# does the product exist?
SendSQL("SELECT login_name
- FROM profiles
- WHERE login_name=" . SqlQuote($user));
+ FROM profiles
+ WHERE login_name=" . SqlQuote($user));
return FetchOneColumn();
}
# do we have a product?
unless ($user) {
- print "Sorry, you haven't specified a user.";
+ print "Sorry, you haven't specified a user.";
PutTrailer();
- exit;
+ exit;
}
unless (TestUser $user) {
- print "Sorry, user '$user' does not exist.";
+ print "Sorry, user '$user' does not exist.";
PutTrailer();
- exit;
+ exit;
}
}
sub PutTrailer (@)
{
- my (@links) = ("Back to the <A HREF=\"./\">index</A>",
- "<A HREF=\"editusers.cgi?action=add\">Add a new user</A>", @_);
+ my (@links) = ("Back to the <A HREF=\"./\">index</A>", @_);
my $count = $#links;
my $num = 0;
print "<P>\n";
foreach (@links) {
- print $_;
- if ($num == $count) {
- print ".\n";
- }
- elsif ($num == $count-1) {
- print " or ";
- }
- else {
- print ", ";
- }
- $num++;
+ print $_;
+ if ($num == $count) {
+ print ".\n";
+ }
+ elsif ($num == $count-1) {
+ print " or ";
+ }
+ else {
+ print ", ";
+ }
+ $num++;
}
PutFooter();
}
if ($action eq 'list') {
PutHeader("Select user");
my $query = "";
- my $matchstr = $::FORM{'matchstr'};
if (exists $::FORM{'matchtype'}) {
$query = "SELECT login_name,realname,disabledtext " .
"FROM profiles WHERE login_name ";
if ($::FORM{'matchtype'} eq 'substr') {
$query .= "like";
- $matchstr = '%' . $matchstr . '%';
+ $::FORM{'matchstr'} = '%' . $::FORM{'matchstr'} . '%';
} elsif ($::FORM{'matchtype'} eq 'regexp') {
$query .= "regexp";
- $matchstr = '.'
- unless $matchstr;
} elsif ($::FORM{'matchtype'} eq 'notregexp') {
$query .= "not regexp";
- $matchstr = '.'
- unless $matchstr;
} else {
die "Unknown match type";
}
- $query .= SqlQuote($matchstr) . " ORDER BY login_name";
+ $query .= SqlQuote($::FORM{'matchstr'}) . " ORDER BY login_name";
} elsif (exists $::FORM{'query'}) {
$query = "SELECT login_name,realname,disabledtext " .
"FROM profiles WHERE " . $::FORM{'query'} . " ORDER BY login_name";
if ($count % 100 == 0) {
print "</table>$header";
}
- my ($user, $realname, $disabledtext) = FetchSQLData();
+ my ($user, $realname, $disabledtext) = FetchSQLData();
my $s = "";
my $e = "";
if ($disabledtext) {
$s = "<STRIKE>";
$e = "</STRIKE>";
}
- $realname ||= "<FONT COLOR=\"red\">missing</FONT>";
- print "<TR>\n";
-
print " <TD VALIGN=\"top\"><A HREF=\"editusers.cgi?action=edit&user=", url_quote($user), "\"><B>$s$user$e</B></A></TD>\n";
- print " <TD VALIGN=\"top\">$s$realname$e</TD>\n";
+ $realname ||= "<FONT COLOR=\"red\">missing</FONT>";
+ print "<TR>\n";
+ print " <TD VALIGN=\"top\"><A HREF=\"editusers.cgi?action=edit&user=", url_quote($user), "\"><B>$s$user$e</B></A></TD>\n";
+ print " <TD VALIGN=\"top\">$s$realname$e</TD>\n";
if ($candelete) {
print " <TD VALIGN=\"top\"><A HREF=\"editusers.cgi?action=del&user=", url_quote($user), "\">Delete</A></TD>\n";
}
- print "</TR>";
+ print "</TR>";
}
if ($editall && !Param('useLDAP')) {
print "<TR>\n";
exit;
}
if (TestUser($user)) {
- print "The user '$user' does already exist. Please press\n";
- print "<b>Back</b> and try again.\n";
+ print "The user '$user' does already exist. Please press\n";
+ print "<b>Back</b> and try again.\n";
PutTrailer($localtrailer);
- exit;
+ exit;
}
my $passworderror = ValidatePassword($password);
if ( $passworderror ) {
print "To change ${user}'s permissions, go back and <a href=\"editusers.cgi?action=edit&user=" . url_quote($user)."\">edit this user</A>";
