2010-07-30 16:34:54 -04:00
< ? php
/**
* Multisite users administration panel .
*
* @ package WordPress
* @ subpackage Multisite
* @ since 3.0 . 0
*/
2010-11-10 09:27:15 -05:00
/** Load WordPress Administration Bootstrap */
2013-09-24 20:18:11 -04:00
require_once ( dirname ( __FILE__ ) . '/admin.php' );
2010-07-30 16:34:54 -04:00
2010-11-10 09:27:15 -05:00
if ( ! is_multisite () )
wp_die ( __ ( 'Multisite support is not enabled.' ) );
2010-12-16 03:43:22 -05:00
if ( ! current_user_can ( 'manage_network_users' ) )
2015-04-19 23:27:27 -04:00
wp_die ( __ ( 'You do not have permission to access this page.' ), 403 );
2010-12-16 03:43:22 -05:00
2015-05-29 16:17:26 -04:00
/**
*
* @ param array $users
*/
2011-08-17 22:29:06 -04:00
function confirm_delete_users ( $users ) {
$current_user = wp_get_current_user ();
2015-03-06 23:40:28 -05:00
if ( ! is_array ( $users ) || empty ( $users ) ) {
2011-08-17 22:29:06 -04:00
return false ;
2015-03-06 23:40:28 -05:00
}
2011-08-17 22:29:06 -04:00
?>
< h2 >< ? php esc_html_e ( 'Users' ); ?> </h2>
2015-03-06 23:40:28 -05:00
2015-03-31 14:45:28 -04:00
< ? php if ( 1 == count ( $users ) ) : ?>
2015-03-06 23:40:28 -05:00
< p >< ? php _e ( 'You have chosen to delete the user from all networks and sites.' ); ?> </p>
2015-03-31 14:45:28 -04:00
< ? php else : ?>
< p >< ? php _e ( 'You have chosen to delete the following users from all networks and sites.' ); ?> </p>
2015-03-06 23:40:28 -05:00
< ? php endif ; ?>
2015-03-10 11:32:27 -04:00
2011-08-17 22:29:06 -04:00
< form action = " users.php?action=dodelete " method = " post " >
< input type = " hidden " name = " dodelete " />
< ? php
wp_nonce_field ( 'ms-users-delete' );
$site_admins = get_super_admins ();
2015-03-06 23:40:28 -05:00
$admin_out = '<option value="' . esc_attr ( $current_user -> ID ) . '">' . $current_user -> user_login . '</option>' ; ?>
< table class = " form-table " >
< ? php foreach ( ( $allusers = ( array ) $_POST [ 'allusers' ] ) as $user_id ) {
2014-10-25 09:52:19 -04:00
if ( $user_id != '' && $user_id != '0' ) {
$delete_user = get_userdata ( $user_id );
2011-08-17 22:29:06 -04:00
2015-03-06 23:40:28 -05:00
if ( ! current_user_can ( 'delete_user' , $delete_user -> ID ) ) {
2011-08-17 22:29:06 -04:00
wp_die ( sprintf ( __ ( 'Warning! User %s cannot be deleted.' ), $delete_user -> user_login ) );
2015-03-06 23:40:28 -05:00
}
2011-08-17 22:29:06 -04:00
2015-03-06 23:40:28 -05:00
if ( in_array ( $delete_user -> user_login , $site_admins ) ) {
wp_die ( sprintf ( __ ( 'Warning! User cannot be deleted. The user %s is a network administrator.' ), '<em>' . $delete_user -> user_login . '</em>' ) );
}
?>
< tr >
< th scope = " row " >< ? php echo $delete_user -> user_login ; ?>
< ? php echo '<input type="hidden" name="user[]" value="' . esc_attr ( $user_id ) . '" />' . " \n " ; ?>
</ th >
< ? php $blogs = get_blogs_of_user ( $user_id , true );
2011-08-17 22:29:06 -04:00
2015-03-06 23:40:28 -05:00
if ( ! empty ( $blogs ) ) {
2011-08-17 22:29:06 -04:00
?>
2015-04-01 09:26:28 -04:00
