2010-07-30 22:34:54 +02:00
< ? php
/**
* Multisite users administration panel .
*
* @ package WordPress
* @ subpackage Multisite
* @ since 3.0 . 0
*/
2010-11-10 15:27:15 +01:00
/** Load WordPress Administration Bootstrap */
2020-02-06 07:33:11 +01:00
require_once __DIR__ . '/admin.php' ;
2010-07-30 22:34:54 +02:00
2017-12-01 00:11:00 +01:00
if ( ! current_user_can ( 'manage_network_users' ) ) {
2016-06-29 17:16:29 +02:00
wp_die ( __ ( 'Sorry, you are not allowed to access this page.' ), 403 );
2017-12-01 00:11:00 +01:00
}
2010-12-16 09:43:22 +01:00
2011-08-18 04:29:06 +02:00
if ( isset ( $_GET [ 'action' ] ) ) {
2013-10-30 17:04:09 +01:00
/** This action is documented in wp-admin/network/edit.php */
do_action ( 'wpmuadminedit' );
2011-08-18 04:29:06 +02:00
switch ( $_GET [ 'action' ] ) {
case 'deleteuser' :
2017-12-01 00:11:00 +01:00
if ( ! current_user_can ( 'manage_network_users' ) ) {
2016-06-29 17:16:29 +02:00
wp_die ( __ ( 'Sorry, you are not allowed to access this page.' ), 403 );
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
check_admin_referer ( 'deleteuser' );
2020-10-08 23:15:13 +02:00
$id = ( int ) $_GET [ 'id' ];
2020-05-24 11:17:09 +02:00
if ( $id > 1 ) {
2020-01-29 01:45:18 +01:00
$_POST [ 'allusers' ] = array ( $id ); // confirm_delete_users() can only handle arrays.
2017-12-01 00:11:00 +01:00
$title = __ ( 'Users' );
$parent_file = 'users.php' ;
2020-02-06 07:33:11 +01:00
require_once ABSPATH . 'wp-admin/admin-header.php' ;
2011-08-18 04:29:06 +02:00
echo '<div class="wrap">' ;
confirm_delete_users ( $_POST [ 'allusers' ] );
echo '</div>' ;
2020-02-06 07:33:11 +01:00
require_once ABSPATH . 'wp-admin/admin-footer.php' ;
2015-03-10 16:32:27 +01:00
} else {
2011-08-18 04:29:06 +02:00
wp_redirect ( network_admin_url ( 'users.php' ) );
}
2020-05-26 11:37:10 +02:00
exit ;
2011-08-18 04:29:06 +02:00
case 'allusers' :
2017-12-01 00:11:00 +01:00
if ( ! current_user_can ( 'manage_network_users' ) ) {
2016-06-29 17:16:29 +02:00
wp_die ( __ ( 'Sorry, you are not allowed to access this page.' ), 403 );
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
2017-12-01 00:11:00 +01:00
if ( ( isset ( $_POST [ 'action' ] ) || isset ( $_POST [ 'action2' ] ) ) && isset ( $_POST [ 'allusers' ] ) ) {
2011-08-18 04:29:06 +02:00
check_admin_referer ( 'bulk-users-network' );
2020-02-09 17:55:09 +01:00
$doaction = - 1 != $_POST [ 'action' ] ? $_POST [ 'action' ] : $_POST [ 'action2' ];
2011-08-18 04:29:06 +02:00
$userfunction = '' ;
2014-10-25 15:52:19 +02:00
foreach ( ( array ) $_POST [ 'allusers' ] as $user_id ) {
2017-12-01 00:11:00 +01:00
if ( ! empty ( $user_id ) ) {
2011-08-18 04:29:06 +02:00
switch ( $doaction ) {
case 'delete' :
2017-12-01 00:11:00 +01:00
if ( ! current_user_can ( 'delete_users' ) ) {
2016-06-29 17:16:29 +02:00
wp_die ( __ ( 'Sorry, you are not allowed to access this page.' ), 403 );
2017-12-01 00:11:00 +01:00
}
$title = __ ( 'Users' );
2011-08-18 04:29:06 +02:00
$parent_file = 'users.php' ;
2020-02-06 07:33:11 +01:00
require_once ABSPATH . 'wp-admin/admin-header.php' ;
2011-08-18 04:29:06 +02:00
echo '<div class="wrap">' ;
confirm_delete_users ( $_POST [ 'allusers' ] );
echo '</div>' ;
2020-02-06 07:33:11 +01:00
require_once ABSPATH . 'wp-admin/admin-footer.php' ;
2020-05-26 11:37:10 +02:00
exit ;
2011-08-18 04:29:06 +02:00
case 'spam' :
2014-10-25 15:52:19 +02:00
$user = get_userdata ( $user_id );
2017-12-01 00:11:00 +01:00
if ( is_super_admin ( $user -> ID ) ) {
I18N: Improve translator comments.
