user_level >= $user_level) die( __('You do not have permission to edit this user.') ); /* checking the nickname has been typed */ if (empty($_POST["new_nickname"])) { die (__("ERROR: please enter your nickname (can be the same as your login)")); return false; } if ($_POST['pass1'] == '') { if ($_POST['pass2'] != '') die (__("ERROR: you typed your new password only once. Go back to type it twice.")); $updatepassword = ''; } else { if ($_POST['pass2'] == "") die (__("ERROR: you typed your new password only once. Go back to type it twice.")); if ($_POST['pass1'] != $_POST['pass2']) die (__("ERROR: you typed two different passwords. Go back to correct that.")); $new_pass = $_POST["pass1"]; $updatepassword = "user_pass=MD5('$new_pass'), "; } $new_user_login = $_POST['new_user_login']; $new_firstname = $_POST['new_firstname']; $new_lastname = $_POST['new_lastname']; $new_nickname = $_POST['new_nickname']; $new_nicename = sanitize_title($new_nickname, $user_id); $new_icq = $_POST['new_icq']; $new_aim = $_POST['new_aim']; $new_msn = $_POST['new_msn']; $new_yim = $_POST['new_yim']; $new_email = $_POST['new_email']; $new_url = $_POST['new_url']; $new_url = preg_match('/^(https?|ftps?|mailto|news|gopher):/is', $new_url) ? $new_url : 'http://' . $new_url; $new_idmode = $_POST['new_idmode']; $new_description = $_POST['user_description']; $result = $wpdb->query("UPDATE $wpdb->users SET user_login = '$new_user_login', user_firstname = '$new_firstname', $updatepassword user_lastname='$new_lastname', user_nickname='$new_nickname', user_icq='$new_icq', user_email='$new_email', user_url='$new_url', user_aim='$new_aim', user_msn='$new_msn', user_yim='$new_yim', user_idmode='$new_idmode', user_description = '$user_description', user_nicename = '$new_nicename' WHERE ID = $user_id"); header("Location: user-edit.php?user_id=$user_id&updated=true"); break; case 'switchposts': check_admin_referer(); /* TODO: Switch all posts from one user to another user */ break; default: include ('admin-header.php'); $edituser = get_userdata($user_id); if ($edituser->user_level >= $user_level) die( __('You do not have permission to edit this user.') ); ?>