2003-12-07 20:28:41 -05:00
< ? php
2004-10-18 23:03:06 -04:00
require_once ( 'admin.php' );
2005-07-08 21:27:46 -04:00
require_once ( ABSPATH . WPINC . '/registration-functions.php' );
2004-04-25 00:24:06 -04:00
$title = __ ( 'Users' );
2004-12-24 15:55:36 -05:00
$parent_file = 'profile.php' ;
2006-02-12 02:53:23 -05:00
2005-07-08 21:27:46 -04:00
$action = $_REQUEST [ 'action' ];
2005-11-12 23:40:18 -05:00
$update = '' ;
2003-12-07 20:28:41 -05:00
switch ( $action ) {
2005-07-12 11:53:13 -04:00
case 'promote' :
2006-05-02 18:36:06 -04:00
check_admin_referer ( 'bulk-users' );
2004-05-17 16:34:05 -04:00
2005-07-12 11:53:13 -04:00
if ( empty ( $_POST [ 'users' ])) {
header ( 'Location: users.php' );
}
2003-12-23 15:21:29 -05:00
2005-07-12 11:53:13 -04:00
if ( ! current_user_can ( 'edit_users' ) )
die ( __ ( 'You can’t edit users.' ));
2003-12-23 15:21:29 -05:00
2005-11-12 23:40:18 -05:00
$userids = $_POST [ 'users' ];
$update = 'promote' ;
foreach ( $userids as $id ) {
2006-06-05 12:52:21 -04:00
if ( ! current_user_can ( 'edit_user' , $id ) )
die ( __ ( 'You can’t edit that user.' ));
2005-11-12 23:40:18 -05:00
// The new role of the current user must also have edit_users caps
if ( $id == $current_user -> id && ! $wp_roles -> role_objects [ $_POST [ 'new_role' ]] -> has_cap ( 'edit_users' )) {
$update = 'err_admin_role' ;
continue ;
}
$user = new WP_User ( $id );
$user -> set_role ( $_POST [ 'new_role' ]);
}
2006-02-12 02:53:23 -05:00
2005-11-12 23:40:18 -05:00
header ( 'Location: users.php?update=' . $update );
2005-03-09 17:49:42 -05:00
2005-07-12 11:53:13 -04:00
break ;
2003-12-23 15:21:29 -05:00
2005-07-12 11:53:13 -04:00
case 'dodelete' :
2003-12-23 15:21:29 -05:00
2006-05-02 18:36:06 -04:00
check_admin_referer ( 'delete-users' );
2005-07-12 11:53:13 -04:00
2005-11-12 23:40:18 -05:00
if ( empty ( $_POST [ 'users' ]) ) {
2005-07-12 11:53:13 -04:00
header ( 'Location: users.php' );
2004-05-17 08:38:19 -04:00
}
2003-12-23 15:21:29 -05:00
2006-06-05 12:52:21 -04:00
if ( ! current_user_can ( 'delete_users' ) )
2005-07-12 11:53:13 -04:00
die ( __ ( 'You can’t delete users.' ));
2003-12-23 15:21:29 -05:00
2005-07-12 11:53:13 -04:00
$userids = $_POST [ 'users' ];
2006-02-12 02:53:23 -05:00
2005-11-12 23:40:18 -05:00
$update = 'del' ;
foreach ( $userids as $id ) {
2006-06-05 12:52:21 -04:00
if ( ! current_user_can ( 'delete_user' , $id ) )
die ( __ ( 'You can’t delete that user.' ));
2005-11-12 23:40:18 -05:00
if ( $id == $current_user -> id ) {
$update = 'err_admin_del' ;
continue ;
}
switch ( $_POST [ 'delete_option' ]) {
2005-07-12 11:53:13 -04:00
case 'delete' :
wp_delete_user ( $id );
break ;
case 'reassign' :
wp_delete_user ( $id , $_POST [ 'reassign_user' ]);
break ;
}
}
2003-12-23 15:21:29 -05:00
2005-11-12 23:40:18 -05:00
header ( 'Location: users.php?update=' . $update );
2003-12-23 15:21:29 -05:00
break ;
2005-07-12 11:53:13 -04:00
case 'delete' :
2006-05-02 18:36:06 -04:00
