$serendipity['serendipityUserlevel']) { $data['not_authorized'] = true; } elseif (empty($_POST['username'])) { $data['empty_username'] = true; } elseif ( (!empty($_POST['password']) && !empty($_POST['check_password']) && $_POST['check_password'] != $_SESSION['serendipityPassword'] && serendipity_passwordhash($_POST['check_password']) != $_SESSION['serendipityPassword']) || (!empty($_POST['password']) && empty($_POST['check_password']) && $_POST['password'] != $_SESSION['serendipityPassword'] && serendipity_passwordhash($_POST['password']) != $_SESSION['serendipityPassword']) ) { $data['password_check_fail'] = true; } else { $valid_groups = serendipity_getGroups($serendipity['authorid'], true); $data['realname'] = $_POST['realname']; foreach($config as $category) { foreach ($category['items'] as $item) { if (in_array('groups', $item['flags'])) { if (serendipity_checkPermission('adminUsersMaintainOthers')) { // Void, no fixing necessarry } elseif (serendipity_checkPermission('adminUsersMaintainSame')) { if (!is_array($_POST[$item['var']])) { continue; } // Check that no user may assign groups he's not allowed to. foreach($_POST[$item['var']] AS $groupkey => $groupval) { if (in_array($groupval, $valid_groups)) { continue; } elseif ($groupval == 2 && in_array(3, $valid_groups)) { // Admin is allowed to assign users to chief editors continue; } elseif ($groupval == 1 && in_array(2, $valid_groups)) { // Chief is allowed to assign users to editors continue; } unset($_POST[$item['var']][$groupkey]); } } else { continue; } /* if (count($_POST[$item['var']]) < 1) { echo '

' . WARNING_NO_GROUPS_SELECTED . '

'; } else { serendipity_updateGroups($_POST[$item['var']], $serendipity['authorid'], false); } */ continue; } // Moved to group administration: if ($item['var'] == 'userlevel') continue; if ($item['view'] == 'dangerous') continue; if (serendipity_checkConfigItemFlags($item, 'local')) { serendipity_set_user_var($item['var'], $_POST[$item['var']], $serendipity['authorid'], true); } if (serendipity_checkConfigItemFlags($item, 'configuration')) { serendipity_set_config_var($item['var'], $_POST[$item['var']], $serendipity['authorid']); } } $pl_data = array( 'id' => $serendipity['POST']['authorid'], 'authorid' => $serendipity['POST']['authorid'], 'username' => $_POST['username'], 'realname' => $_POST['realname'], 'email' => $_POST['email'] ); serendipity_updatePermalink($pl_data, 'author'); serendipity_plugin_api::hook_event('backend_users_edit', $pl_data); } $from = $_POST; } } $data['formToken'] = serendipity_setFormToken(); $template = serendipity_parseTemplate(S9Y_CONFIG_USERTEMPLATE); $user = serendipity_fetchUsers($serendipity['authorid']); $from = $user[0]; $from['groups'] = serendipity_getGroups($serendipity['authorid']); unset($from['password']); $data['config'] = serendipity_printConfigTemplate($template, $from, true, false); $add = array('internal' => true); serendipity_plugin_api::hook_event('backend_sidebar_entries_event_display_profiles', $from, $add); if (!is_object($serendipity['smarty'])) { serendipity_smarty_init(); } echo serendipity_smarty_show('admin/personal.inc.tpl', $data); /* vim: set sts=4 ts=4 expandtab : */