* Add missing translator comments.
* Fix placement of some translator comments. Translator comments should be on the line directly above the line containing the translation function call for optimal compatibility with various `.pot` file generation tools. The CS auto-fixing, which changed some inconsistent function calls to multi-line function calls, is part of the reason why this was no longer the case for a select group of translator comments.
Includes minor code layout fixes.
Polyglots, rejoice! All WordPress core files now have translator comments for all strings with placeholders!
Props jrf, subrataemfluence, GaryJ, webdados, Dency, swissspidy, alvarogois, marcomartins, mihaiiceyro, vladwtz, niq1982, flipkeijzer, michielatyoast, chandrapatel, thrijith, joshuanoyce, FesoVik, tessak22, bhaktirajdev, cleancoded, dhavalkasvala, garrett-eclipse, bibliofille, socalchristina, priyankkpatel, 5hel2l2y, adamsilverstein, JeffPaul, pierlo, SergeyBiryukov.
Fixes #44360.
Built from https://develop.svn.wordpress.org/trunk@45926
git-svn-id: http://core.svn.wordpress.org/trunk@45737 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2019-09-01 19:13:59 +02:00
wp_die (
sprintf (
2019-09-03 02:41:05 +02:00
/* translators: %s: User login. */
I18N: Improve translator comments.
* Add missing translator comments.
* Fix placement of some translator comments. Translator comments should be on the line directly above the line containing the translation function call for optimal compatibility with various `.pot` file generation tools. The CS auto-fixing, which changed some inconsistent function calls to multi-line function calls, is part of the reason why this was no longer the case for a select group of translator comments.
Includes minor code layout fixes.
Polyglots, rejoice! All WordPress core files now have translator comments for all strings with placeholders!
Props jrf, subrataemfluence, GaryJ, webdados, Dency, swissspidy, alvarogois, marcomartins, mihaiiceyro, vladwtz, niq1982, flipkeijzer, michielatyoast, chandrapatel, thrijith, joshuanoyce, FesoVik, tessak22, bhaktirajdev, cleancoded, dhavalkasvala, garrett-eclipse, bibliofille, socalchristina, priyankkpatel, 5hel2l2y, adamsilverstein, JeffPaul, pierlo, SergeyBiryukov.
Fixes #44360.
Built from https://develop.svn.wordpress.org/trunk@45926
git-svn-id: http://core.svn.wordpress.org/trunk@45737 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2019-09-01 19:13:59 +02:00
__ ( 'Warning! User cannot be modified. The user %s is a network administrator.' ),
esc_html ( $user -> user_login )
)
);
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
$userfunction = 'all_spam' ;
2017-12-01 00:11:00 +01:00
$blogs = get_blogs_of_user ( $user_id , true );
2019-08-01 13:28:54 +02:00
2014-10-25 15:52:19 +02:00
foreach ( ( array ) $blogs as $details ) {
2020-02-09 17:55:09 +01:00
if ( get_network () -> site_id != $details -> userblog_id ) { // Main blog is not a spam!