< td >< fieldset >< p >< legend >< ? php printf (
/* translators: user login */
__ ( 'What should be done with content owned by %s?' ),
'<em>' . $delete_user -> user_login . '</em>'
); ?> </legend></p>
2011-08-17 22:29:06 -04:00
< ? php
foreach ( ( array ) $blogs as $key => $details ) {
2013-12-01 06:58:09 -05:00
$blog_users = get_users ( array ( 'blog_id' => $details -> userblog_id , 'fields' => array ( 'ID' , 'user_login' ) ) );
2011-08-17 22:29:06 -04:00
if ( is_array ( $blog_users ) && ! empty ( $blog_users ) ) {
$user_site = " <a href=' " . esc_url ( get_home_url ( $details -> userblog_id ) ) . " '> { $details -> blogname } </a> " ;
2015-02-22 21:29:26 -05:00
$user_dropdown = '<label for="reassign_user" class="screen-reader-text">' . __ ( 'Select a user' ) . '</label>' ;
$user_dropdown .= " <select name='blog[ $user_id ][ $key ]' id='reassign_user'> " ;
2011-08-17 22:29:06 -04:00
$user_list = '' ;
foreach ( $blog_users as $user ) {
2015-03-06 23:40:28 -05:00
if ( ! in_array ( $user -> ID , $allusers ) ) {
2011-08-17 22:29:06 -04:00
$user_list .= " <option value=' { $user -> ID } '> { $user -> user_login } </option> " ;
2015-03-06 23:40:28 -05:00
}
2011-08-17 22:29:06 -04:00
}
2015-03-06 23:40:28 -05:00
if ( '' == $user_list ) {
2011-08-17 22:29:06 -04:00
$user_list = $admin_out ;
2015-03-06 23:40:28 -05:00
}
2011-08-17 22:29:06 -04:00
$user_dropdown .= $user_list ;
$user_dropdown .= " </select> \n " ;
?>
< ul style = " list-style:none; " >
< li >< ? php printf ( __ ( 'Site: %s' ), $user_site ); ?> </li>
< li >< label >< input type = " radio " id = " delete_option0 " name = " delete[<?php echo $details->userblog_id . '][' . $delete_user->ID ?>] " value = " delete " checked = " checked " />
2014-03-05 14:20:14 -05:00
< ? php _e ( 'Delete all content.' ); ?> </label></li>
2011-08-17 22:29:06 -04:00
< li >< label >< input type = " radio " id = " delete_option1 " name = " delete[<?php echo $details->userblog_id . '][' . $delete_user->ID ?>] " value = " reassign " />
2015-05-03 12:18:28 -04:00
< ? php _e ( 'Attribute all content to:' ) . " </label> \n " . $user_dropdown ; ?> </li>
2011-08-17 22:29:06 -04:00
</ ul >
< ? php
}
}
2015-03-06 23:40:28 -05:00
echo " </fieldset></td></tr> " ;
} else {
?>
< td >< fieldset >< p >< legend >< ? php _e ( 'User has no sites or content and will be deleted.' ); ?> </legend></p>
< ? php } ?>
</ tr >
< ? php
2011-08-17 22:29:06 -04:00
}
}
2015-03-06 23:40:28 -05:00
?>
</ table >
< ? php
2014-06-28 00:43:16 -04:00
/** This action is documented in wp-admin/users.php */
do_action ( 'delete_user_form' , $current_user );
2015-03-31 14:45:28 -04:00
if ( 1 == count ( $users ) ) : ?>
2015-03-06 23:40:28 -05:00
< p >< ? php _e ( 'Once you hit “Confirm Deletion”, the user will be permanently removed.' ); ?> </p>
2015-03-31 14:45:28 -04:00
< ? php else : ?>
< p >< ? php _e ( 'Once you hit “Confirm Deletion”, these users will be permanently removed.' ); ?> </p>
2015-03-06 23:40:28 -05:00
< ? php endif ;
2015-03-10 11:32:27 -04:00
2011-08-17 22:29:06 -04:00
