|
0
|
1 |
<?php |
|
|
2 |
/** |
|
|
3 |
* Multisite users administration panel. |
|
|
4 |
* |
|
|
5 |
* @package WordPress |
|
|
6 |
* @subpackage Multisite |
|
|
7 |
* @since 3.0.0 |
|
|
8 |
*/ |
|
|
9 |
|
|
|
10 |
/** Load WordPress Administration Bootstrap */ |
|
|
11 |
require_once( dirname( __FILE__ ) . '/admin.php' ); |
|
|
12 |
|
|
|
13 |
if ( ! is_multisite() ) |
|
|
14 |
wp_die( __( 'Multisite support is not enabled.' ) ); |
|
|
15 |
|
|
|
16 |
if ( ! current_user_can( 'manage_network_users' ) ) |
|
5
|
17 |
wp_die( __( 'You do not have permission to access this page.' ), 403 ); |
|
0
|
18 |
|
|
|
19 |
function confirm_delete_users( $users ) { |
|
|
20 |
$current_user = wp_get_current_user(); |
|
5
|
21 |
if ( ! is_array( $users ) || empty( $users ) ) { |
|
0
|
22 |
return false; |
|
5
|
23 |
} |
|
0
|
24 |
?> |
|
|
25 |
<h2><?php esc_html_e( 'Users' ); ?></h2> |
|
5
|
26 |
|
|
|
27 |
<?php if ( 1 == count( $users ) ) : ?> |
|
|
28 |
<p><?php _e( 'You have chosen to delete the user from all networks and sites.' ); ?></p> |
|
|
29 |
<?php else : ?> |
|
|
30 |
<p><?php _e( 'You have chosen to delete the following users from all networks and sites.' ); ?></p> |
|
|
31 |
<?php endif; ?> |
|
|
32 |
|
|
0
|
33 |
<form action="users.php?action=dodelete" method="post"> |
|
|
34 |
<input type="hidden" name="dodelete" /> |
|
|
35 |
<?php |
|
|
36 |
wp_nonce_field( 'ms-users-delete' ); |
|
|
37 |
$site_admins = get_super_admins(); |
|
5
|
38 |
$admin_out = '<option value="' . esc_attr( $current_user->ID ) . '">' . $current_user->user_login . '</option>'; ?> |
|
|
39 |
<table class="form-table"> |
|
|
40 |
<?php foreach ( ( $allusers = (array) $_POST['allusers'] ) as $user_id ) { |
|
|
41 |
if ( $user_id != '' && $user_id != '0' ) { |
|
|
42 |
$delete_user = get_userdata( $user_id ); |
|
0
|
43 |
|
|
5
|
44 |
if ( ! current_user_can( 'delete_user', $delete_user->ID ) ) { |
|
0
|
45 |
wp_die( sprintf( __( 'Warning! User %s cannot be deleted.' ), $delete_user->user_login ) ); |
|
5
|
46 |
} |
|
0
|
47 |
|
|
5
|
48 |
if ( in_array( $delete_user->user_login, $site_admins ) ) { |
|
|
49 |
wp_die( sprintf( __( 'Warning! User cannot be deleted. The user %s is a network administrator.' ), '<em>' . $delete_user->user_login . '</em>' ) ); |
|
|
50 |
} |
|
|
51 |
?> |
|
|
52 |
<tr> |
|
|
53 |
<th scope="row"><?php echo $delete_user->user_login; ?> |
|
|
54 |
<?php echo '<input type="hidden" name="user[]" value="' . esc_attr( $user_id ) . '" />' . "\n"; ?> |
|
|
55 |
</th> |
|
|
56 |
<?php $blogs = get_blogs_of_user( $user_id, true ); |
|
0
|
57 |
|
|
5
|
58 |
if ( ! empty( $blogs ) ) { |
|
0
|
59 |
?> |
|
5
|
60 |
<td><fieldset><p><legend><?php printf( |
|
|
61 |
/* translators: user login */ |
|
|
62 |
__( 'What should be done with content owned by %s?' ), |
|
|
63 |
'<em>' . $delete_user->user_login . '</em>' |
|
|
64 |
); ?></legend></p> |
|
0
|
65 |
<?php |
|
|
66 |
foreach ( (array) $blogs as $key => $details ) { |
|
5
|
67 |
$blog_users = get_users( array( 'blog_id' => $details->userblog_id, 'fields' => array( 'ID', 'user_login' ) ) ); |
|
0
|
68 |
if ( is_array( $blog_users ) && !empty( $blog_users ) ) { |
|
|
69 |
$user_site = "<a href='" . esc_url( get_home_url( $details->userblog_id ) ) . "'>{$details->blogname}</a>"; |