check_admin_referer ( 'bulk-users' );
2004-05-17 16:34:05 -04:00
2005-07-12 11:53:13 -04:00
if ( empty ( $_POST [ 'users' ])) {
2003-12-07 20:28:41 -05:00
header ( 'Location: users.php' );
}
2006-06-05 12:52:21 -04:00
if ( ! current_user_can ( 'delete_users' ) )
2006-04-01 19:31:26 -05:00
$error = new WP_Error ( 'edit_users' , __ ( 'You can’t delete users.' ));
2003-12-07 20:28:41 -05:00
2005-07-12 11:53:13 -04:00
$userids = $_POST [ 'users' ];
2005-07-08 21:27:46 -04:00
2005-07-12 11:53:13 -04:00
include ( 'admin-header.php' );
?>
< form action = " " method = " post " name = " updateusers " id = " updateusers " >
2006-05-02 18:36:06 -04:00
< ? php wp_nonce_field ( 'delete-users' ) ?>
2005-07-12 11:53:13 -04:00
< div class = " wrap " >
2005-11-12 23:40:18 -05:00
< h2 >< ? php _e ( 'Delete Users' ); ?> </h2>
< p >< ? php _e ( 'You have specified these users for deletion:' ); ?> </p>
< ul >
< ? php
$go_delete = false ;
foreach ( $userids as $id ) {
$user = new WP_User ( $id );
if ( $id == $current_user -> id ) {
2005-12-12 17:48:30 -05:00
echo " <li> " . sprintf ( __ ( 'ID #%1s: %2s <strong>The current user will not be deleted.</strong>' ), $id , $user -> user_login ) . " </li> \n " ;
2005-11-12 23:40:18 -05:00
} else {
2005-12-12 17:48:30 -05:00
echo " <li><input type= \" hidden \" name= \" users[] \" value= \" { $id } \" /> " . sprintf ( __ ( 'ID #%1s: %2s' ), $id , $user -> user_login ) . " </li> \n " ;
2005-11-12 23:40:18 -05:00
$go_delete = true ;
2005-07-12 11:53:13 -04:00
}
2005-11-12 23:40:18 -05:00
}
$all_logins = $wpdb -> get_results ( " SELECT ID, user_login FROM $wpdb->users ORDER BY user_login " );
$user_dropdown = '<select name="reassign_user">' ;
foreach ( $all_logins as $login ) {
if ( $login -> ID == $current_user -> id || ! in_array ( $login -> ID , $userids ) ) {
$user_dropdown .= " <option value= \" { $login -> ID } \" > { $login -> user_login } </option> " ;
}
}
$user_dropdown .= '</select>' ;
?>
</ ul >
< ? php if ( $go_delete ) : ?>
< p >< ? php _e ( 'What should be done with posts and links owned by this user?' ); ?> </p>
2005-07-12 11:53:13 -04:00
< ul style = " list-style:none; " >
< li >< label >< input type = " radio " id = " delete_option0 " name = " delete_option " value = " delete " checked = " checked " />
< ? php _e ( 'Delete all posts and links.' ); ?> </label></li>
< li >< input type = " radio " id = " delete_option1 " name = " delete_option " value = " reassign " />
2005-12-02 17:37:02 -05:00
< ? php echo '<label for="delete_option1">' . __ ( 'Attribute all posts and links to:' ) . " </label> $user_dropdown " ; ?> </li>
2005-07-12 11:53:13 -04:00
</ ul >
< input type = " hidden " name = " action " value = " dodelete " />
< p class = " submit " >< input type = " submit " name = " submit " value = " <?php _e('Confirm Deletion'); ?> " /></ p >
2005-11-12 23:40:18 -05:00
< ? php else : ?>
< p >< ? php _e ( 'There are no valid users selected for deletion.' ); ?> </p>