print "<p>\n";
PutTrailer($localtrailer,
-
"<a href=\"editusers.cgi?action=add\">add</a> another user.");
+ "<a href=\"editusers.cgi?action=add\">add</a> another user.");
exit;
}
# display some data about the user
SendSQL("SELECT realname, groupset FROM profiles
- WHERE login_name=" . SqlQuote($user));
+ WHERE login_name=" . SqlQuote($user));
my ($realname, $groupset) =
FetchSQLData();
$realname ||= "<FONT COLOR=\"red\">missing</FONT>";
print " <TD VALIGN=\"top\">Group set:</TD>\n";
print " <TD VALIGN=\"top\">";
SendSQL("SELECT name
- FROM groups
+ FROM groups
WHERE bit & $groupset = bit
- ORDER BY isbuggroup, name");
+ ORDER BY isbuggroup, name");
my $found = 0;
while ( MoreSQLData() ) {
- my ($name) = FetchSQLData();
+ my ($name) = FetchSQLData();
print "<br>\n" if $found;
print ucfirst $name;
$found = 1;
my $nodelete = '';
SendSQL("SELECT program, value
- FROM components
+ FROM components
WHERE initialowner=" . DBname_to_id($user));
$found = 0;
while (MoreSQLData()) {
- if ($found) {
- print "<BR>\n";
- } else {
- print "<TR>\n";
- print " <TD VALIGN=\"top\">Initial owner:</TD>\n";
- print " <TD VALIGN=\"top\">";
- }
- my ($product, $component) = FetchSQLData();
-
print "<a href=\"editcomponents.cgi?product=", url_quote($product),
- "&component=", url_quote($component),
- "&action=edit\">$product: $component</a>";
- $found = 1;
- $nodelete = 'initial bug owner';
+ if ($found) {
+ print "<BR>\n";
+ } else {
+ print "<TR>\n";
+ print " <TD VALIGN=\"top\">Initial owner:</TD>\n";
+ print " <TD VALIGN=\"top\">";
+ }
+ my ($product, $component) = FetchSQLData();
+ print "<a href=\"editcomponents.cgi?product=", url_quote($product),
+ "&component=", url_quote($component),
+ "&action=edit\">$product: $component</a>";
+ $found = 1;
+ $nodelete = 'initial bug owner';
}
print "</TD>\n</TR>" if $found;
# Check if the user is an initialqacontact
SendSQL("SELECT program, value
- FROM components
+ FROM components
WHERE initialqacontact=" . DBname_to_id($user));
$found = 0;
while (MoreSQLData()) {
- if ($found) {
- print "<BR>\n";
- } else {
- print "<TR>\n";
- print " <TD VALIGN=\"top\">Initial QA contact:</TD>\n";
- print " <TD VALIGN=\"top\">";
- }
- my ($product, $component) = FetchSQLData();
-
print "<a href=\"editcomponents.cgi?product=", url_quote($product),
- "&component=", url_quote($component),
- "&action=edit\">$product: $component</a>";
- $found = 1;
- $nodelete = 'initial QA contact';
+ if ($found) {
+ print "<BR>\n";
+ } else {
+ print "<TR>\n";
+ print " <TD VALIGN=\"top\">Initial QA contact:</TD>\n";
+ print " <TD VALIGN=\"top\">";
+ }
+ my ($product, $component) = FetchSQLData();
+ print "<a href=\"editcomponents.cgi?product=", url_quote($product),
+ "&component=", url_quote($component),
+ "&action=edit\">$product: $component</a>";
+ $found = 1;
+ $nodelete = 'initial QA contact';
}
print "</TD>\n</TR>" if $found;
if ($nodelete) {
-
print "<P>You can't delete this user because '$user' is an $nodelete ",
- "for at least one product.";
- PutTrailer($localtrailer);
- exit;
+ print "<P>You can't delete this user because '$user' is an $nodelete ",
+ "for at least one product.";
+ PutTrailer($localtrailer);
+ exit;
}
CheckUser($user);
SendSQL("SELECT userid
- FROM profiles
- WHERE login_name=" . SqlQuote($user));
+ FROM profiles
+ WHERE login_name=" . SqlQuote($user));
my $userid = FetchOneColumn();
SendSQL("DELETE FROM profiles
