2 /****************************************************************/
4 /****************************************************************/
5 /* Copyright (c) 2002-2008 by Greg Gay & Joel Kronenberg */
6 /* Adaptive Technology Resource Centre / University of Toronto */
9 /* This program is free software. You can redistribute it and/or*/
10 /* modify it under the terms of the GNU General Public License */
11 /* as published by the Free Software Foundation. */
12 /****************************************************************/
14 define('AT_INCLUDE_PATH', '../include/');
15 require(AT_INCLUDE_PATH.'vitals.inc.php');
16 admin_authenticate(AT_ADMIN_PRIV_USERS);
18 if ( (isset($_GET['edit']) || isset($_GET['password']) || isset($_GET['enrollment'])) && (isset($_GET['id']) && count($_GET['id']) > 1) ) {
19 $msg->addError('SELECT_ONE_ITEM');
20 } else if (isset($_GET['edit'], $_GET['id'])) {
21 header('Location: edit_user.php?id='.$_GET['id'][0]);
23 } else if (isset($_GET['password'], $_GET['id'])) {
24 header('Location: password_user.php?id='.$_GET['id'][0]);
26 } else if (isset($_GET['enrollment'], $_GET['id'])) {
27 header('Location: user_enrollment.php?id='.$_GET['id'][0]);
29 } else if ( isset($_GET['apply']) && isset($_GET['id']) && $_GET['change_status'] >= -1) {
30 $ids = implode(',', $_GET['id']);
31 $status = intval($_GET['change_status']);
33 header('Location: admin_delete.php?id='.$ids);
36 header('Location: user_status.php?ids='.$ids.'&status='.$status);
39 } else if ( (isset($_GET['apply']) || isset($_GET['apply_all'])) && $_GET['change_status'] < -1) {
40 $msg->addError('NO_ACTION_SELECTED');
41 } else if (isset($_GET['apply']) || isset($_GET['edit']) || isset($_GET['delete']) || isset($_GET['password'])) {
42 $msg->addError('NO_ITEM_SELECTED');
45 if ($_GET['reset_filter']) {
50 $orders = array('asc' => 'desc', 'desc' => 'asc');
51 $cols = array('login' => 1, 'public_field' => 1, 'first_name' => 1, 'second_name' => 1, 'last_name' => 1, 'email' => 1, 'status' => 1, 'last_login' => 1, 'creation_date' => 1);
53 if (isset($_GET['asc'])) {
55 $col = isset($cols[$_GET['asc']]) ? $_GET['asc'] : 'login';
56 } else if (isset($_GET['desc'])) {
58 $col = isset($cols[$_GET['desc']]) ? $_GET['desc'] : 'login';
64 if (isset($_GET['status']) && ($_GET['status'] != '')) {
65 $_GET['status'] = intval($_GET['status']);
66 $status = '=' . intval($_GET['status']);
67 $page_string .= SEP.'status'.$status;
73 if (isset($_GET['last_login_days'], $_GET['last_login_have']) && ($_GET['last_login_have'] >= 0) && $_GET['last_login_days']) {
74 $have = intval($_GET['last_login_have']);
75 $days = intval($_GET['last_login_days']);
76 $page_string .= SEP.'last_login_have='.$have;
77 $page_string .= SEP.'last_login_days='.$days;
80 $ll = " >= TO_DAYS(NOW())-$days)";
82 $ll = " < TO_DAYS(NOW())-$days OR last_login+0=0)";
84 $last_login_days = '(TO_DAYS(last_login)'.$ll;
86 $last_login_days = '1';
89 if (isset($_GET['include']) && $_GET['include'] == 'one') {
90 $checked_include_one = ' checked="checked"';
91 $page_string .= SEP.'include=one';
93 $_GET['include'] = 'all';
94 $checked_include_all = ' checked="checked"';
95 $page_string .= SEP.'include=all';
98 if ($_GET['search']) {