submit_button ( __ ( 'Confirm Deletion' ), 'delete' );
?>
</ form >
2015-03-10 11:32:27 -04:00
< ? php
2011-08-17 22:29:06 -04:00
return true ;
}
if ( isset ( $_GET [ 'action' ] ) ) {
2013-10-30 12:04:09 -04:00
/** This action is documented in wp-admin/network/edit.php */
do_action ( 'wpmuadminedit' );
2011-08-17 22:29:06 -04:00
switch ( $_GET [ 'action' ] ) {
case 'deleteuser' :
if ( ! current_user_can ( 'manage_network_users' ) )
2015-04-19 23:27:27 -04:00
wp_die ( __ ( 'You do not have permission to access this page.' ), 403 );
2011-08-17 22:29:06 -04:00
check_admin_referer ( 'deleteuser' );
$id = intval ( $_GET [ 'id' ] );
if ( $id != '0' && $id != '1' ) {
$_POST [ 'allusers' ] = array ( $id ); // confirm_delete_users() can only handle with arrays
$title = __ ( 'Users' );
$parent_file = 'users.php' ;
2013-09-24 20:18:11 -04:00
require_once ( ABSPATH . 'wp-admin/admin-header.php' );
2011-08-17 22:29:06 -04:00
echo '<div class="wrap">' ;
confirm_delete_users ( $_POST [ 'allusers' ] );
echo '</div>' ;
2015-03-10 11:32:27 -04:00
require_once ( ABSPATH . 'wp-admin/admin-footer.php' );
} else {
2011-08-17 22:29:06 -04:00
wp_redirect ( network_admin_url ( 'users.php' ) );
}
exit ();
case 'allusers' :
if ( ! current_user_can ( 'manage_network_users' ) )
2015-04-19 23:27:27 -04:00
wp_die ( __ ( 'You do not have permission to access this page.' ), 403 );
2011-08-17 22:29:06 -04:00
if ( ( isset ( $_POST [ 'action' ]) || isset ( $_POST [ 'action2' ] ) ) && isset ( $_POST [ 'allusers' ] ) ) {
check_admin_referer ( 'bulk-users-network' );
2012-03-02 17:01:41 -05:00
$doaction = $_POST [ 'action' ] != - 1 ? $_POST [ 'action' ] : $_POST [ 'action2' ];
2011-08-17 22:29:06 -04:00
$userfunction = '' ;
2014-10-25 09:52:19 -04:00
foreach ( ( array ) $_POST [ 'allusers' ] as $user_id ) {
if ( ! empty ( $user_id ) ) {
2011-08-17 22:29:06 -04:00
switch ( $doaction ) {
case 'delete' :
if ( ! current_user_can ( 'delete_users' ) )
2015-04-19 23:27:27 -04:00
wp_die ( __ ( 'You do not have permission to access this page.' ), 403 );
2011-08-17 22:29:06 -04:00
$title = __ ( 'Users' );
$parent_file = 'users.php' ;
2013-09-24 20:18:11 -04:00
require_once ( ABSPATH . 'wp-admin/admin-header.php' );
2011-08-17 22:29:06 -04:00
echo '<div class="wrap">' ;
confirm_delete_users ( $_POST [ 'allusers' ] );
echo '</div>' ;
2013-09-24 20:18:11 -04:00
require_once ( ABSPATH . 'wp-admin/admin-footer.php' );
2012-03-02 17:03:15 -05:00
exit ();
2011-08-17 22:29:06 -04:00
case 'spam' :
2014-10-25 09:52:19 -04:00
$user = get_userdata ( $user_id );
2012-08-02 21:06:05 -04:00
if ( is_super_admin ( $user -> ID ) )
2011-08-17 22:29:06 -04:00
wp_die ( sprintf ( __ ( 'Warning! User cannot be modified. The user %s is a network administrator.' ), esc_html ( $user -> user_login ) ) );
$userfunction = 'all_spam' ;
2014-10-25 09:52:19 -04:00
$blogs = get_blogs_of_user ( $user_id , true );
foreach ( ( array ) $blogs as $details ) {
2011-08-17 22:29:06 -04:00
if ( $details -> userblog_id != $current_site -> blog_id ) // main blog not a spam !
