登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
1 Star 0 Fork 0

mamh-mixed/phppgadmin

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
克隆/下载
users.php 15.09 KB
一键复制 编辑 原始数据 按行查看 历史
Jehan-Guillaume (ioguix) de Rorthais 提交于 2012-08-17 18:17 . Give environnments vars to the navlink hook
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415
<?php



	/**

	 * Manage users in a database cluster

	 *

	 * $Id: users.php,v 1.40 2008/02/25 17:20:44 xzilla Exp $

	 */



	// Include application functions

	include_once('./libraries/lib.inc.php');



	$action = (isset($_REQUEST['action'])) ? $_REQUEST['action'] : '';

	if (!isset($msg)) $msg = '';

		

	/**

	 * If a user is not a superuser, then we have an 'account management' page

	 * where they can change their password, etc.  We don't prevent them from

	 * messing with the URL to gain access to other user admin stuff, because

	 * the PostgreSQL permissions will prevent them changing anything anyway.

	 */

	function doAccount($msg = '') {

		global $data, $misc;

		global $lang;

		

		$server_info = $misc->getServerInfo();

		

		$userdata = $data->getUser($server_info['username']);

		$_REQUEST['user'] = $server_info['username'];

		

		$misc->printTrail('user');

		$misc->printTabs('server','account');

		$misc->printMsg($msg);



		if ($userdata->recordCount() > 0) {

			$userdata->fields['usesuper'] = $data->phpBool($userdata->fields['usesuper']);

			$userdata->fields['usecreatedb'] = $data->phpBool($userdata->fields['usecreatedb']);

			echo "<table>\n";

			echo "<tr><th class=\"data\">{$lang['strusername']}</th><th class=\"data\">{$lang['strsuper']}</th><th class=\"data\">{$lang['strcreatedb']}</th><th class=\"data\">{$lang['strexpires']}</th>";

			echo "<th class=\"data\">{$lang['strsessiondefaults']}</th>";

			echo "</tr>\n";

			echo "<tr>\n\t<td class=\"data1\">", $misc->printVal($userdata->fields['usename']), "</td>\n";

			echo "\t<td class=\"data1\">", $misc->printVal($userdata->fields['usesuper'], 'yesno'), "</td>\n";

			echo "\t<td class=\"data1\">", $misc->printVal($userdata->fields['usecreatedb'], 'yesno'), "</td>\n";

			echo "\t<td class=\"data1\">", ($userdata->fields['useexpires'] == 'infinity' || is_null($userdata->fields['useexpires']) ? $lang['strnever'] : $misc->printVal($userdata->fields['useexpires'])), "</td>\n";

			echo "\t<td class=\"data1\">", $misc->printVal($userdata->fields['useconfig']), "</td>\n";

			echo "</tr>\n</table>\n";

		}

		else echo "<p>{$lang['strnodata']}</p>\n";

		

		$misc->printNavLinks(array ('changepassword' => array (

				'attr'=> array (

					'href' => array (

						'url' => 'users.php',

						'urlvars' => array (

							'action' => 'confchangepassword',

							'server' => $_REQUEST['server']

						)

					)

				),

				'content' => $lang['strchangepassword']

			)), 'users-account', get_defined_vars());

	}

	

	/**

	 * Show confirmation of change password and actually change password

	 */

	function doChangePassword($confirm, $msg = '') {

		global $data, $misc;

		global $lang, $conf;

		

		$server_info = $misc->getServerInfo();

		

		if ($confirm) {

			$_REQUEST['user'] = $server_info['username'];

			$misc->printTrail('user');

			$misc->printTitle($lang['strchangepassword'],'pg.user.alter');

			$misc->printMsg($msg);

			

			if (!isset($_POST['password'])) $_POST['password'] = '';

			if (!isset($_POST['confirm'])) $_POST['confirm'] = '';

			

			echo "<form action=\"users.php\" method=\"post\">\n";

			echo "<table>\n";

			echo "\t<tr>\n\t\t<th class=\"data left required\">{$lang['strpassword']}</th>\n";

			echo "\t\t<td><input type=\"password\" name=\"password\" size=\"32\" value=\"", 

				htmlspecialchars($_POST['password']), "\" /></td>\n\t</tr>\n";

			echo "\t<tr>\n\t\t<th class=\"data left required\">{$lang['strconfirm']}</th>\n";

			echo "\t\t<td><input type=\"password\" name=\"confirm\" size=\"32\" value=\"\" /></td>\n\t</tr>\n";

			echo "</table>\n";

			echo "<p><input type=\"hidden\" name=\"action\" value=\"changepassword\" />\n";

			echo $misc->form;

			echo "<input type=\"submit\" name=\"ok\" value=\"{$lang['strok']}\" />\n";

			echo "<input type=\"submit\" name=\"cancel\" value=\"{$lang['strcancel']}\" />\n";

			echo "</p></form>\n";