99 $page_string .= SEP.'search='.urlencode($stripslashes($_GET['search']));
100 $search = $addslashes($_GET['search']);
101 $search = explode(' ', $search);
103 if ($_GET['include'] == 'all') {
110 foreach ($search as $term) {
112 $term = str_replace(array('%','_'), array('\%', '\_'), $term);
114 $term = '%'.$term.'%';
115 $sql .= "((M.first_name LIKE '$term') OR (M.second_name LIKE '$term') OR (M.last_name LIKE '$term') OR (M.email LIKE '$term') OR (M.login LIKE '$term')) $predicate";
118 $sql = '('.substr($sql, 0, -strlen($predicate)).')';
124 if ($_GET['searchid']) {
125 $_GET['searchid'] = trim($_GET['searchid']);
126 $page_string .= SEP.'searchid='.urlencode($_GET['searchid']);
127 $searchid = $addslashes($_GET['searchid']);
129 $searchid = explode(',', $searchid);
132 foreach ($searchid as $term) {
134 $term = str_replace(array('%','_'), array('\%', '\_'), $term);
136 if (strpos($term, '-') === FALSE) {
137 $term = '%'.$term.'%';
138 $sql .= "(L.public_field LIKE '$term') OR ";
141 $range = explode('-', $term, 2);
142 $range[0] = trim($range[0]);
143 $range[1] = trim($range[1]);
144 if (is_numeric($range[0]) && is_numeric($range[1])) {
145 $sql .= "(L.public_field >= $range[0] AND L.public_field <= $range[1]) OR ";
147 $sql .= "(L.public_field >= '$range[0]' AND L.public_field <= '$range[1]') OR ";
152 $sql = '('.substr($sql, 0, -3).')';
158 if (defined('AT_MASTER_LIST') && AT_MASTER_LIST) {
159 $sql = "SELECT COUNT(M.member_id) AS cnt FROM ".TABLE_PREFIX."members M LEFT JOIN (SELECT * FROM ".TABLE_PREFIX."master_list WHERE member_id <> 0) L USING (member_id) WHERE M.status $status AND $search AND $searchid AND $last_login_days";
161 $sql = "SELECT COUNT(member_id) AS cnt FROM ".TABLE_PREFIX."members M WHERE status $status AND $search AND $last_login_days";
164 $result = mysql_query($sql, $db);
165 $row = mysql_fetch_assoc($result);
166 $num_results = $row['cnt'];
168 $results_per_page = 50;
169 $num_pages = max(ceil($num_results / $results_per_page), 1);
170 $page = intval($_GET['p']);
174 $count = (($page-1) * $results_per_page) + 1;
175 $offset = ($page-1)*$results_per_page;
177 if ( isset($_GET['apply_all']) && $_GET['change_status'] >= -1) {
179 $results_per_page = 999999;
182 if (defined('AT_MASTER_LIST') && AT_MASTER_LIST) {
183 $sql = "SELECT M.member_id, M.login, M.first_name, M.second_name, M.last_name, M.email, M.status, M.last_login+0 AS last_login, M.creation_date, L.public_field FROM ".TABLE_PREFIX."members M LEFT JOIN (SELECT * FROM ".TABLE_PREFIX."master_list WHERE member_id <> 0) L USING (member_id) WHERE M.status $status AND $search AND $searchid AND $last_login_days ORDER BY $col $order LIMIT $offset, $results_per_page";
185 $sql = "SELECT M.member_id, M.login, M.first_name, M.second_name, M.last_name, M.email, M.status, M.last_login+0 AS last_login, M.creation_date FROM ".TABLE_PREFIX."members M WHERE M.status $status AND $search AND $last_login_days ORDER BY $col $order LIMIT $offset, $results_per_page";
188 $result = mysql_query($sql, $db);
190 if ( isset($_GET['apply_all']) && $_GET['change_status'] >= -1) {
192 while ($row = mysql_fetch_assoc($result)) {
193 $ids .= $row['member_id'].',';
195 $ids = substr($ids,0,-1);
196 $status = intval($_GET['change_status']);
