| Current File : /home/users/kundensystem/www/admin/admin_change.php |
<?php
include './inc/header.php';
include './inc/sidebar.php';
if(!isset($_GET['id'])){
?>
<script> location.href="admin_list.php"; </script>
<?php
exit;
}
if($adminData['role']!='1'){
?><script>location.href="index.php";</script><?php
exit;
}
$id=$_GET['id'];
$msg='';
if(isset($_POST['rand'])&&$_SESSION['rand']==$_POST['rand']){
if($_POST['pass']!=$_POST['conf_pass']) $msg='<div class="alert alert-danger alert-dismissible fade show"><b>Hinweis</b>: Passwörter stimmen nicht überein!</div>';
$sql=mysqli_query($conn, "SELECT * FROM ".$admin_tb." WHERE Nutzername = '".$_POST['name']."' AND id <> '".$id."'");
$ROW=mysqli_fetch_assoc($sql);
if($ROW) $msg='<div class="alert alert-danger alert-dismissible fade show"><b>Hinweis</b>: Dieser Username wird bereits verwendet!</div>';
$sql=mysqli_query($conn, "SELECT * FROM ".$admin_tb." WHERE user_email = '".$_POST['email']."' AND id <> '".$id."'");
$ROW=mysqli_fetch_assoc($sql);
if($ROW) $msg='<div class="alert alert-danger alert-dismissible fade show"><b>Hinweis</b>: Diese E-Mail ist bereits in Verwendung!</div>';
if($msg==''){
mysqli_query($conn, "UPDATE ".$admin_tb."
SET Nutzername = '".$_POST['name']."',
user_email = '".$_POST['email']."',
Passwort = '".md5($_POST['pass'])."',
role = '".$_POST['role']."'
WHERE id = '".$id."'"
);
$msg='<div class="alert alert-success alert-dismissible fade show"><b>Hinweis</b>: User wurde erfolgreich geändert!</div>';
}
}
$editAdmin = mysqli_fetch_assoc(mysqli_query($conn, "SELECT * FROM ".$admin_tb." WHERE id = '".$id."'"));
?>
<main id="main" class="main">
<div class="pagetitle">
<h1>User bearbeiten</h1>
<nav>
<ol class="breadcrumb">
<li class="breadcrumb-item"><a href="index.php">Home</a></li>
<li class="breadcrumb-item">Rechte verwalten</li>
<li class="breadcrumb-item">User bearbeiten</li>
</ol>
</nav>
</div><!-- End Page Title -->
<section class="section dashboard">
<div class="row">
<div class="col-lg-2"> </div>
<div class="col-lg-8">
<div class="card">
<div class="card-body">
<h5 class="card-title">User bearbeiten</h5>
<?php if($msg!='') echo $msg; ?>
<form class="form-horizontal" method="post" enctype="multipart/form-data">
<div class="row m-bot15">
<label class="control-label col-lg-3" for="inputSuccess">Admin-Rolle : </label>
<div class="col-lg-6">
<select name="role" class="form-control">
<option value="2" <?php if($editAdmin['role']=='2') echo 'selected';?>>Co-Admin</option>
<option value="3" <?php if($editAdmin['role']=='3') echo 'selected';?>>Reseller</option>
</select>
</div>
</div>
<div class="row m-bot15">
<label class="control-label col-lg-3" for="inputSuccess">User Name : </label>
<div class="col-lg-6">
<input class="form-control" type="text" name="name" value="<?= $editAdmin['Nutzername'];?>" required>
</div>
</div>
<div class="row m-bot15">
<label class="control-label col-lg-3" for="inputSuccess">E-Mail Adresse : </label>
<div class="col-lg-6">
<input class="form-control" type="email" name="email" value="<?= $editAdmin['user_email'];?>" required>
</div>
</div>
<div class="row m-bot15">
<label class="control-label col-lg-3" for="inputSuccess">Neues Passwort : </label>
<div class="col-lg-6">
<input class="form-control" type="password" name="pass" required>
</div>
</div>
<div class="row m-bot15">
<label class="control-label col-lg-3" for="inputSuccess">Neues Passwort erneut eingeben : </label>
<div class="col-lg-6">
<input class="form-control" type="password" name="conf_pass" required>
</div>
</div>
<div class="row">
<label class="control-label col-lg-3" for="inputSuccess"></label>
<div class="col-lg-6">
<?php $rand=rand(); $_SESSION['rand']=$rand; ?>
<input type="hidden" value="<?= $rand;?>" name="rand">
<input type="submit" class="btn btn-primary" value="Submit">
</div>
</div>
</form>
</div>
</div>
</div>
</div>
</section>
</main><!-- End #main -->
<?php
include_once './inc/footer.php';
?>
<script>
$('.sub8 ul').addClass('show');
$('.sub8 .nav-link').removeClass('collapsed');
</script>