Merge pull request #1682 from fabrixxm/issue-1625
admin: allow deletion of any users but yourself
This commit is contained in:
commit
5549dd1dbe
|
@ -792,7 +792,7 @@ function admin_page_users_post(&$a){
|
||||||
$nu_nickname = ( x($_POST, 'new_user_nickname') ? $_POST['new_user_nickname'] : '');
|
$nu_nickname = ( x($_POST, 'new_user_nickname') ? $_POST['new_user_nickname'] : '');
|
||||||
$nu_email = ( x($_POST, 'new_user_email') ? $_POST['new_user_email'] : '');
|
$nu_email = ( x($_POST, 'new_user_email') ? $_POST['new_user_email'] : '');
|
||||||
|
|
||||||
check_form_security_token_redirectOnErr('/admin/users', 'admin_users');
|
check_form_security_token_redirectOnErr($a->get_baseurl().'/admin/users', 'admin_users');
|
||||||
|
|
||||||
if (!($nu_name==="") && !($nu_email==="") && !($nu_nickname==="")) {
|
if (!($nu_name==="") && !($nu_email==="") && !($nu_nickname==="")) {
|
||||||
require_once('include/user.php');
|
require_once('include/user.php');
|
||||||
|
@ -946,11 +946,8 @@ function admin_page_users(&$a){
|
||||||
intval($a->pager['itemspage'])
|
intval($a->pager['itemspage'])
|
||||||
);
|
);
|
||||||
|
|
||||||
function _setup_users($e){
|
$adminlist = explode(",", str_replace(" ", "", $a->config['admin_email']));
|
||||||
$a = get_app();
|
$_setup_users = function ($e) use ($adminlist){
|
||||||
|
|
||||||
$adminlist = explode(",", str_replace(" ", "", $a->config['admin_email']));
|
|
||||||
|
|
||||||
$accounts = Array(
|
$accounts = Array(
|
||||||
t('Normal Account'),
|
t('Normal Account'),
|
||||||
t('Soapbox Account'),
|
t('Soapbox Account'),
|
||||||
|
@ -963,10 +960,11 @@ function admin_page_users(&$a){
|
||||||
$e['lastitem_date'] = relative_date($e['lastitem_date']);
|
$e['lastitem_date'] = relative_date($e['lastitem_date']);
|
||||||
//$e['is_admin'] = ($e['email'] === $a->config['admin_email']);
|
//$e['is_admin'] = ($e['email'] === $a->config['admin_email']);
|
||||||
$e['is_admin'] = in_array($e['email'], $adminlist);
|
$e['is_admin'] = in_array($e['email'], $adminlist);
|
||||||
|
$e['is_deletable'] = (intval($e['uid']) != local_user());
|
||||||
$e['deleted'] = ($e['account_removed']?relative_date($e['account_expires_on']):False);
|
$e['deleted'] = ($e['account_removed']?relative_date($e['account_expires_on']):False);
|
||||||
return $e;
|
return $e;
|
||||||
}
|
};
|
||||||
$users = array_map("_setup_users", $users);
|
$users = array_map($_setup_users, $users);
|
||||||
|
|
||||||
|
|
||||||
// Get rid of dashes in key names, Smarty3 can't handle them
|
// Get rid of dashes in key names, Smarty3 can't handle them
|
||||||
|
|
|
@ -70,18 +70,18 @@
|
||||||
<td class='lastitem_date'>{{$u.lastitem_date}}</td>
|
<td class='lastitem_date'>{{$u.lastitem_date}}</td>
|
||||||
<td class='login_date'>{{$u.page_flags}} {{if $u.is_admin}}({{$siteadmin}}){{/if}} {{if $u.account_expired}}({{$accountexpired}}){{/if}}</td>
|
<td class='login_date'>{{$u.page_flags}} {{if $u.is_admin}}({{$siteadmin}}){{/if}} {{if $u.account_expired}}({{$accountexpired}}){{/if}}</td>
|
||||||
<td class="checkbox">
|
<td class="checkbox">
|
||||||
{{if $u.is_admin}}
|
{{if $u.is_deletable}}
|
||||||
|
<input type="checkbox" class="users_ckbx" id="id_user_{{$u.uid}}" name="user[]" value="{{$u.uid}}"/></td>
