piler/webui/controller/user/edit.php

<?php


class ControllerUserEdit extends Controller {
   private $error = array();
   private $domains = array();

   public function index(){
      $this->data['uid'] = 0;
      $this->data['email'] = "";

      $this->id = "content";
      $this->template = "user/edit.tpl";
      $this->layout = "common/layout";


      $request = Registry::get('request');
      $db = Registry::get('db');
      $language = Registry::get('language');

      $this->load->model('user/user');
      $this->load->model('group/group');
      $this->load->model('folder/folder');


      $this->document->title = $language->get('text_edit_user');

      $this->data['domains'] = array();


      if(isset($this->request->get['uid']) && is_numeric($this->request->get['uid']) && $this->request->get['uid'] > 0) {
         $this->data['uid'] = $this->request->get['uid'];
      }

      if(isset($this->request->post['uid']) && is_numeric($this->request->post['uid']) && $this->request->post['uid'] > 0) {
         $this->data['uid'] = $this->request->post['uid'];
      }


      $this->domains = $this->model_user_user->get_email_domains();


      if(isset($this->request->get['email']) && checkemail($this->request->get['email'], $this->domains) == 1) {
         $this->data['email'] = $this->request->get['email'];
      }


      /* check if we are admin */

      if(Registry::get('admin_user') == 1) {

         $this->data['domains'] = $this->model_user_user->get_domains();

         if($this->request->server['REQUEST_METHOD'] == 'POST') {
            if($this->validate() == true){

               $ret = $this->model_user_user->update_user($this->request->post);

               if($ret == 1){
                  $this->data['x'] = $this->data['text_successfully_modified'];
               } else {
                  $this->template = "common/error.tpl";
                  $this->data['errorstring'] = $this->data['text_failed_to_modify'] . ": " . $ret;
               }

               $__username = $this->request->post['username'];
            }
            else {
               $this->data['errorstring'] = $this->data['text_error_message'];
               $this->data['errors'] = $this->error;
            }
         }
         //else {
            $this->data['user'] = $this->model_user_user->get_user_by_uid($this->data['uid']);

            $this->data['user']['domains'] = $this->model_user_user->get_domains_by_uid($this->data['uid']);
            $this->data['user']['group_membership'] = $this->model_user_user->get_additional_uids($this->data['uid']);
            $this->data['user']['group'] = $this->model_group_group->get_groups_by_uid($this->data['uid']);
            $this->data['user']['folder'] = $this->model_folder_folder->get_folders_by_uid($this->data['uid']);

            $this->data['emails'] = $this->model_user_user->get_emails($this->data['user']['username']);

         //}
      }
      else {
         $this->template = "common/error.tpl";
         $this->data['errorstring'] = $this->data['text_you_are_not_admin'];
      }

      $this->render();
   }


   private function validate() {

      if(isset($this->request->post['password']) && strlen($this->request->post['password']) > 1) {

         if(strlen(@$this->request->post['password']) < MIN_PASSWORD_LENGTH || strlen(@$this->request->post['password2']) < MIN_PASSWORD_LENGTH) {
            $this->error['password'] = $this->data['text_invalid_password'];
         }

         if($this->request->post['password'] != $this->request->post['password2']) {
            $this->error['password2'] = $this->data['text_password_mismatch'];
         }
      }

      if(!isset($this->request->post['uid']) || !is_numeric($this->request->post['uid']) || (int)$this->request->post['uid'] < 0) {
         $this->error['uid'] = $this->data['text_invalid_uid'];
      }

      if(strlen(@$this->request->post['email']) < 4) {
         $this->error['email'] = $this->data['text_invalid_email'];
      } else {
         $emails = explode("\n", $this->request->post['email']);
         foreach ($emails as $email) {
            $email = rtrim($email);

            if($email == '') { continue; }

            $ret = checkemail($email, $this->domains);
            if($ret == 0) {
               $this->error['email'] = $this->data['text_invalid_email'] . ": *$email*";
            }
            else if($ret == -1) {
               $this->error['email'] = $this->data['text_email_in_unknown_domain'] . ": *$email*";
            }
         }
      }

      if(!isset($this->request->post['username']) || strlen($this->request->post['username']) < 2 ) {
         $this->error['username'] = $this->data['text_invalid_username'];
      }


      if (!$this->error) {
         return true;
      } else {
         return false;
      }

   }



}

?>