update_blog_status ( $details -> userblog_id , 'spam' , '1' );
}
2014-10-25 09:52:19 -04:00
update_user_status ( $user_id , 'spam' , '1' );
2011-08-17 22:29:06 -04:00
break ;
case 'notspam' :
$userfunction = 'all_notspam' ;
2014-10-25 09:52:19 -04:00
$blogs = get_blogs_of_user ( $user_id , true );
foreach ( ( array ) $blogs as $details )
2011-08-17 22:29:06 -04:00
update_blog_status ( $details -> userblog_id , 'spam' , '0' );
2014-10-25 09:52:19 -04:00
update_user_status ( $user_id , 'spam' , '0' );
2011-08-17 22:29:06 -04:00
break ;
}
}
}
2011-12-10 13:26:48 -05:00
wp_safe_redirect ( add_query_arg ( array ( 'updated' => 'true' , 'action' => $userfunction ), wp_get_referer () ) );
2011-08-17 22:29:06 -04:00
} else {
$location = network_admin_url ( 'users.php' );
if ( ! empty ( $_REQUEST [ 'paged' ] ) )
$location = add_query_arg ( 'paged' , ( int ) $_REQUEST [ 'paged' ], $location );
wp_redirect ( $location );
}
exit ();
case 'dodelete' :
check_admin_referer ( 'ms-users-delete' );
if ( ! ( current_user_can ( 'manage_network_users' ) && current_user_can ( 'delete_users' ) ) )
2015-04-19 23:27:27 -04:00
wp_die ( __ ( 'You do not have permission to access this page.' ), 403 );
2011-08-17 22:29:06 -04:00
if ( ! empty ( $_POST [ 'blog' ] ) && is_array ( $_POST [ 'blog' ] ) ) {
foreach ( $_POST [ 'blog' ] as $id => $users ) {
foreach ( $users as $blogid => $user_id ) {
if ( ! current_user_can ( 'delete_user' , $id ) )
continue ;
if ( ! empty ( $_POST [ 'delete' ] ) && 'reassign' == $_POST [ 'delete' ][ $blogid ][ $id ] )
remove_user_from_blog ( $id , $blogid , $user_id );
else
remove_user_from_blog ( $id , $blogid );
}
}
}
$i = 0 ;
if ( is_array ( $_POST [ 'user' ] ) && ! empty ( $_POST [ 'user' ] ) )
foreach ( $_POST [ 'user' ] as $id ) {
if ( ! current_user_can ( 'delete_user' , $id ) )
continue ;
wpmu_delete_user ( $id );
$i ++ ;
}
if ( $i == 1 )
$deletefunction = 'delete' ;
else
$deletefunction = 'all_delete' ;
wp_redirect ( add_query_arg ( array ( 'updated' => 'true' , 'action' => $deletefunction ), network_admin_url ( 'users.php' ) ) );
exit ();
}
}
2011-01-16 16:47:24 -05:00
$wp_list_table = _get_list_table ( 'WP_MS_Users_List_Table' );
2011-01-25 14:20:20 -05:00
$pagenum = $wp_list_table -> get_pagenum ();
2010-08-22 07:22:46 -04:00
$wp_list_table -> prepare_items ();
2011-01-25 14:20:20 -05:00
$total_pages = $wp_list_table -> get_pagination_arg ( 'total_pages' );
2010-07-30 16:34:54 -04:00
2011-01-26 04:56:17 -05:00
if ( $pagenum > $total_pages && $total_pages > 0 ) {
2011-01-25 14:20:20 -05:00
wp_redirect ( add_query_arg ( 'paged' , $total_pages ) );
exit ;
}
2010-07-30 16:34:54 -04:00
$title = __ ( 'Users' );
$parent_file = 'users.php' ;
2015-03-10 11:32:27 -04:00
add_screen_option ( 'per_page' );
2011-10-02 02:59:36 -04:00
2011-11-30 21:22:07 -05:00
get_current_screen () -> add_help_tab ( array (
'id' => 'overview' ,
'title' => __ ( 'Overview' ),
'content' =>
'<p>' . __ ( 'This table shows all users across the network and the sites to which they are assigned.' ) . '</p>' .
2013-11-24 21:05:10 -05:00
'<p>' . __ ( 'Hover over any user on the list to make the edit links appear. The Edit link on the left will take you to their Edit User profile page; the Edit link on the right by any site name goes to an Edit Site screen for that site.' ) . '</p>' .
2011-11-30 21:22:07 -05:00
'<p>' . __ ( 'You can also go to the user’s profile page by clicking on the individual username.' ) . '</p>' .