|
||||||
{{else}}
|
{{else}}
|
||||||
<input type="checkbox" class="users_ckbx" id="id_user_{{$u.uid}}" name="user[]" value="{{$u.uid}}"/></td>
|
|
||||||
{{/if}}
|
{{/if}}
|
||||||
<td class="tools">
|
<td class="tools">
|
||||||
{{if $u.is_admin}}
|
{{if $u.is_deletable}}
|
||||||
|
<a href="{{$baseurl}}/admin/users/block/{{$u.uid}}?t={{$form_security_token}}" title='{{if $u.blocked}}{{$unblock}}{{else}}{{$block}}{{/if}}'><span class='icon block {{if $u.blocked==0}}dim{{/if}}'></span></a>
|
||||||
{{else}}
|
<a href="{{$baseurl}}/admin/users/delete/{{$u.uid}}?t={{$form_security_token}}" title='{{$delete}}' onclick="return confirm_delete('{{$u.name}}')"><span class='icon drop'></span></a>
|
||||||
<a href="{{$baseurl}}/admin/users/block/{{$u.uid}}?t={{$form_security_token}}" title='{{if $u.blocked}}{{$unblock}}{{else}}{{$block}}{{/if}}'><span class='icon block {{if $u.blocked==0}}dim{{/if}}'></span></a>
|
{{else}}
|
||||||
<a href="{{$baseurl}}/admin/users/delete/{{$u.uid}}?t={{$form_security_token}}" title='{{$delete}}' onclick="return confirm_delete('{{$u.name}}')"><span class='icon drop'></span></a>
|
|
||||||
{{/if}}
|
{{/if}}
|
||||||
</td>
|
</td>
|
||||||
</tr>
|
</tr>
|
||||||
{{/foreach}}
|
{{/foreach}}
|
||||||
|
|
|
@ -70,18 +70,18 @@
|
||||||
<td class='lastitem_date'>{{$u.lastitem_date}}</td>
|
<td class='lastitem_date'>{{$u.lastitem_date}}</td>
|
||||||
<td class='login_date'>{{$u.page_flags}} {{if $u.is_admin}}({{$siteadmin}}){{/if}} {{if $u.account_expired}}({{$accountexpired}}){{/if}}</td>
|
<td class='login_date'>{{$u.page_flags}} {{if $u.is_admin}}({{$siteadmin}}){{/if}} {{if $u.account_expired}}({{$accountexpired}}){{/if}}</td>
|
||||||
<td class="checkbox">
|
<td class="checkbox">
|
||||||
{{if $u.is_admin}}
|
{{if $u.is_deletable}}
|
||||||
|
<input type="checkbox" class="users_ckbx" id="id_user_{{$u.uid}}" name="user[]" value="{{$u.uid}}"/></td>
|
||||||
{{else}}
|
{{else}}
|
||||||
<input type="checkbox" class="users_ckbx" id="id_user_{{$u.uid}}" name="user[]" value="{{$u.uid}}"/></td>
|
|
||||||
{{/if}}
|
{{/if}}
|
||||||
<td class="tools">
|
<td class="tools">
|
||||||
{{if $u.is_admin}}
|
{{if $u.is_deletable}}
|
||||||
|
<a href="{{$baseurl}}/admin/users/block/{{$u.uid}}?t={{$form_security_token}}" title='{{if $u.blocked}}{{$unblock}}{{else}}{{$block}}{{/if}}'><span class='icon {{if $u.blocked==0}}unlock{{else}}lock{{/if}}'></span></a>
|
||||||
{{else}}
|
<a href="{{$baseurl}}/admin/users/delete/{{$u.uid}}?t={{$form_security_token}}" title='{{$delete}}' onclick="return confirm_delete('{{$u.name}}')"><span class='icon delete'></span></a>
|
||||||
<a href="{{$baseurl}}/admin/users/block/{{$u.uid}}?t={{$form_security_token}}" title='{{if $u.blocked}}{{$unblock}}{{else}}{{$block}}{{/if}}'><span class='icon {{if $u.blocked==0}}unlock{{else}}lock{{/if}}'></span></a>
|
{{else}}
|
||||||
<a href="{{$baseurl}}/admin/users/delete/{{$u.uid}}?t={{$form_security_token}}" title='{{$delete}}' onclick="return confirm_delete('{{$u.name}}')"><span class='icon delete'></span></a>
|
|
||||||
{{/if}}
|
{{/if}}
|
||||||
</td>
|
</td>
|
||||||
</tr>
|
</tr>
|
||||||
{{/foreach}}
|
{{/foreach}}
|
||||||
|
|
Loading…
Reference in a new issue