		}

		else {

			// Check that password is minimum length

			if (strlen($_POST['password']) < $conf['min_password_length'])

				doChangePassword(true, $lang['strpasswordshort']);

			// Check that password matches confirmation password

			elseif ($_POST['password'] != $_POST['confirm'])

				doChangePassword(true, $lang['strpasswordconfirm']);

			else {

				$status = $data->changePassword($server_info['username'], 

					$_POST['password']);

				if ($status == 0)

					doAccount($lang['strpasswordchanged']);

				else

					doAccount($lang['strpasswordchangedbad']);

			}

		}		

	}



	/**

	 * Function to allow editing of a user

	 */

	function doEdit($msg = '') {

		global $data, $misc;

		global $lang;

	

		$misc->printTrail('user');

		$misc->printTitle($lang['stralter'],'pg.user.alter');

		$misc->printMsg($msg);

		

		$userdata = $data->getUser($_REQUEST['username']);

		

		if ($userdata->recordCount() > 0) {

			$server_info = $misc->getServerInfo();

			$canRename = $data->hasUserRename() && ($_REQUEST['username'] != $server_info['username']);

			$userdata->fields['usesuper'] = $data->phpBool($userdata->fields['usesuper']);

			$userdata->fields['usecreatedb'] = $data->phpBool($userdata->fields['usecreatedb']);



			if (!isset($_POST['formExpires'])){

				if ($canRename) $_POST['newname'] = $userdata->fields['usename'];

				if ($userdata->fields['usesuper']) $_POST['formSuper'] = '';

				if ($userdata->fields['usecreatedb']) $_POST['formCreateDB'] = '';

				$_POST['formExpires'] = $userdata->fields['useexpires'] == 'infinity' ? '' : $userdata->fields['useexpires'];

				$_POST['formPassword'] = '';

			}

		

			echo "<form action=\"users.php\" method=\"post\">\n";

			echo "<table>\n";

			echo "\t<tr>\n\t\t<th class=\"data left\">{$lang['strusername']}</th>\n";

			echo "\t\t<td class=\"data1\">", ($canRename ? "<input name=\"newname\" size=\"15\" maxlength=\"{$data->_maxNameLen}\" value=\"" . htmlspecialchars($_POST['newname']) . "\" />" : $misc->printVal($userdata->fields['usename'])), "</td>\n\t</tr>\n";

			echo "\t<tr>\n\t\t<th class=\"data left\"><label for=\"formSuper\">{$lang['strsuper']}</label></th>\n";

			echo "\t\t<td class=\"data1\"><input type=\"checkbox\" id=\"formSuper\" name=\"formSuper\"", 

				(isset($_POST['formSuper'])) ? ' checked="checked"' : '', " /></td>\n\t</tr>\n";

			echo "\t<tr>\n\t\t<th class=\"data left\"><label for=\"formCreateDB\">{$lang['strcreatedb']}</label></th>\n";

			echo "\t\t<td class=\"data1\"><input type=\"checkbox\" id=\"formCreateDB\" name=\"formCreateDB\"", 

				(isset($_POST['formCreateDB'])) ? ' checked="checked"' : '', " /></td>\n\t</tr>\n";

			echo "\t<tr>\n\t\t<th class=\"data left\">{$lang['strexpires']}</th>\n";

			echo "\t\t<td class=\"data1\"><input size=\"16\" name=\"formExpires\" value=\"", htmlspecialchars($_POST['formExpires']), "\" /></td>\n\t</tr>\n";

			echo "\t<tr>\n\t\t<th class=\"data left\">{$lang['strpassword']}</th>\n";

			echo "\t\t<td class=\"data1\"><input type=\"password\" size=\"16\" name=\"formPassword\" value=\"", htmlspecialchars($_POST['formPassword']), "\" /></td>\n\t</tr>\n";

			echo "\t<tr>\n\t\t<th class=\"data left\">{$lang['strconfirm']}</th>\n";

			echo "\t\t<td class=\"data1\"><input type=\"password\" size=\"16\" name=\"formConfirm\" value=\"\" /></td>\n\t</tr>\n";

			echo "</table>\n";

			echo "<p><input type=\"hidden\" name=\"action\" value=\"save_edit\" />\n";

			echo "<input type=\"hidden\" name=\"username\" value=\"", htmlspecialchars($_REQUEST['username']), "\" />\n";

			echo $misc->form;

			echo "<input type=\"submit\" name=\"alter\" value=\"{$lang['stralter']}\" />\n";

			echo "<input type=\"submit\" name=\"cancel\" value=\"{$lang['strcancel']}\" /></p>\n";

			echo "</form>\n";

		}

		else echo "<p>{$lang['strnodata']}</p>\n";

	}

	

