# details des users aendern
case 2 :
$design = new design ( 'Admins Area', 'Admins Area', 2 );
$design->header();
$changeok = true;
$uid = escape($_POST['uID'], 'integer');
$altes_recht = db_result(db_query("SELECT recht FROM prefix_user WHERE id = ".$uid),0);
$neues_recht = escape($_POST['urecht'], 'integer');
if (($neues_recht <= $_SESSION['authright'] OR $altes_recht <= $_SESSION['authright']) AND $_SESSION['authid'] > 1) {
$changeok = false;
}
if ( $changeok ) {
if (isset($_POST['userdel'])) {
db_query('DELETE FROM prefix_user WHERE id = "'.$uid.'"');
db_query('DELETE FROM prefix_userfields WHERE uid = "'.$uid.'"');
db_query("DELETE FROM prefix_groupusers WHERE uid = ".$uid);
db_query("DELETE FROM prefix_modulerights WHERE uid = ".$uid);
db_query("DELETE FROM prefix_pm WHERE eid = ".$uid);
db_query("DELETE FROM prefix_online WHERE uid = ".$uid);
wd ('?user','User wurde erfolgreich gelöscht');
} else {
$abf = "SELECT * FROM prefix_user WHERE id = '".$uid."'";
$erg = db_query($abf);
$row = db_fetch_object($erg);
if (isset($_POST['passw'])) {
$newPass = genkey ( 8 );
$newPassMD5 = md5($newPass);
icmail ( $row->email , 'neues Password' , "Hallo\n\nDein Password wurde soeben von einem Administrator gäendert es ist nun:\n\n$newPass\n\nGruß der Administrator");
db_query('UPDATE `prefix_user` SET pass = "'.$newPassMD5.'" WHERE id = "'.$_POST['uID'].'"');
}
profilefields_change_save ( $_POST['uID'] );
$usaName1 = escape($_POST['usaName1'], 'string');
$email = escape($_POST['email'], 'string');
$homepage = escape($_POST['homepage'], 'string');
$wohnort = escape($_POST['wohnort'], 'string');
$icq = escape($_POST['icq'], 'string');
$msn = escape($_POST['msn'], 'string');
$yahoo = escape($_POST['yahoo'], 'string');
$aim = escape($_POST['aim'], 'string');
$staat = escape($_POST['staat'], 'string');
$spezrank = escape($_POST['spezrank'], 'integer');
$geschlecht = escape($_POST['geschlecht'], 'integer');
$status = escape($_POST['status'], 'integer');
$opt_mail = escape($_POST['opt_mail'], 'integer');
$opt_pm = escape($_POST['opt_pm'], 'integer');
$opt_pm_popup = escape($_POST['opt_pm_popup'], 'integer');
$gebdatum = escape($_POST['gebdatum'], 'string');
$sig = escape($_POST['sig'], 'string');
db_query('UPDATE prefix_user
SET
name = "'.$usaName1.'",
recht = "'.$neues_recht.'",
email = "'.$email.'",
homepage = "'.$homepage.'",
wohnort = "'.$wohnort.'",
icq = "'.$icq.'",
msn = "'.$msn.'",
yahoo = "'.$yahoo.'",
aim = "'.$aim.'",
staat = "'.$staat.'",
spezrank = "'.$spezrank.'",
geschlecht = "'.$geschlecht.'",
status = "'.$status.'",
opt_mail = "'.$opt_mail.'",
opt_pm = "'.$opt_pm.'",
opt_pm_popup = "'.$opt_pm_popup.'",
gebdatum = "'.$gebdatum.'",
sig = "'.$sig.'"
WHERE id = "'.$uid.'"');
}
}
wd('admin.php?user-1-'.$uid,'Das Profil wurde erfolgreich geaendert',2);
$design->footer();
break;