2010-07-30 16:34:54 -04:00
< ? php
/**
* Multisite users administration panel .
*
* @ package WordPress
* @ subpackage Multisite
* @ since 3.0 . 0
*/
2010-11-10 09:27:15 -05:00
/** Load WordPress Administration Bootstrap */
2013-09-24 20:18:11 -04:00
require_once ( dirname ( __FILE__ ) . '/admin.php' );
2010-07-30 16:34:54 -04:00
2010-12-16 03:43:22 -05:00
if ( ! current_user_can ( 'manage_network_users' ) )
2016-06-29 11:16:29 -04:00
wp_die ( __ ( 'Sorry, you are not allowed to access this page.' ), 403 );
2010-12-16 03:43:22 -05:00
2011-08-17 22:29:06 -04:00
if ( isset ( $_GET [ 'action' ] ) ) {
2013-10-30 12:04:09 -04:00
/** This action is documented in wp-admin/network/edit.php */
do_action ( 'wpmuadminedit' );
2011-08-17 22:29:06 -04:00
switch ( $_GET [ 'action' ] ) {
case 'deleteuser' :
if ( ! current_user_can ( 'manage_network_users' ) )
2016-06-29 11:16:29 -04:00
wp_die ( __ ( 'Sorry, you are not allowed to access this page.' ), 403 );
2011-08-17 22:29:06 -04:00
check_admin_referer ( 'deleteuser' );
$id = intval ( $_GET [ 'id' ] );
if ( $id != '0' && $id != '1' ) {
$_POST [ 'allusers' ] = array ( $id ); // confirm_delete_users() can only handle with arrays
$title = __ ( 'Users' );
$parent_file = 'users.php' ;
2013-09-24 20:18:11 -04:00
require_once ( ABSPATH . 'wp-admin/admin-header.php' );
2011-08-17 22:29:06 -04:00
echo '<div class="wrap">' ;
confirm_delete_users ( $_POST [ 'allusers' ] );
echo '</div>' ;
2015-03-10 11:32:27 -04:00
require_once ( ABSPATH . 'wp-admin/admin-footer.php' );
} else {
2011-08-17 22:29:06 -04:00
wp_redirect ( network_admin_url ( 'users.php' ) );
}
exit ();
case 'allusers' :
if ( ! current_user_can ( 'manage_network_users' ) )
2016-06-29 11:16:29 -04:00
wp_die ( __ ( 'Sorry, you are not allowed to access this page.' ), 403 );
2011-08-17 22:29:06 -04:00
if ( ( isset ( $_POST [ 'action' ]) || isset ( $_POST [ 'action2' ] ) ) && isset ( $_POST [ 'allusers' ] ) ) {
check_admin_referer ( 'bulk-users-network' );
2012-03-02 17:01:41 -05:00
$doaction = $_POST [ 'action' ] != - 1 ? $_POST [ 'action' ] : $_POST [ 'action2' ];
2011-08-17 22:29:06 -04:00
$userfunction = '' ;
2014-10-25 09:52:19 -04:00
foreach ( ( array ) $_POST [ 'allusers' ] as $user_id ) {
if ( ! empty ( $user_id ) ) {
2011-08-17 22:29:06 -04:00
switch ( $doaction ) {
case 'delete' :
if ( ! current_user_can ( 'delete_users' ) )
2016-06-29 11:16:29 -04:00
wp_die ( __ ( 'Sorry, you are not allowed to access this page.' ), 403 );
2011-08-17 22:29:06 -04:00
$title = __ ( 'Users' );
$parent_file = 'users.php' ;
2013-09-24 20:18:11 -04:00
require_once ( ABSPATH . 'wp-admin/admin-header.php' );
2011-08-17 22:29:06 -04:00
echo '<div class="wrap">' ;
confirm_delete_users ( $_POST [ 'allusers' ] );
echo '</div>' ;
2013-09-24 20:18:11 -04:00
require_once ( ABSPATH . 'wp-admin/admin-footer.php' );
2012-03-02 17:03:15 -05:00
exit ();
2011-08-17 22:29:06 -04:00
case 'spam' :
2014-10-25 09:52:19 -04:00
$user = get_userdata ( $user_id );
2012-08-02 21:06:05 -04:00
if ( is_super_admin ( $user -> ID ) )
2011-08-17 22:29:06 -04:00
wp_die ( sprintf ( __ ( 'Warning! User cannot be modified. The user %s is a network administrator.' ), esc_html ( $user -> user_login ) ) );
$userfunction = 'all_spam' ;
2014-10-25 09:52:19 -04:00
$blogs = get_blogs_of_user ( $user_id , true );
foreach ( ( array ) $blogs as $details ) {
2016-10-19 00:47:30 -04:00
if ( $details -> userblog_id != get_network () -> site_id ) // main blog not a spam !