2011-08-18 04:29:06 +02:00
update_blog_status ( $details -> userblog_id , 'spam' , '1' );
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
}
2019-08-01 13:28:54 +02:00
$user_data = $user -> to_array ();
$user_data [ 'spam' ] = '1' ;
wp_update_user ( $user_data );
2017-12-01 00:11:00 +01:00
break ;
2011-08-18 04:29:06 +02:00
case 'notspam' :
2019-08-01 13:28:54 +02:00
$user = get_userdata ( $user_id );
2011-08-18 04:29:06 +02:00
$userfunction = 'all_notspam' ;
2017-12-01 00:11:00 +01:00
$blogs = get_blogs_of_user ( $user_id , true );
2019-08-01 13:28:54 +02:00
2017-12-01 00:11:00 +01:00
foreach ( ( array ) $blogs as $details ) {
2011-08-18 04:29:06 +02:00
update_blog_status ( $details -> userblog_id , 'spam' , '0' );
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
2019-08-01 13:28:54 +02:00
$user_data = $user -> to_array ();
$user_data [ 'spam' ] = '0' ;
wp_update_user ( $user_data );
2017-12-01 00:11:00 +01:00
break ;
2011-08-18 04:29:06 +02:00
}
}
}
2016-09-23 22:33:30 +02:00
if ( ! in_array ( $doaction , array ( 'delete' , 'spam' , 'notspam' ), true ) ) {
$sendback = wp_get_referer ();
$user_ids = ( array ) $_POST [ 'allusers' ];
2020-05-24 11:17:09 +02:00
2016-10-26 16:37:29 +02:00
/** This action is documented in wp-admin/network/site-themes.php */
2019-07-05 03:45:56 +02:00
$sendback = apply_filters ( 'handle_network_bulk_actions-' . get_current_screen () -> id , $sendback , $doaction , $user_ids ); // phpcs:ignore WordPress.NamingConventions.ValidHookName.UseUnderscores
2016-09-23 22:33:30 +02:00
wp_safe_redirect ( $sendback );
2020-05-26 11:37:10 +02:00
exit ;
2016-09-23 22:33:30 +02:00
}
2017-12-01 00:11:00 +01:00
wp_safe_redirect (
add_query_arg (
array (
'updated' => 'true' ,
'action' => $userfunction ,
2018-08-17 03:51:36 +02:00
),
wp_get_referer ()
2017-12-01 00:11:00 +01:00
)
);
2011-08-18 04:29:06 +02:00
} else {
$location = network_admin_url ( 'users.php' );
2017-12-01 00:11:00 +01:00
if ( ! empty ( $_REQUEST [ 'paged' ] ) ) {
2011-08-18 04:29:06 +02:00
$location = add_query_arg ( 'paged' , ( int ) $_REQUEST [ 'paged' ], $location );
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
wp_redirect ( $location );
}
2020-05-26 11:37:10 +02:00
exit ;
2011-08-18 04:29:06 +02:00
case 'dodelete' :
check_admin_referer ( 'ms-users-delete' );
2017-12-01 00:11:00 +01:00
if ( ! ( current_user_can ( 'manage_network_users' ) && current_user_can ( 'delete_users' ) ) ) {
2016-06-29 17:16:29 +02:00
wp_die ( __ ( 'Sorry, you are not allowed to access this page.' ), 403 );
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
if ( ! empty ( $_POST [ 'blog' ] ) && is_array ( $_POST [ 'blog' ] ) ) {
foreach ( $_POST [ 'blog' ] as $id => $users ) {
foreach ( $users as $blogid => $user_id ) {
2017-12-01 00:11:00 +01:00
if ( ! current_user_can ( 'delete_user' , $id ) ) {
2011-08-18 04:29:06 +02:00
continue ;
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
2020-05-24 11:17:09 +02:00
if ( ! empty ( $_POST [ 'delete' ] ) && 'reassign' === $_POST [ 'delete' ][ $blogid ][ $id ] ) {
2020-02-04 20:36:04 +01:00
remove_user_from_blog ( $id , $blogid , ( int ) $user_id );
2017-12-01 00:11:00 +01:00
} else {
2011-08-18 04:29:06 +02:00
remove_user_from_blog ( $id , $blogid );
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
