:00
}
2007-11-29 18:37:40 +00:00
if ( ! array_key_exists ( 'username' , $u ) || $u [ 'username' ] == '' ) {
$u [ 'username' ] = $u [ 'email' ];
}
2007-11-17 21:59:59 +00:00
if ( in_array ( 'committee' , $u [ 'types' ])) {
/* Trying to save a committee member eh ? Well , we established above
* that we ' re allowed to be here , so go ahead and save it */
$u [ 'displayemail' ] = ( $_POST [ 'displayemail' ] == 'yes' ) ? 'yes' : 'no' ;
$u [ 'emailprivate' ] = mysql_escape_string ( stripslashes ( $_POST [ 'emailprivate' ]));
if ( committee_auth_has_access ( 'super' )) {
/* But only superusers can save these ones */
$u [ 'access_admin' ] = ( $_POST [ 'access_admin' ] == 'yes' ) ? 'yes' : 'no' ;
$u [ 'access_config' ] = ( $_POST [ 'access_config' ] == 'yes' ) ? 'yes' : 'no' ;
$u [ 'access_super' ] = ( $_POST [ 'access_super' ] == 'yes' ) ? 'yes' : 'no' ;
}
}
/* Check for an email collision */
$em = mysql_escape_string ( stripslashes ( $_POST [ 'email' ]));
2007-11-19 06:45:25 +00:00
$q = mysql_query ( " SELECT id FROM users WHERE email=' $em ' AND id!=' { $u [ 'id' ] } ' " );
2007-11-17 21:59:59 +00:00
if ( mysql_num_rows ( $q ) > 0 ) {
2008-10-17 19:34:11 +00:00
message_push ( error ( i18n ( " That email address is in use by another user " )));
2007-12-21 09:47:18 +00:00
$save = false ;
}
if ( $save == true ) {
2007-11-17 21:59:59 +00:00
user_save ( $u );
if ( $_SESSION [ 'last_page' ] == 'committee_management' ) {
header ( " location: { $config [ 'SFIABDIRECTORY' ] } /admin/committees.php " );
exit ;
}
2008-10-17 19:34:11 +00:00
message_push ( notice ( i18n ( " %1 %2 successfully updated " , array ( $_POST [ 'firstname' ], $_POST [ 'lastname' ]))));
2007-11-17 21:59:59 +00:00
}
2007-11-16 06:30:42 +00:00
}
2009-01-22 18:03:26 +00:00
$type = $_SESSION [ 'users_type' ];
2007-11-17 21:59:59 +00:00
//send the header
2009-01-19 23:33:54 +00:00
if ( $_SESSION [ 'embed' ] == true ) {
echo " <br/> " ;
display_messages ();
echo " <h3> " . i18n ( " Personal Information " ) . " </h3> " ;
echo " <br/> " ;
} else if ( $ext_editor == true ) {
$m = ( $type == 'committee' ) ? 'Committee' : $user_what [ $type ];
send_header ( " Personal Information " ,
2008-01-07 05:51:54 +00:00
array ( " $m Main " => " { $type } _main.php " )
2008-08-27 17:52:46 +00:00
, " edit_profile "
2007-11-17 21:59:59 +00:00
);
} else {
if ( $_SESSION [ 'last_page' ] == 'committee_management' ) {
send_header ( " Personal Information for { $u [ 'firstname' ] } { $u [ 'lastname' ] } " ,
array ( 'Committee Main' => 'committee_main.php' ,
'Administration' => 'admin/index.php' ,
'Committee Management' => 'admin/committees.php' )
2008-08-27 17:52:46 +00:00
, " edit_profile "
2007-11-17 21:59:59 +00:00
);
} else {
send_header ( " Personal Information for { $u [ 'firstname' ] } { $u [ 'lastname' ] } " ,
2009-01-22 18:03:26 +00:00
array ( $user_what [ $type ] . " Registration " => " { $type } _main.php " )
2008-08-27 17:52:46 +00:00
, " edit_profile "
2007-11-17 21:59:59 +00:00
);
}
}
2007-12-21 09:47:18 +00:00
foreach ( $errorfields as $f ) {
echo error ( i18n ( '\'%1\' must use the format: %2' ,
array ( i18n ( $user_personal_fields [ $f ][ 'name' ]),
$user_personal_fields [ $f ][ 'format' ])));
}
if ( count ( $errorfields )) {
echo error ( i18n ( 'Information will not be saved until the above errors are corrected' ));
2009-01-19 23:33:54 +00:00
} else if ( $ext_editor == false ) {
2007-11-17 21:59:59 +00:00
//output the current status
$newstatus = user_personal_info_status ( $u );
if ( $newstatus != 'complete' )
echo error ( i18n ( " Personal Information Incomplete " ));