2011-08-17 22:29:06 -04:00
update_blog_status ( $details -> userblog_id , 'spam' , '1' );
}
2014-10-25 09:52:19 -04:00
update_user_status ( $user_id , 'spam' , '1' );
2011-08-17 22:29:06 -04:00
break ;
case 'notspam' :
$userfunction = 'all_notspam' ;
2014-10-25 09:52:19 -04:00
$blogs = get_blogs_of_user ( $user_id , true );
foreach ( ( array ) $blogs as $details )
2011-08-17 22:29:06 -04:00
update_blog_status ( $details -> userblog_id , 'spam' , '0' );
2014-10-25 09:52:19 -04:00
update_user_status ( $user_id , 'spam' , '0' );
2011-08-17 22:29:06 -04:00
break ;
}
}
}
2016-09-23 16:33:30 -04:00
if ( ! in_array ( $doaction , array ( 'delete' , 'spam' , 'notspam' ), true ) ) {
$sendback = wp_get_referer ();
$user_ids = ( array ) $_POST [ 'allusers' ];
2016-10-26 10:37:29 -04:00
/** This action is documented in wp-admin/network/site-themes.php */
$sendback = apply_filters ( 'handle_network_bulk_actions-' . get_current_screen () -> id , $sendback , $doaction , $user_ids );
2016-09-23 16:33:30 -04:00
wp_safe_redirect ( $sendback );
exit ();
}
2011-12-10 13:26:48 -05:00
wp_safe_redirect ( add_query_arg ( array ( 'updated' => 'true' , 'action' => $userfunction ), wp_get_referer () ) );
2011-08-17 22:29:06 -04:00
} else {
$location = network_admin_url ( 'users.php' );
if ( ! empty ( $_REQUEST [ 'paged' ] ) )
$location = add_query_arg ( 'paged' , ( int ) $_REQUEST [ 'paged' ], $location );
wp_redirect ( $location );
}
exit ();
case 'dodelete' :
check_admin_referer ( 'ms-users-delete' );
if ( ! ( current_user_can ( 'manage_network_users' ) && current_user_can ( 'delete_users' ) ) )
2016-06-29 11:16:29 -04:00
wp_die ( __ ( 'Sorry, you are not allowed to access this page.' ), 403 );
2011-08-17 22:29:06 -04:00
if ( ! empty ( $_POST [ 'blog' ] ) && is_array ( $_POST [ 'blog' ] ) ) {
foreach ( $_POST [ 'blog' ] as $id => $users ) {
foreach ( $users as $blogid => $user_id ) {
if ( ! current_user_can ( 'delete_user' , $id ) )
continue ;
if ( ! empty ( $_POST [ 'delete' ] ) && 'reassign' == $_POST [ 'delete' ][ $blogid ][ $id ] )
remove_user_from_blog ( $id , $blogid , $user_id );
else
remove_user_from_blog ( $id , $blogid );
}
}
}
$i = 0 ;
if ( is_array ( $_POST [ 'user' ] ) && ! empty ( $_POST [ 'user' ] ) )
2015-08-25 16:28:22 -04:00
foreach ( $_POST [ 'user' ] as $id ) {
2011-08-17 22:29:06 -04:00
if ( ! current_user_can ( 'delete_user' , $id ) )
continue ;
wpmu_delete_user ( $id );
$i ++ ;
}
if ( $i == 1 )
$deletefunction = 'delete' ;
else
$deletefunction = 'all_delete' ;
wp_redirect ( add_query_arg ( array ( 'updated' => 'true' , 'action' => $deletefunction ), network_admin_url ( 'users.php' ) ) );
exit ();
}
}
2011-01-16 16:47:24 -05:00
$wp_list_table = _get_list_table ( 'WP_MS_Users_List_Table' );
2011-01-25 14:20:20 -05:00
$pagenum = $wp_list_table -> get_pagenum ();
2010-08-22 07:22:46 -04:00
$wp_list_table -> prepare_items ();
2011-01-25 14:20:20 -05:00
$total_pages = $wp_list_table -> get_pagination_arg ( 'total_pages' );
2010-07-30 16:34:54 -04:00
2011-01-26 04:56:17 -05:00
if ( $pagenum > $total_pages && $total_pages > 0 ) {
2011-01-25 14:20:20 -05:00
wp_redirect ( add_query_arg ( 'paged' , $total_pages ) );
exit ;
}
2010-07-30 16:34:54 -04:00
$title = __ ( 'Users' );
$parent_file = 'users.php' ;
2015-03-10 11:32:27 -04:00
add_screen_option ( 'per_page' );
2011-10-02 02:59:36 -04:00
2011-11-30 21:22:07 -05:00
get_current_screen () -> add_help_tab ( array (
'id' => 'overview' ,
'title' => __ ( 'Overview' ),
'content' =>
'<p>' . __ ( 'This table shows all users across the network and the sites to which they are assigned.' ) . '</p>' .