< ? php endif ; ?>
2005-07-12 11:53:13 -04:00
</ div >
</ form >
< ? php
2003-12-07 20:28:41 -05:00
break ;
2005-07-12 11:53:13 -04:00
case 'adduser' :
2006-05-02 18:36:06 -04:00
check_admin_referer ( 'add-user' );
2006-02-12 02:53:23 -05:00
2006-06-05 12:52:21 -04:00
if ( ! current_user_can ( 'create_users' ) )
die ( __ ( 'You can’t create users.' ));
2006-04-01 19:31:26 -05:00
$user_id = add_user ();
if ( is_wp_error ( $user_id ) )
$errors = $user_id ;
else {
2005-07-12 11:53:13 -04:00
header ( 'Location: users.php?update=add' );
die ();
}
2003-12-07 20:28:41 -05:00
default :
2006-05-22 13:16:05 -04:00
wp_enqueue_script ( 'admin-users' );
2006-04-01 19:31:26 -05:00
2003-12-10 19:22:36 -05:00
include ( 'admin-header.php' );
2006-02-12 02:53:23 -05:00
2005-07-12 11:53:13 -04:00
$userids = $wpdb -> get_col ( " SELECT ID FROM $wpdb->users ; " );
2006-02-12 02:53:23 -05:00
2005-07-12 11:53:13 -04:00
foreach ( $userids as $userid ) {
$tmp_user = new WP_User ( $userid );
2005-09-06 23:16:08 -04:00
$roles = $tmp_user -> roles ;
2006-01-24 22:44:35 -05:00
$role = array_shift ( $roles );
2005-11-15 21:54:23 -05:00
$roleclasses [ $role ][ $tmp_user -> user_login ] = $tmp_user ;
2006-02-12 02:53:23 -05:00
}
2003-12-07 20:28:41 -05:00
?>
2004-07-21 03:23:45 -04:00
2005-07-12 11:53:13 -04:00
< ? php
if ( isset ( $_GET [ 'update' ])) :
switch ( $_GET [ 'update' ]) {
case 'del' :
?>
2005-08-07 21:13:22 -04:00
< div id = " message " class = " updated fade " >< p >< ? php _e ( 'User deleted.' ); ?> </p></div>
2005-07-12 11:53:13 -04:00
< ? php
break ;
case 'add' :
?>
2005-08-07 21:13:22 -04:00
< div id = " message " class = " updated fade " >< p >< ? php _e ( 'New user created.' ); ?> </p></div>
2005-07-12 11:53:13 -04:00
< ? php
break ;
case 'promote' :
?>
2005-08-07 21:13:22 -04:00
< div id = " message " class = " updated fade " >< p >< ? php _e ( 'Changed roles.' ); ?> </p></div>
2005-07-12 11:53:13 -04:00
< ? php
break ;
2005-11-12 23:40:18 -05:00
case 'err_admin_role' :
?>
< div id = " message " class = " error " >< p >< ? php _e ( " The current user's role must have user editing capabilities. " ); ?> </p></div>
< div id = " message " class = " updated fade " >< p >< ? php _e ( 'Other user roles have been changed.' ); ?> </p></div>
< ? php
break ;
case 'err_admin_del' :
?>
< div id = " message " class = " error " >< p >< ? php _e ( " You can't delete the current user. " ); ?> </p></div>
< div id = " message " class = " updated fade " >< p >< ? php _e ( 'Other users have been deleted.' ); ?> </p></div>
< ? php
break ;
2005-07-12 11:53:13 -04:00
}
endif ;
2006-04-01 19:31:26 -05:00
if ( is_wp_error ( $errors ) ) : ?>
2005-07-12 11:53:13 -04:00
< div class = " error " >
< ul >
< ? php
2006-04-01 19:48:14 -05:00
foreach ( $errors -> get_error_messages () as $message )
2006-04-01 19:31:26 -05:00
echo " <li> $message </li> " ;
2005-07-12 11:53:13 -04:00
?>
</ ul >
</ div >
< ? php
endif ;
?>
2006-02-12 02:53:23 -05:00