}
}
}
2020-05-24 11:17:09 +02:00
2011-08-18 04:29:06 +02:00
$i = 0 ;
2020-05-24 11:17:09 +02:00
2017-12-01 00:11:00 +01:00
if ( is_array ( $_POST [ 'user' ] ) && ! empty ( $_POST [ 'user' ] ) ) {
2015-08-25 22:28:22 +02:00
foreach ( $_POST [ 'user' ] as $id ) {
2017-12-01 00:11:00 +01:00
if ( ! current_user_can ( 'delete_user' , $id ) ) {
2011-08-18 04:29:06 +02:00
continue ;
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
wpmu_delete_user ( $id );
$i ++ ;
}
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
2020-05-24 11:17:09 +02:00
if ( 1 === $i ) {
2011-08-18 04:29:06 +02:00
$deletefunction = 'delete' ;
2017-12-01 00:11:00 +01:00
} else {
2011-08-18 04:29:06 +02:00
$deletefunction = 'all_delete' ;
2017-12-01 00:11:00 +01:00
}
2011-08-18 04:29:06 +02:00
2017-12-01 00:11:00 +01:00
wp_redirect (
add_query_arg (
array (
'updated' => 'true' ,
'action' => $deletefunction ,
2018-08-17 03:51:36 +02:00
),
network_admin_url ( 'users.php' )
2017-12-01 00:11:00 +01:00
)
);
2020-05-26 11:37:10 +02:00
exit ;
2011-08-18 04:29:06 +02:00
}
}
2017-12-01 00:11:00 +01:00
$wp_list_table = _get_list_table ( 'WP_MS_Users_List_Table' );
$pagenum = $wp_list_table -> get_pagenum ();
2010-08-22 13:22:46 +02:00
$wp_list_table -> prepare_items ();
2011-01-25 20:20:20 +01:00
$total_pages = $wp_list_table -> get_pagination_arg ( 'total_pages' );
2010-07-30 22:34:54 +02:00
2011-01-26 10:56:17 +01:00
if ( $pagenum > $total_pages && $total_pages > 0 ) {
2011-01-25 20:20:20 +01:00
wp_redirect ( add_query_arg ( 'paged' , $total_pages ) );
exit ;
}
2017-12-01 00:11:00 +01:00
$title = __ ( 'Users' );
2010-07-30 22:34:54 +02:00
$parent_file = 'users.php' ;
2015-03-10 16:32:27 +01:00
add_screen_option ( 'per_page' );
2011-10-02 08:59:36 +02:00
2017-12-01 00:11:00 +01:00
get_current_screen () -> add_help_tab (
array (
'id' => 'overview' ,
'title' => __ ( 'Overview' ),
'content' =>
'<p>' . __ ( 'This table shows all users across the network and the sites to which they are assigned.' ) . '</p>' .
'<p>' . __ ( 'Hover over any user on the list to make the edit links appear. The Edit link on the left will take you to their Edit User profile page; the Edit link on the right by any site name goes to an Edit Site screen for that site.' ) . '</p>' .
'<p>' . __ ( 'You can also go to the user’s profile page by clicking on the individual username.' ) . '</p>' .
'<p>' . __ ( 'You can sort the table by clicking on any of the table headings and switch between list and excerpt views by using the icons above the users list.' ) . '</p>' .
'<p>' . __ ( 'The bulk action will permanently delete selected users, or mark/unmark those selected as spam. Spam users will have posts removed and will be unable to sign up again with the same email addresses.' ) . '</p>' .
'<p>' . __ ( 'You can make an existing user an additional super admin by going to the Edit User profile page and checking the box to grant that privilege.' ) . '</p>' ,
)
);
2011-11-02 06:33:53 +01:00
2011-11-02 22:32:16 +01:00
get_current_screen () -> set_help_sidebar (
2017-12-01 00:11:00 +01:00
'<p><strong>' . __ ( 'For more information:' ) . '</strong></p>' .
'<p>' . __ ( '<a href="https://codex.wordpress.org/Network_Admin_Users_Screen">Documentation on Network Users</a>' ) . '</p>' .