else
echo happy ( i18n ( " Personal Information Complete " ));
2007-11-16 06:30:42 +00:00
}
2007-11-17 21:59:59 +00:00
if ( count ( $u [ 'types' ]) > 1 ) {
$roles = '' ;
foreach ( $u [ 'types' ] as $t ) {
$roles .= (( $roles == '' ) ? '' : ', ' ) . i18n ( $user_what [ $t ]);
}
echo notice ( i18n ( 'This user has multiple roles, the fields shown below are a combination of every role. Some may not apply to some roles. This user has the following roles:' ) . ' ' . $roles );
2007-11-16 06:30:42 +00:00
}
2007-12-21 09:47:18 +00:00
function item ( $user , $fname , $subtext = '' )
2007-11-16 06:30:42 +00:00
{
global $fields , $required ;
2007-12-21 09:47:18 +00:00
global $errorfields ;
global $user_personal_fields ;
2007-11-16 06:30:42 +00:00
if ( in_array ( $fname , $fields )) {
2007-12-21 09:47:18 +00:00
$text = i18n ( $user_personal_fields [ $fname ][ 'name' ]);
if ( in_array ( $fname , $errorfields )) $style = 'style="color:red;"' ;
echo " <td><span $style > $text </span>: " ;
2007-11-29 18:37:40 +00:00
if ( $subtext != '' ) echo '<br /><span style="font-size: 0.5em;">' . i18n ( $subtext ) . '</span>' ;
2008-02-23 03:28:43 +00:00
echo '</td><td>' ;
$req = in_array ( $fname , $required ) ? REQUIREDFIELD : '' ;
switch ( $user_personal_fields [ $fname ][ 'type' ]) {
case 'yesno' :
echo " <select name= \" $fname\ " > " ;
$sel = ( $user [ $fname ] == 'yes' ) ? 'selected="selected"' : '' ;
echo " <option value= \" yes \" $sel > " . i18n ( " Yes " ) . " </option> \n " ;
$sel = ( $user [ $fname ] == 'no' ) ? 'selected="selected"' : '' ;
echo " <option value= \" no \" $sel > " . i18n ( " No " ) . " </option> \n " ;
echo " </select> $req " ;
break ;
default :
echo " <input onchange= \" fieldChanged() \" type= \" text \" name= \" $fname\ " value = \ " { $user [ $fname ] } \" /> $req " ;
break ;
}
2007-11-16 06:30:42 +00:00
echo '</td>' ;
} else {
echo '<td></td><td></td>' ;
}
}
2009-01-19 23:33:54 +00:00
if ( $_SESSION [ 'embed' ] != true ) {
echo " <form name= \" personalform \" method= \" post \" action= \" user_personal.php?edit= $eid\ " > \n " ;
} else {
echo " <form name= \" personalform \" method= \" post \" action= \" { $_SESSION [ 'embed_submit_url' ] } \" > \n " ;
2007-11-17 21:59:59 +00:00
}
2009-01-19 23:33:54 +00:00
2007-11-16 06:30:42 +00:00
echo " <input type= \" hidden \" name= \" action \" value= \" save \" /> \n " ;
echo " <table> \n " ;
echo " <tr> \n " ;
2007-12-21 09:47:18 +00:00
item ( $u , 'firstname' );
item ( $u , 'lastname' );
2007-11-16 06:30:42 +00:00
echo " </tr> \n " ;
echo " <tr> \n " ;
2007-12-21 09:47:18 +00:00
item ( $u , 'email' );
2008-10-22 20:36:05 +00:00
item ( $u , 'salutation' );
2007-11-26 02:28:45 +00:00
echo " </tr> \n " ;
echo " <tr> \n " ;
2007-12-21 09:47:18 +00:00
item ( $u , 'username' , '(if different from Email)' );
item ( $u , 'password' );
2007-11-16 06:30:42 +00:00
echo " </tr> \n " ;
echo " <tr> \n " ;
2007-12-21 09:47:18 +00:00
item ( $u , 'address' );
item ( $u , 'city' );
2007-11-16 06:30:42 +00:00
echo " </tr> \n " ;
echo " <tr> \n " ;
2007-12-21 09:47:18 +00:00
item ( $u , 'address2' );
2007-11-16 06:30:42 +00:00
if ( in_array ( 'province' , $fields )) {
2008-07-16 17:23:53 +00:00
echo '<td>' . i18n ( $config [ 'provincestate' ]) . ': </td>' ;
2007-11-16 06:30:42 +00:00
echo '<td>' ;
2007-12-12 23:56:33 +00:00
emit_province_selector ( " province " , $u [ 'province' ], " onchange= \" fieldChanged() \" " );
2007-11-16 06:30:42 +00:00
if ( in_array ( 'province' , $required )) echo REQUIREDFIELD ;
echo '</td>' ;
} else {
echo '<td></td><td></td>' ;
}