- WHERE login_name=" . SqlQuote($user));
+ WHERE login_name=" . SqlQuote($user));
SendSQL("DELETE FROM logincookies
- WHERE userid=" . $userid);
+ WHERE userid=" . $userid);
print "User deleted.<BR>\n";
PutTrailer($localtrailer);
# get data of user
SendSQL("SELECT realname, groupset, blessgroupset, disabledtext
- FROM profiles
- WHERE login_name=" . SqlQuote($user));
+ FROM profiles
+ WHERE login_name=" . SqlQuote($user));
my ($realname, $groupset, $blessgroupset,
$disabledtext) = FetchSQLData();
my $groupset = "0";
foreach (keys %::FORM) {
- next unless /^bit_/;
- #print "$_=$::FORM{$_}<br>\n";
+ next unless /^bit_/;
+ #print "$_=$::FORM{$_}<br>\n";
detaint_natural($::FORM{$_}) || die "Groupset field tampered with";
- $groupset .= " + $::FORM{$_}";
+ $groupset .= " + $::FORM{$_}";
}
my $blessgroupset = "0";
foreach (keys %::FORM) {
- next unless /^blbit_/;
- #print "$_=$::FORM{$_}<br>\n";
+ next unless /^blbit_/;
+ #print "$_=$::FORM{$_}<br>\n";
detaint_natural($::FORM{$_}) || die "Blessgroupset field tampered with";
- $blessgroupset .= " + $::FORM{$_}";
+ $blessgroupset .= " + $::FORM{$_}";
}
CheckUser($userold);
"($u, $::userid, now(), $fieldid, " .
" $groupsetold, $groupset)");
}
- print "Updated permissions.\n";
+ print "Updated permissions.\n";
}
}
if ($editall && $blessgroupset ne $blessgroupsetold) {
SendSQL("UPDATE profiles
- SET blessgroupset=" . $blessgroupset . "
- WHERE login_name=" . SqlQuote($userold));
- print "Updated ability to tweak permissions of other users.\n";
+ SET blessgroupset=" . $blessgroupset . "
+ WHERE login_name=" . SqlQuote($userold));
+ print "Updated ability to tweak permissions of other users.\n";
}
# Update the database with the user's new password if they changed it.
}
if ($editall && $realname ne $realnameold) {
SendSQL("UPDATE profiles
- SET realname=" . SqlQuote($realname) . "
- WHERE login_name=" . SqlQuote($userold));
- print "Updated real name.<BR>\n";
+ SET realname=" . SqlQuote($realname) . "
+ WHERE login_name=" . SqlQuote($userold));
+ print "Updated real name.<BR>\n";
}
if ($editall && $disabledtext ne $disabledtextold) {
SendSQL("UPDATE profiles
- SET disabledtext=" . SqlQuote($disabledtext) . "
- WHERE login_name=" . SqlQuote($userold));
+ SET disabledtext=" . SqlQuote($disabledtext) . "
+ WHERE login_name=" . SqlQuote($userold));
SendSQL("SELECT userid
- FROM profiles
- WHERE login_name=" . SqlQuote($userold));
+ FROM profiles
+ WHERE login_name=" . SqlQuote($user));
my $userid = FetchOneColumn();
SendSQL("DELETE FROM logincookies
- WHERE userid=" . $userid);
- print "Updated disabled text.<BR>\n";
+ WHERE userid=" . $userid);
+ print "Updated disabled text.<BR>\n";
}
if ($editall && $user ne $userold) {
- unless ($user) {
- print "Sorry, I can't delete the user's name.";
+ unless ($user) {
+ print "Sorry, I can't delete the user's name.";
PutTrailer($localtrailer);
- exit;
+ exit;
}
- if (TestUser($user)) {
- print "Sorry, user name '$user' is already in use.";
+ if (TestUser($user)) {
+ print "Sorry, user name '$user' is already in use.";
PutTrailer($localtrailer);
- exit;
+ exit;
}
SendSQL("UPDATE profiles
- SET login_name=" . SqlQuote($user) . "
- WHERE login_name=" . SqlQuote($userold));
+ SET login_name=" . SqlQuote($user) . "
+ WHERE login_name=" . SqlQuote($userold));
- print "Updated user's name.<BR>\n";
+ print "Updated user's name.<BR>\n";
}
PutTrailer($localtrailer);
projects / thirdparty / bugzilla.git / commitdiff