199 header('Location: admin_delete.php?id='.$ids);
202 header('Location: user_status.php?ids='.$ids.'&status='.$status);
206 require(AT_INCLUDE_PATH.'header.inc.php');
209 <form method="get" action="<?php echo $_SERVER['PHP_SELF']; ?>">
210 <div class="input-form">
212 <h3><?php echo _AT('results_found', $num_results); ?></h3>
216 <?php echo _AT('account_status'); ?><br />
217 <input type="radio" name="status" value="0" id="s0" <?php if ($_GET['status'] == 0) { echo 'checked="checked"'; } ?> /><label for="s0"><?php echo _AT('disabled'); ?></label>
219 <input type="radio" name="status" value="1" id="s1" <?php if ($_GET['status'] == 1) { echo 'checked="checked"'; } ?> /><label for="s1"><?php echo _AT('unconfirmed'); ?></label>
221 <input type="radio" name="status" value="2" id="s2" <?php if ($_GET['status'] == 2) { echo 'checked="checked"'; } ?> /><label for="s2"><?php echo _AT('student'); ?></label>
223 <input type="radio" name="status" value="3" id="s3" <?php if ($_GET['status'] == 3) { echo 'checked="checked"'; } ?> /><label for="s3"><?php echo _AT('instructor'); ?></label>
225 <input type="radio" name="status" value="" id="s" <?php if ($_GET['status'] === '') { echo 'checked="checked"'; } ?> /><label for="s"><?php echo _AT('all'); ?></label>
229 <label for="search"><?php echo _AT('search'); ?> (<?php echo _AT('login_name').', '._AT('first_name').', '._AT('second_name').', '._AT('last_name') .', '._AT('email'); ?>)</label><br />
231 <input type="text" name="search" id="search" size="40" value="<?php echo htmlspecialchars($_GET['search']); ?>" />
233 <?php echo _AT('search_match'); ?>:
234 <input type="radio" name="include" value="all" id="match_all" <?php echo $checked_include_all; ?> /><label for="match_all"><?php echo _AT('search_all_words'); ?></label>
235 <input type="radio" name="include" value="one" id="match_one" <?php echo $checked_include_one; ?> /><label for="match_one"><?php echo _AT('search_any_word'); ?></label>
238 <?php if (defined('AT_MASTER_LIST') && AT_MASTER_LIST): ?>
240 <label for="searchid"><?php echo _AT('search'); ?> (<?php echo _AT('student_id'); ?>)</label><br />
241 <input type="text" name="searchid" id="searchid" size="20" value="<?php echo htmlspecialchars($_GET['searchid']); ?>" />
246 <label for="last_login_have"><?php echo _AT('last_login'); ?></label><br />
247 <select name="last_login_have" id="last_login_have">
248 <option value="-1">- <?php echo _AT('select'); ?> -</option>
249 <option value="1" <?php if($_GET['last_login_have']=='1') { echo 'selected="selected"';}?>><?php echo _AT('have'); ?></option>
250 <option value="0" <?php if(isset($_GET['last_login_have']) && $_GET['last_login_have']=='0') { echo 'selected="selected"';}?>><?php echo _AT('have_not'); ?></option>
251 </select> <?php echo _AT('logged_in_within'); ?>: <input type="text" name="last_login_days" size="3" value="<?php echo htmlspecialchars($_GET['last_login_days']); ?>" /> <?php echo _AT('days'); ?> <br />
255 <div class="row buttons">
256 <input type="submit" name="filter" value="<?php echo _AT('filter'); ?>" />
257 <input type="submit" name="reset_filter" value="<?php echo _AT('reset_filter'); ?>" />