2005-07-12 11:53:13 -04:00
< form action = " " method = " post " name = " updateusers " id = " updateusers " >
2006-05-02 18:36:06 -04:00
< ? php wp_nonce_field ( 'bulk-users' ) ?>
2003-12-07 20:28:41 -05:00
< div class = " wrap " >
2005-07-12 11:53:13 -04:00
< h2 >< ? php _e ( 'User List by Role' ); ?> </h2>
2006-05-10 16:35:10 -04:00
< table class = " widefat " >
< ? php
foreach ( $roleclasses as $role => $roleclass ) {
ksort ( $roleclass );
?>
2005-07-12 11:53:13 -04:00
2006-05-10 16:35:10 -04:00
< tr >
< th colspan = " 8 " align = " left " >< h3 >< ? php echo $wp_roles -> role_names [ $role ]; ?> </h3></th>
</ tr >
< thead >
< tr >
< th style = " text-align: left " >< ? php _e ( 'ID' ) ?> </th>
< th style = " text-align: left " >< ? php _e ( 'Username' ) ?> </th>
< th style = " text-align: left " >< ? php _e ( 'Name' ) ?> </th>
< th style = " text-align: left " >< ? php _e ( 'E-mail' ) ?> </th>
< th style = " text-align: left " >< ? php _e ( 'Website' ) ?> </th>
< th >< ? php _e ( 'Posts' ) ?> </th>
< th >& nbsp ; </ th >
</ tr >
</ thead >
< tbody id = " role-<?php echo $role ; ?> " >< ? php
$style = '' ;
foreach ( $roleclass as $user_object ) {
$style = ( ' class="alternate"' == $style ) ? '' : ' class="alternate"' ;
echo " \n \t " . user_row ( $user_object , $style );
}
2006-02-12 02:53:23 -05:00
2006-05-10 16:35:10 -04:00
?>
2006-02-12 02:53:23 -05:00
2006-05-10 16:35:10 -04:00
</ tbody >
2003-12-07 20:28:41 -05:00
< ? php
2006-05-10 16:35:10 -04:00
}
2003-12-07 20:28:41 -05:00
?>
2006-05-10 16:35:10 -04:00
</ table >
2004-09-21 19:36:27 -04:00
2005-07-12 11:53:13 -04:00
< h2 >< ? php _e ( 'Update Users' ); ?> </h2>
< ul style = " list-style:none; " >
2005-08-19 21:49:24 -04:00
< li >< input type = " radio " name = " action " id = " action0 " value = " delete " /> < label for = " action0 " >< ? php _e ( 'Delete checked users.' ); ?> </label></li>
2006-04-01 19:31:26 -05:00
< li >
< input type = " radio " name = " action " id = " action1 " value = " promote " /> < label for = " action1 " >< ? php _e ( 'Set the Role of checked users to:' ); ?> </label>
< select name = " new_role " >< ? php wp_dropdown_roles (); ?> </select>
</ li >
2005-07-12 11:53:13 -04:00
</ ul >
2005-08-19 21:49:24 -04:00
< p class = " submit " >< input type = " submit " value = " <?php _e('Update »'); ?> " /></ p >
2003-12-07 20:28:41 -05:00
</ div >
2005-07-12 11:53:13 -04:00
</ form >
2003-12-07 20:28:41 -05:00
< div class = " wrap " >
2004-07-21 03:44:55 -04:00
< h2 >< ? php _e ( 'Add New User' ) ?> </h2>
2005-12-02 17:37:02 -05:00
< ? php echo '<p>' . sprintf ( __ ( 'Users can <a href="%1$s">register themselves</a> or you can manually create users here.' ), get_settings ( 'siteurl' ) . '/wp-register.php' ) . '</p>' ; ?>
2003-12-23 15:21:29 -05:00
< form action = " " method = " post " name = " adduser " id = " adduser " >
2006-05-02 18:36:06 -04:00
< ? php wp_nonce_field ( 'add-user' ) ?>
2004-05-05 04:27:43 -04:00