'<p>' . __ ( '<a href="https://wordpress.org/support/forum/multisite/">Support Forums</a>' ) . '</p>'
2010-07-30 22:34:54 +02:00
);
2017-12-01 00:11:00 +01:00
get_current_screen () -> set_screen_reader_content (
array (
'heading_views' => __ ( 'Filter users list' ),
'heading_pagination' => __ ( 'Users list navigation' ),
'heading_list' => __ ( 'Users list' ),
)
);
2015-10-07 03:28:25 +02:00
2020-02-06 07:33:11 +01:00
require_once ABSPATH . 'wp-admin/admin-header.php' ;
2010-08-11 23:54:51 +02:00
2020-02-09 17:55:09 +01:00
if ( isset ( $_REQUEST [ 'updated' ] ) && 'true' == $_REQUEST [ 'updated' ] && ! empty ( $_REQUEST [ 'action' ] ) ) {
2010-07-30 22:34:54 +02:00
?>
2015-04-02 00:06:28 +02:00
< div id = " message " class = " updated notice is-dismissible " >< p >
2010-07-30 22:34:54 +02:00
< ? php
2015-09-17 14:33:26 +02:00
switch ( $_REQUEST [ 'action' ] ) {
2010-07-30 22:34:54 +02:00
case 'delete' :
_e ( 'User deleted.' );
2017-12-01 00:11:00 +01:00
break ;
2010-07-30 22:34:54 +02:00
case 'all_spam' :
_e ( 'Users marked as spam.' );
2017-12-01 00:11:00 +01:00
break ;
2010-07-30 22:34:54 +02:00
case 'all_notspam' :
_e ( 'Users removed from spam.' );
2017-12-01 00:11:00 +01:00
break ;
2010-07-30 22:34:54 +02:00
case 'all_delete' :
_e ( 'Users deleted.' );
2017-12-01 00:11:00 +01:00
break ;
2010-07-30 22:34:54 +02:00
case 'add' :
_e ( 'User added.' );
2017-12-01 00:11:00 +01:00
break ;
2010-07-30 22:34:54 +02:00
}
?>
</ p ></ div >
< ? php
}
2018-08-17 03:51:36 +02:00
?>
2010-08-11 23:54:51 +02:00
< div class = " wrap " >
2016-12-09 19:57:42 +01:00
< h1 class = " wp-heading-inline " >< ? php esc_html_e ( 'Users' ); ?> </h1>
< ? php
2017-12-01 00:11:00 +01:00
if ( current_user_can ( 'create_users' ) ) :
2018-08-17 03:51:36 +02:00
?>
2017-12-01 00:11:00 +01:00
< a href = " <?php echo network_admin_url( 'user-new.php' ); ?> " class = " page-title-action " >< ? php echo esc_html_x ( 'Add New' , 'user' ); ?> </a>
< ? php
2011-05-10 21:18:16 +02:00
endif ;
2011-12-09 00:02:33 +01:00
2016-01-14 21:06:25 +01:00
if ( strlen ( $usersearch ) ) {
2020-10-23 19:19:14 +02:00
echo '<span class="subtitle">' ;
printf (
/* translators: %s: Search query. */
__ ( 'Search results for: %s' ),
'<strong>' . esc_html ( $usersearch ) . '</strong>'
);
echo '</span>' ;
2016-01-14 21:06:25 +01:00
}
2010-07-30 22:34:54 +02:00
?>
2016-12-09 19:57:42 +01:00
< hr class = " wp-header-end " >
2010-07-30 22:34:54 +02:00
2010-11-10 15:27:15 +01:00
< ? php $wp_list_table -> views (); ?>
2015-01-16 05:16:24 +01:00
< form method = " get " class = " search-form " >
2012-03-24 05:54:58 +01:00
< ? php $wp_list_table -> search_box ( __ ( 'Search Users' ), 'all-user' ); ?>
2010-07-30 22:34:54 +02:00
</ form >
2014-05-19 07:04:16 +02:00
< form id = " form-user-list " action = " users.php?action=allusers " method = " post " >
2010-08-22 13:22:46 +02:00
< ? php $wp_list_table -> display (); ?>
2010-08-11 23:54:51 +02:00
</ form >
</ div >
2010-07-30 22:34:54 +02:00
2020-02-06 07:33:11 +01:00
< ? php require_once ABSPATH . 'wp-admin/admin-footer.php' ; ?>