262 <?php print_paginator($page, $num_results, $page_string . SEP . $order .'='. $col, $results_per_page); ?>
264 <form name="form" method="get" action="<?php echo $_SERVER['PHP_SELF']; ?>">
265 <input type="hidden" name="status" value="<?php echo $_GET['status']; ?>" />
266 <input type="hidden" name="search" value="<?php echo htmlspecialchars($_GET['search']); ?>" />
267 <input type="hidden" name="include" value="<?php echo htmlspecialchars($_GET['include']); ?>" />
269 <?php if (defined('AT_MASTER_LIST') && AT_MASTER_LIST) { $col_counts = 1; } else { $col_counts = 0; } ?>
270 <table summary="" class="data" rules="rows">
272 <?php if ($col == 'login'): ?>
275 <col span="<?php echo 5 + $col_counts; ?>" />
276 <?php elseif($col == 'public_field'): ?>
277 <col span="<?php echo 1 + $col_counts; ?>" />
280 <?php elseif($col == 'first_name'): ?>
281 <col span="<?php echo 2 + $col_counts; ?>" />
284 <?php elseif($col == 'second_name'): ?>
285 <col span="<?php echo 3 + $col_counts; ?>" />
288 <?php elseif($col == 'last_name'): ?>
289 <col span="<?php echo 4 + $col_counts; ?>" />
292 <?php elseif($col == 'email'): ?>
293 <col span="<?php echo 5 + $col_counts; ?>" />
296 <?php elseif($col == 'status'): ?>
297 <col span="<?php echo 6 + $col_counts; ?>" />
300 <?php elseif($col == 'last_login'): ?>
301 <col span="<?php echo 7 + $col_counts; ?>" />
303 <?php elseif($col == 'creation_date'): ?>
304 <col span="<?php echo 8 + $col_counts; ?>" />
310 <th scope="col" align="left"><input type="checkbox" value="<?php echo _AT('select_all'); ?>" id="all" title="<?php echo _AT('select_all'); ?>" name="selectall" onclick="CheckAll();" /></th>
312 <th scope="col"><a href="admin/users.php?<?php echo $orders[$order]; ?>=login<?php echo $page_string; ?>"><?php echo _AT('login_name'); ?></a></th>
313 <?php if (defined('AT_MASTER_LIST') && AT_MASTER_LIST): ?>
314 <th scope="col"><a href="admin/users.php?<?php echo $orders[$order]; ?>=public_field<?php echo $page_string; ?>"><?php echo _AT('student_id'); ?></a></th>
316 <th scope="col"><a href="admin/users.php?<?php echo $orders[$order]; ?>=first_name<?php echo $page_string; ?>"><?php echo _AT('first_name'); ?></a></th>
317 <th scope="col"><a href="admin/users.php?<?php echo $orders[$order]; ?>=second_name<?php echo $page_string; ?>"><?php echo _AT('second_name'); ?></a></th>
318 <th scope="col"><a href="admin/users.php?<?php echo $orders[$order]; ?>=last_name<?php echo $page_string; ?>"><?php echo _AT('last_name'); ?></a></th>
319 <th scope="col"><a href="admin/users.php?<?php echo $orders[$order]; ?>=email<?php echo $page_string; ?>"><?php echo _AT('email'); ?></a></th>
320 <th scope="col"><a href="admin/users.php?<?php echo $orders[$order]; ?>=status<?php echo $page_string; ?>"><?php echo _AT('account_status'); ?></a></th>
321 <th scope="col"><a href="admin/users.php?<?php echo $orders[$order]; ?>=last_login<?php echo $page_string; ?>"><?php echo _AT('last_login'); ?></a></th>
322 <th scope="col"><a href="admin/users.php?<?php echo $orders[$order]; ?>=creation_date<?php echo $page_string; ?>"><?php echo _AT('creation_date'); ?></a></th>
326 <?php if ($num_results > 0): ?>
329 <td colspan="<?php echo 9 + $col_counts; ?>">
330 <input type="submit" name="edit" value="<?php echo _AT('edit'); ?>" />