2013-11-24 21:05:10 -05:00
'<p>' . __ ( 'Hover over any user on the list to make the edit links appear. The Edit link on the left will take you to their Edit User profile page; the Edit link on the right by any site name goes to an Edit Site screen for that site.' ) . '</p>' .
2011-11-30 21:22:07 -05:00
'<p>' . __ ( 'You can also go to the user’s profile page by clicking on the individual username.' ) . '</p>' .
2016-06-10 17:43:29 -04:00
'<p>' . __ ( 'You can sort the table by clicking on any of the table headings and switch between list and excerpt views by using the icons above the users list.' ) . '</p>' .
2011-11-30 21:22:07 -05:00
'<p>' . __ ( 'The bulk action will permanently delete selected users, or mark/unmark those selected as spam. Spam users will have posts removed and will be unable to sign up again with the same email addresses.' ) . '</p>' .
'<p>' . __ ( 'You can make an existing user an additional super admin by going to the Edit User profile page and checking the box to grant that privilege.' ) . '</p>'
) );
2011-11-02 01:33:53 -04:00
2011-11-02 17:32:16 -04:00
get_current_screen () -> set_help_sidebar (
2010-07-30 16:34:54 -04:00
'<p><strong>' . __ ( 'For more information:' ) . '</strong></p>' .
2016-10-04 03:03:31 -04:00
'<p>' . __ ( '<a href="https://codex.wordpress.org/Network_Admin_Users_Screen">Documentation on Network Users</a>' ) . '</p>' .
'<p>' . __ ( '<a href="https://wordpress.org/support/forum/multisite/">Support Forums</a>' ) . '</p>'
2010-07-30 16:34:54 -04:00
);
2015-10-06 21:28:25 -04:00
get_current_screen () -> set_screen_reader_content ( array (
'heading_views' => __ ( 'Filter users list' ),
'heading_pagination' => __ ( 'Users list navigation' ),
'heading_list' => __ ( 'Users list' ),
) );
2013-09-24 20:18:11 -04:00
require_once ( ABSPATH . 'wp-admin/admin-header.php' );
2010-08-11 17:54:51 -04:00
2015-09-17 08:33:26 -04:00
if ( isset ( $_REQUEST [ 'updated' ] ) && $_REQUEST [ 'updated' ] == 'true' && ! empty ( $_REQUEST [ 'action' ] ) ) {
2010-07-30 16:34:54 -04:00
?>
2015-04-01 18:06:28 -04:00
< div id = " message " class = " updated notice is-dismissible " >< p >
2010-07-30 16:34:54 -04:00
< ? php
2015-09-17 08:33:26 -04:00
switch ( $_REQUEST [ 'action' ] ) {
2010-07-30 16:34:54 -04:00
case 'delete' :
_e ( 'User deleted.' );
break ;
case 'all_spam' :
_e ( 'Users marked as spam.' );
break ;
case 'all_notspam' :
_e ( 'Users removed from spam.' );
break ;
case 'all_delete' :
_e ( 'Users deleted.' );
break ;
case 'add' :
_e ( 'User added.' );
break ;
}
?>
</ p ></ div >
< ? php
}
?>
2010-08-11 17:54:51 -04:00
< div class = " wrap " >
2015-06-27 11:41:25 -04:00
< h1 >< ? php esc_html_e ( 'Users' );
2011-05-10 15:18:16 -04:00
if ( current_user_can ( 'create_users' ) ) : ?>
2015-07-03 12:42:24 -04:00
< a href = " <?php echo network_admin_url('user-new.php'); ?> " class = " page-title-action " >< ? php echo esc_html_x ( 'Add New' , 'user' ); ?> </a><?php
2011-05-10 15:18:16 -04:00
endif ;
2011-12-08 18:02:33 -05:00
2016-01-14 15:06:25 -05:00
if ( strlen ( $usersearch ) ) {
/* translators: %s: search keywords */
printf ( '<span class="subtitle">' . __ ( 'Search results for “%s”' ) . '</span>' , esc_html ( $usersearch ) );
}
2010-07-30 16:34:54 -04:00
?>
2015-06-27 11:41:25 -04:00
</ h1 >
2010-07-30 16:34:54 -04:00
2010-11-10 09:27:15 -05:00
< ? php $wp_list_table -> views (); ?>
2015-01-15 23:16:24 -05:00
< form method = " get " class = " search-form " >
2012-03-24 00:54:58 -04:00
< ? php $wp_list_table -> search_box ( __ ( 'Search Users' ), 'all-user' ); ?>
2010-07-30 16:34:54 -04:00
</ form >
2014-05-19 01:04:16 -04:00
< form id = " form-user-list " action = " users.php?action=allusers " method = " post " >
2010-08-22 07:22:46 -04:00
< ? php $wp_list_table -> display (); ?>
2010-08-11 17:54:51 -04:00
</ form >
</ div >
2010-07-30 16:34:54 -04:00
2013-09-24 20:18:11 -04:00
< ? php require_once ( ABSPATH . 'wp-admin/admin-footer.php' ); ?>