	/** 

	 * Function to save after editing a user

	 */

	function doSaveEdit() {

		global $data, $lang;

		

		// Check name and password

		if (isset($_POST['newname']) && $_POST['newname'] == '')

			doEdit($lang['struserneedsname']);

		else if ($_POST['formPassword'] != $_POST['formConfirm'])

			doEdit($lang['strpasswordconfirm']);

		else {

			if (isset($_POST['newname'])) $status = $data->setRenameUser($_POST['username'], $_POST['formPassword'], isset($_POST['formCreateDB']), isset($_POST['formSuper']), $_POST['formExpires'], $_POST['newname']);

			else $status = $data->setUser($_POST['username'], $_POST['formPassword'], isset($_POST['formCreateDB']), isset($_POST['formSuper']), $_POST['formExpires']);

			if ($status == 0)

				doDefault($lang['struserupdated']);

			else

				doEdit($lang['struserupdatedbad']);

		}

	}



	/**

	 * Show confirmation of drop and perform actual drop

	 */

	function doDrop($confirm) {

		global $data, $misc;

		global $lang;



		if ($confirm) {

			$misc->printTrail('user');

			$misc->printTitle($lang['strdrop'],'pg.user.drop');

			

			echo "<p>", sprintf($lang['strconfdropuser'], $misc->printVal($_REQUEST['username'])), "</p>\n";	

			

			echo "<form action=\"users.php\" method=\"post\">\n";

			echo "<p><input type=\"hidden\" name=\"action\" value=\"drop\" />\n";

			echo "<input type=\"hidden\" name=\"username\" value=\"", htmlspecialchars($_REQUEST['username']), "\" />\n";

			echo $misc->form;

			echo "<input type=\"submit\" name=\"drop\" value=\"{$lang['strdrop']}\" />\n";

			echo "<input type=\"submit\" name=\"cancel\" value=\"{$lang['strcancel']}\" /></p>\n";

			echo "</form>\n";

		}

		else {

			$status = $data->dropUser($_REQUEST['username']);

			if ($status == 0)

				doDefault($lang['struserdropped']);

			else

				doDefault($lang['struserdroppedbad']);

		}		

	}

	

	/**

	 * Displays a screen where they can enter a new user

	 */

	function doCreate($msg = '') {

		global $data, $misc, $username;

		global $lang;

		

		if (!isset($_POST['formUsername'])) $_POST['formUsername'] = '';

		if (!isset($_POST['formPassword'])) $_POST['formPassword'] = '';

		if (!isset($_POST['formConfirm'])) $_POST['formConfirm'] = '';

		if (!isset($_POST['formExpires'])) $_POST['formExpires'] = '';

		

		$misc->printTrail('server');

		$misc->printTitle($lang['strcreateuser'],'pg.user.create');

		$misc->printMsg($msg);



		echo "<form action=\"users.php\" method=\"post\">\n";

		echo "<table>\n";

		echo "\t<tr>\n\t\t<th class=\"data left required\">{$lang['strusername']}</th>\n";

		echo "\t\t<td class=\"data1\"><input size=\"15\" maxlength=\"{$data->_maxNameLen}\" name=\"formUsername\" value=\"", htmlspecialchars($_POST['formUsername']), "\" /></td>\n\t</tr>\n";

		echo "\t<tr>\n\t\t<th class=\"data left\">{$lang['strpassword']}</th>\n";

		echo "\t\t<td class=\"data1\"><input size=\"15\" type=\"password\" name=\"formPassword\" value=\"", htmlspecialchars($_POST['formPassword']), "\" /></td>\n\t</tr>\n";

		echo "\t<tr>\n\t\t<th class=\"data left\">{$lang['strconfirm']}</th>\n";

		echo "\t\t<td class=\"data1\"><input size=\"15\" type=\"password\" name=\"formConfirm\" value=\"", htmlspecialchars($_POST['formConfirm']), "\" /></td>\n\t</tr>\n";

		echo "\t<tr>\n\t\t<th class=\"data left\"><label for=\"formSuper\">{$lang['strsuper']}</label></th>\n";

		echo "\t\t<td class=\"data1\"><input type=\"checkbox\" id=\"formSuper\" name=\"formSuper\"", 

			(isset($_POST['formSuper'])) ? ' checked="checked"' : '', " /></td>\n\t</tr>\n";

		echo "\t<tr>\n\t\t<th class=\"data left\"><label for=\"formCreateDB\">{$lang['strcreatedb']}</label></th>\n";

		echo "\t\t<td class=\"data1\"><input type=\"checkbox\" id=\"formCreateDB\" name=\"formCreateDB\"", 