331 <input type="submit" name="password" value="<?php echo _AT('password'); ?>" />
332 <?php if (admin_authenticate(AT_ADMIN_PRIV_ENROLLMENT, true)): ?>
333 <input type="submit" name="enrollment" value="<?php echo _AT('enrollment'); ?>" />
335 <span style="padding:0px 10px">|</span>
337 <select name="change_status">
338 <option value="-2"><?php echo _AT('more_options'); ?></option>
339 <optgroup label="<?php echo _AT('status'); ?>">
340 <option value="<?php echo AT_STATUS_STUDENT; ?>"><?php echo _AT('student'); ?></option>
341 <option value="<?php echo AT_STATUS_INSTRUCTOR; ?>"><?php echo _AT('instructor'); ?></option>
342 <?php if ($_config['email_confirmation']): ?>
343 <option value="<?php echo AT_STATUS_UNCONFIRMED; ?>"><?php echo _AT('unconfirmed'); ?></option>
345 <option value="<?php echo AT_STATUS_DISABLED; ?>"><?php echo _AT('disable'); ?></option>
347 <option value="-2" disabled="disabled">- - - - - - - - -</option>
348 <option value="-1"><?php echo _AT('delete'); ?></option>
350 <input type="submit" name="apply" value="<?php echo _AT('apply'); ?>" />
351 <input type="submit" name="apply_all" value="<?php echo _AT('apply_to_all_results'); ?>" />
356 <?php while($row = mysql_fetch_assoc($result)): ?>
357 <tr onmousedown="document.form['m<?php echo $row['member_id']; ?>'].checked = !document.form['m<?php echo $row['member_id']; ?>'].checked; togglerowhighlight(this, 'm<?php echo $row['member_id']; ?>');" id="rm<?php echo $row['member_id']; ?>">
358 <td><input type="checkbox" name="id[]" value="<?php echo $row['member_id']; ?>" id="m<?php echo $row['member_id']; ?>" onmouseup="this.checked=!this.checked" /></td>
359 <td><?php echo $row['login']; ?></td>
360 <?php if (defined('AT_MASTER_LIST') && AT_MASTER_LIST): ?>
361 <td><?php echo $row['public_field']; ?></td>
363 <?php $startend_date_longs_format=_AT('startend_date_longs_format'); ?>
364 <td><?php echo AT_print($row['first_name'], 'members.first_name'); ?></td>
365 <td><?php echo AT_print($row['second_name'], 'members.second_name'); ?></td>
366 <td><?php echo AT_print($row['last_name'], 'members.last_name'); ?></td>
367 <td><?php echo AT_print($row['email'], 'members.email'); ?></td>
368 <td><?php echo get_status_name($row['status']); ?></td>
370 <?php if ($row['last_login'] == 0): ?>
371 <?php echo _AT('never'); ?>
374 //echo AT_date('%d/%m/%y - %H:%i', $row['last_login'], AT_DATE_MYSQL_TIMESTAMP_14);
375 echo AT_date($startend_date_longs_format, $row['last_login'], AT_DATE_MYSQL_TIMESTAMP_14);
379 <td><?php echo AT_date($startend_date_longs_format, $row['creation_date'], AT_DATE_MYSQL_DATETIME); ?></td>
385 <td colspan="<?php echo 9 + $col_counts; ?>"><?php echo _AT('none_found'); ?></td>
390 <script language="JavaScript" type="text/javascript">
392 function CheckAll() {
393 for (var i=0;i<document.form.elements.length;i++) {
394 var e = document.form.elements[i];
395 if ((e.name == 'id[]') && (e.type=='checkbox')) {
396 e.checked = document.form.selectall.checked;
397 togglerowhighlight(document.getElementById("r" + e.id), e.id);
402 function togglerowhighlight(obj, boxid) {
403 if (document.getElementById(boxid).checked) {
404 obj.className = 'selected';
411 <?php require(AT_INCLUDE_PATH.'footer.inc.php'); ?>