echo " </tr> \n " ;
echo " <tr> \n " ;
2007-12-21 09:47:18 +00:00
item ( $u , 'postalcode' );
2007-11-16 06:30:42 +00:00
echo " <td></td><td></td> " ;
echo " </tr> \n " ;
echo " <tr> " ;
2007-12-21 09:47:18 +00:00
item ( $u , 'phonehome' );
item ( $u , 'phonecell' );
2007-11-16 06:30:42 +00:00
echo " </tr> \n " ;
echo " <tr> \n " ;
2007-12-21 09:47:18 +00:00
item ( $u , 'organization' );
item ( $u , 'phonework' );
2007-11-16 06:30:42 +00:00
echo " </tr> " ;
echo " <tr> \n " ;
2007-12-21 09:47:18 +00:00
item ( $u , 'fax' );
2008-02-15 23:08:33 +00:00
if ( in_array ( 'sex' , $fields )) {
echo '<td>' . i18n ( 'Gender' ) . ': </td>' ;
echo '<td>' ;
echo " <select name= \" sex \" > " ;
echo " <option value= \" \" > " . i18n ( " Choose " ) . " </option> \n " ;
if ( $u [ 'sex' ] == " male " ) $sel = " selected= \" selected \" " ; else $sel = " " ;
echo " <option value= \" male \" $sel > " . i18n ( " Male " ) . " </option> \n " ;
if ( $u [ 'sex' ] == " female " ) $sel = " selected= \" selected \" " ; else $sel = " " ;
echo " <option value= \" female \" $sel > " . i18n ( " Female " ) . " </option> \n " ;
echo " </select> " ;
if ( in_array ( 'sex' , $required )) echo REQUIREDFIELD ;
echo '</td>' ;
} else {
echo '<td></td><td></td>' ;
}
2007-11-16 06:30:42 +00:00
echo " </tr> " ;
2008-02-23 03:28:43 +00:00
echo " <tr> \n " ;
item ( $u , 'firstaid' );
item ( $u , 'cpr' );
echo " </tr> " ;
2007-11-16 06:30:42 +00:00
echo " <tr><td colspan= \" 4 \" ><hr /></td></tr> " ;
echo " </table> " ;
2007-11-17 21:59:59 +00:00
/* Committee specific fields */
if ( in_array ( 'committee' , $u [ 'types' ])) {
2007-11-26 02:28:45 +00:00
echo " <table> " ;
2007-11-17 21:59:59 +00:00
echo " <tr><td> " . i18n ( " Email (Private) " ) . " :</td><td><input size= \" 25 \" type= \" text \" name= \" emailprivate \" value= \" { $u [ 'emailprivate' ] } \" /></td></tr> \n " ;
echo " <tr><td> " . i18n ( " Display Emails " ) . " :</td><td> " ;
if ( $u [ 'displayemail' ] == " no " ) $checked = " checked= \" checked \" " ; else $checked = " " ;
echo " <input type= \" radio \" name= \" displayemail \" value= \" no \" $checked /> " . i18n ( " No " );
echo " " ;
if ( $u [ 'displayemail' ] == " yes " ) $checked = " checked= \" checked \" " ; else $checked = " " ;
echo " <input type= \" radio \" name= \" displayemail \" value= \" yes \" $checked /> " . i18n ( " Yes " );
if ( committee_auth_has_access ( " super " ))
{
/* If the user is a committee member , only print these fields
* if the editer has super access */
echo " <tr><td align= \" center \" colspan= \" 2 \" ><hr /></td></tr> " ;
echo " <tr><td> " . i18n ( " Access Controls " ) . " :</td><td> " ;
$ch = ( $u [ 'access_admin' ] == " yes " ) ? 'checked="checked"' : '' ;
echo " <input type= \" checkbox \" name= \" access_admin \" value= \" yes \" $ch /> " . i18n ( " Administration " ) . " <br /> " ;
$ch = ( $u [ 'access_config' ] == " yes " ) ? 'checked="checked"' : '' ;
echo " <input type= \" checkbox \" name= \" access_config \" value= \" yes \" $ch /> " . i18n ( " Configuration " ) . " <br /> " ;
$ch = ( $u [ 'access_super' ] == " yes " ) ? 'checked="checked"' : '' ;
echo " <input type= \" checkbox \" name= \" access_super \" value= \" yes \" $ch /> " . i18n ( " Superuser " ) . " <br /> " ;
echo " </td></tr> " ;
}
echo '</table>' ;
}
2007-11-16 06:30:42 +00:00
echo " <input type= \" submit \" value= \" " . i18n ( " Save Personal Information " ) . " \" /> \n " ;
echo " </form> " ;
echo " <br /> " ;
2009-01-19 23:33:54 +00:00
if ( $_SESSION [ 'embed' ] != true ) {
send_footer ();
}
2007-11-16 06:30:42 +00:00
?>