'<p>' . __ ( 'You can sort the table by clicking on any of the bold headings and switch between list and excerpt views by using the icons in the upper right.' ) . '</p>' .
'<p>' . __ ( 'The bulk action will permanently delete selected users, or mark/unmark those selected as spam. Spam users will have posts removed and will be unable to sign up again with the same email addresses.' ) . '</p>' .
'<p>' . __ ( 'You can make an existing user an additional super admin by going to the Edit User profile page and checking the box to grant that privilege.' ) . '</p>'
) );
2011-11-02 01:33:53 -04:00
2011-11-02 17:32:16 -04:00
get_current_screen () -> set_help_sidebar (
2010-07-30 16:34:54 -04:00
'<p><strong>' . __ ( 'For more information:' ) . '</strong></p>' .
2015-04-12 17:29:32 -04:00
'<p>' . __ ( '<a href="https://codex.wordpress.org/Network_Admin_Users_Screen" target="_blank">Documentation on Network Users</a>' ) . '</p>' .
2014-03-07 23:14:15 -05:00
'<p>' . __ ( '<a href="https://wordpress.org/support/forum/multisite/" target="_blank">Support Forums</a>' ) . '</p>'
2010-07-30 16:34:54 -04:00
);
2013-09-24 20:18:11 -04:00
require_once ( ABSPATH . 'wp-admin/admin-header.php' );
2010-08-11 17:54:51 -04:00
if ( isset ( $_REQUEST [ 'updated' ] ) && $_REQUEST [ 'updated' ] == 'true' && ! empty ( $_REQUEST [ 'action' ] ) ) {
2010-07-30 16:34:54 -04:00
?>
2015-04-01 18:06:28 -04:00
< div id = " message " class = " updated notice is-dismissible " >< p >
2010-07-30 16:34:54 -04:00
< ? php
2010-08-11 17:54:51 -04:00
switch ( $_REQUEST [ 'action' ] ) {
2010-07-30 16:34:54 -04:00
case 'delete' :
_e ( 'User deleted.' );
break ;
case 'all_spam' :
_e ( 'Users marked as spam.' );
break ;
case 'all_notspam' :
_e ( 'Users removed from spam.' );
break ;
case 'all_delete' :
_e ( 'Users deleted.' );
break ;
case 'add' :
_e ( 'User added.' );
break ;
}
?>
</ p ></ div >
< ? php
}
?>
2010-08-11 17:54:51 -04:00
< div class = " wrap " >
2011-05-10 15:18:16 -04:00
< h2 >< ? php esc_html_e ( 'Users' );
if ( current_user_can ( 'create_users' ) ) : ?>
2011-05-11 20:22:22 -04:00
< a href = " <?php echo network_admin_url('user-new.php'); ?> " class = " add-new-h2 " >< ? php echo esc_html_x ( 'Add New' , 'user' ); ?> </a><?php
2011-05-10 15:18:16 -04:00
endif ;
2011-12-08 18:02:33 -05:00
2011-05-10 15:18:16 -04:00
if ( ! empty ( $usersearch ) )
printf ( '<span class="subtitle">' . __ ( 'Search results for “%s”' ) . '</span>' , esc_html ( $usersearch ) );
2010-07-30 16:34:54 -04:00
?>
</ h2 >
2010-11-10 09:27:15 -05:00
< ? php $wp_list_table -> views (); ?>
2015-01-15 23:16:24 -05:00
< form method = " get " class = " search-form " >
2012-03-24 00:54:58 -04:00
< ? php $wp_list_table -> search_box ( __ ( 'Search Users' ), 'all-user' ); ?>
2010-07-30 16:34:54 -04:00
</ form >
2014-05-19 01:04:16 -04:00
< form id = " form-user-list " action = " users.php?action=allusers " method = " post " >
2010-08-22 07:22:46 -04:00
< ? php $wp_list_table -> display (); ?>
2010-08-11 17:54:51 -04:00
</ form >
</ div >
2010-07-30 16:34:54 -04:00
2013-09-24 20:18:11 -04:00
< ? php require_once ( ABSPATH . 'wp-admin/admin-footer.php' ); ?>