			(isset($_POST['formCreateDB'])) ? ' checked="checked"' : '', " /></td>\n\t</tr>\n";

		echo "\t<tr>\n\t\t<th class=\"data left\">{$lang['strexpires']}</th>\n";

		echo "\t\t<td class=\"data1\"><input size=\"30\" name=\"formExpires\" value=\"", htmlspecialchars($_POST['formExpires']), "\" /></td>\n\t</tr>\n";

		echo "</table>\n";

		echo "<p><input type=\"hidden\" name=\"action\" value=\"save_create\" />\n";

		echo $misc->form;

		echo "<input type=\"submit\" name=\"create\" value=\"{$lang['strcreate']}\" />\n";

		echo "<input type=\"submit\" name=\"cancel\" value=\"{$lang['strcancel']}\" /></p>\n";

		echo "</form>\n";

	}

	

	/**

	 * Actually creates the new user in the database

	 */

	function doSaveCreate() {

		global $data;

		global $lang;



		// Check data

		if ($_POST['formUsername'] == '')

			doCreate($lang['struserneedsname']);

		else if ($_POST['formPassword'] != $_POST['formConfirm'])

			doCreate($lang['strpasswordconfirm']);

		else {		

			$status = $data->createUser($_POST['formUsername'], $_POST['formPassword'], 

				isset($_POST['formCreateDB']), isset($_POST['formSuper']), $_POST['formExpires'], array());

			if ($status == 0)

				doDefault($lang['strusercreated']);

			else

				doCreate($lang['strusercreatedbad']);

		}

	}	



	/**

	 * Show default list of users in the database

	 */

	function doDefault($msg = '') {

		global $data, $misc;

		global $lang;

		

		function renderUseExpires($val) {

			global $lang;

			return $val == 'infinity' ? $lang['strnever'] : htmlspecialchars($val);

 		}

		

		$misc->printTrail('server');

		$misc->printTabs('server','users');

		$misc->printMsg($msg);

		

		$users = $data->getUsers();

		

		$columns = array(

			'user' => array(

				'title' => $lang['strusername'],

				'field' => field('usename'),

			),

			'superuser' => array(

				'title' => $lang['strsuper'],

				'field' => field('usesuper'),

				'type'  => 'yesno',

			),

			'createdb' => array(

				'title' => $lang['strcreatedb'],

				'field' => field('usecreatedb'),

				'type'  => 'yesno',

			),

			'expires' => array(

				'title' => $lang['strexpires'],

				'field' => field('useexpires'),

				'type'  => 'callback',

				'params'=> array('function' => 'renderUseExpires', 'null' => $lang['strnever']),

			),

			'defaults' => array(

				'title' => $lang['strsessiondefaults'],

				'field' => field('useconfig'),

			),

			'actions' => array(

				'title' => $lang['stractions'],

			),

		);

		

		$actions = array(

			'alter' => array(

				'content' => $lang['stralter'],

				'attr'=> array (

					'href' => array (

						'url' => 'users.php',

						'urlvars' => array (

							'action' => 'edit',

							'username' => field('usename')

						)

					)

				)

			),

			'drop' => array(

				'content' => $lang['strdrop'],

				'attr'=> array (

					'href' => array (

						'url' => 'users.php',

						'urlvars' => array (

							'action' => 'confirm_drop',

							'username' => field('usename')

						)

					)

				)

			),

		);

		

		$misc->printTable($users, $columns, $actions, 'users-users', $lang['strnousers']);



		$misc->printNavLinks(array ('create' => array (

				'attr'=> array (

					'href' => array (

						'url' => 'users.php',

						'urlvars' => array (

							'action' => 'create',

							'server' => $_REQUEST['server']

						)

					)

				),

				'content' => $lang['strcreateuser']

			)), 'users-users', get_defined_vars());



	}



	$misc->printHeader($lang['strusers']);

	$misc->printBody();



	switch ($action) {

		case 'changepassword':

			if (isset($_REQUEST['ok'])) doChangePassword(false);

			else doAccount();

			break;

		case 'confchangepassword':

			doChangePassword(true);

			break;			

		case 'account':

			doAccount();

			break;

		case 'save_create':

			if (isset($_REQUEST['cancel'])) doDefault();

			else doSaveCreate();

			break;

		case 'create':			

			doCreate();

			break;

		case 'drop':

			if (isset($_REQUEST['cancel'])) doDefault();

			else doDrop(false);

			break;

		case 'confirm_drop':

			doDrop(true);

			break;

		case 'save_edit':

			if (isset($_REQUEST['cancel'])) doDefault();

			else doSaveEdit();

			break;

		case 'edit':

			doEdit();

			break;

		default:

			doDefault();

			break;

	}	



	$misc->printFooter();



?>
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
1
https://gitee.com/mamh-mixed/phppgadmin.git
git@gitee.com:mamh-mixed/phppgadmin.git
mamh-mixed
phppgadmin
phppgadmin
master
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部
23e8dbc6 1850385 7e0993f3 1850385