< table class = " editform " width = " 100% " cellspacing = " 2 " cellpadding = " 5 " >
2003-12-23 15:21:29 -05:00
< tr >
2004-05-05 04:27:43 -04:00
< th scope = " row " width = " 33% " >< ? php _e ( 'Nickname' ) ?>
2003-12-23 15:21:29 -05:00
< input name = " action " type = " hidden " id = " action " value = " adduser " /></ th >
2005-07-12 11:53:13 -04:00
< td width = " 66% " >< input name = " user_login " type = " text " id = " user_login " value = " <?php echo $new_user_login ; ?> " /></ td >
2003-12-23 15:21:29 -05:00
</ tr >
< tr >
2004-04-25 00:24:06 -04:00
< th scope = " row " >< ? php _e ( 'First Name' ) ?> </th>
2005-09-13 20:03:02 -04:00
< td >< input name = " first_name " type = " text " id = " first_name " value = " <?php echo $new_user_firstname ; ?> " /></ td >
2003-12-23 15:21:29 -05:00
</ tr >
< tr >
2004-04-25 00:24:06 -04:00
< th scope = " row " >< ? php _e ( 'Last Name' ) ?> </th>
2005-09-13 20:03:02 -04:00
< td >< input name = " last_name " type = " text " id = " last_name " value = " <?php echo $new_user_lastname ; ?> " /></ td >
2003-12-23 15:21:29 -05:00
</ tr >
< tr >
2004-05-05 04:27:43 -04:00
< th scope = " row " >< ? php _e ( 'E-mail' ) ?> </th>
2005-07-12 11:53:13 -04:00
< td >< input name = " email " type = " text " id = " email " value = " <?php echo $new_user_email ; ?> " /></ td >
2003-12-23 15:21:29 -05:00
</ tr >
< tr >
2004-05-05 04:27:43 -04:00
< th scope = " row " >< ? php _e ( 'Website' ) ?> </th>
2005-09-13 20:03:02 -04:00
< td >< input name = " url " type = " text " id = " url " value = " <?php echo $new_user_uri ; ?> " /></ td >
2003-12-23 15:21:29 -05:00
</ tr >
2005-03-09 17:49:42 -05:00
< ? php
$show_password_fields = apply_filters ( 'show_password_fields' , true );
if ( $show_password_fields ) :
?>
2003-12-23 15:21:29 -05:00
< tr >
2004-04-25 00:24:06 -04:00
< th scope = " row " >< ? php _e ( 'Password (twice)' ) ?> </th>
2004-01-21 17:44:28 -05:00
< td >< input name = " pass1 " type = " password " id = " pass1 " />
2003-12-23 15:21:29 -05:00
< br />
2004-01-21 17:44:28 -05:00
< input name = " pass2 " type = " password " id = " pass2 " /></ td >
2003-12-23 15:21:29 -05:00
</ tr >
2005-03-09 17:49:42 -05:00
< ? php endif ; ?>
2006-04-01 19:31:26 -05:00
< tr >
< th scope = " row " >< ? php _e ( 'Role' ); ?> </th>
< td >< select name = " role " id = " role " >< ? php wp_dropdown_roles ( get_settings ( 'default_role' ) ); ?> </select></td>
</ tr >
2003-12-23 15:21:29 -05:00
</ table >
2004-04-28 00:59:54 -04:00
< p class = " submit " >
2006-04-01 19:31:26 -05:00
< input name = " adduser " type = " submit " id = " addusersub " value = " <?php _e('Add User »') ?> " />
2003-12-23 15:21:29 -05:00
</ p >
</ form >
2006-04-01 19:31:26 -05:00
< div id = " ajax-response " ></ div >
2003-12-07 20:28:41 -05:00
</ div >
< ? php
break ;
}
2004-08-22 19:24:50 -04:00
2003-12-10 19:22:36 -05:00
include ( 'admin-footer.php' );
2004-12-24 15:55:36 -05:00
?>