|
5
|
70 |
$user_dropdown = '<label for="reassign_user" class="screen-reader-text">' . __( 'Select a user' ) . '</label>'; |
|
|
71 |
$user_dropdown .= "<select name='blog[$user_id][$key]' id='reassign_user'>"; |
|
0
|
72 |
$user_list = ''; |
|
|
73 |
foreach ( $blog_users as $user ) { |
|
5
|
74 |
if ( ! in_array( $user->ID, $allusers ) ) { |
|
0
|
75 |
$user_list .= "<option value='{$user->ID}'>{$user->user_login}</option>"; |
|
5
|
76 |
} |
|
0
|
77 |
} |
|
5
|
78 |
if ( '' == $user_list ) { |
|
0
|
79 |
$user_list = $admin_out; |
|
5
|
80 |
} |
|
0
|
81 |
$user_dropdown .= $user_list; |
|
|
82 |
$user_dropdown .= "</select>\n"; |
|
|
83 |
?> |
|
|
84 |
<ul style="list-style:none;"> |
|
|
85 |
<li><?php printf( __( 'Site: %s' ), $user_site ); ?></li> |
|
|
86 |
<li><label><input type="radio" id="delete_option0" name="delete[<?php echo $details->userblog_id . '][' . $delete_user->ID ?>]" value="delete" checked="checked" /> |
|
5
|
87 |
<?php _e( 'Delete all content.' ); ?></label></li> |
|
0
|
88 |
<li><label><input type="radio" id="delete_option1" name="delete[<?php echo $details->userblog_id . '][' . $delete_user->ID ?>]" value="reassign" /> |
|
5
|
89 |
<?php echo __( 'Attribute all content to:' ) . "</label>\n" . $user_dropdown; ?></li> |
|
0
|
90 |
</ul> |
|
|
91 |
<?php |
|
|
92 |
} |
|
|
93 |
} |
|
5
|
94 |
echo "</fieldset></td></tr>"; |
|
|
95 |
} else { |
|
|
96 |
?> |
|
|
97 |
<td><fieldset><p><legend><?php _e( 'User has no sites or content and will be deleted.' ); ?></legend></p> |
|
|
98 |
<?php } ?> |
|
|
99 |
</tr> |
|
|
100 |
<?php |
|
0
|
101 |
} |
|
|
102 |
} |
|
|
103 |
|
|
5
|
104 |
?> |
|
|
105 |
</table> |
|
|
106 |
<?php |
|
|
107 |
/** This action is documented in wp-admin/users.php */ |
|
|
108 |
do_action( 'delete_user_form', $current_user ); |
|
|
109 |
|
|
|
110 |
if ( 1 == count( $users ) ) : ?> |
|
|
111 |
<p><?php _e( 'Once you hit “Confirm Deletion”, the user will be permanently removed.' ); ?></p> |
|
|
112 |
<?php else : ?> |
|
|
113 |
<p><?php _e( 'Once you hit “Confirm Deletion”, these users will be permanently removed.' ); ?></p> |
|
|
114 |
<?php endif; |
|
|
115 |
|
|
0
|
116 |
submit_button( __('Confirm Deletion'), 'delete' ); |
|
|
117 |
?> |
|
|
118 |
</form> |
|
5
|
119 |
<?php |
|
0
|
120 |
return true; |
|
|
121 |
} |
|
|
122 |
|
|
|
123 |
if ( isset( $_GET['action'] ) ) { |
|
5
|
124 |
/** This action is documented in wp-admin/network/edit.php */ |
|
|
125 |
do_action( 'wpmuadminedit' ); |
|
0
|
126 |
|
|
|
127 |
switch ( $_GET['action'] ) { |
|
|
128 |
case 'deleteuser': |
|
|
129 |
if ( ! current_user_can( 'manage_network_users' ) ) |
|
5
|
130 |
wp_die( __( 'You do not have permission to access this page.' ), 403 ); |
|
0
|
131 |
|
|
|
132 |
check_admin_referer( 'deleteuser' ); |
|
|
133 |
|
|
|
134 |
$id = intval( $_GET['id'] ); |
|
|
135 |
if ( $id != '0' && $id != '1' ) { |
|
|
136 |
$_POST['allusers'] = array( $id ); // confirm_delete_users() can only handle with arrays |
|
|
137 |
$title = __( 'Users' ); |
|
|
138 |
$parent_file = 'users.php'; |
|
|
139 |
require_once( ABSPATH . 'wp-admin/admin-header.php' ); |
|
|
140 |
echo '<div class="wrap">'; |
|
|
141 |
confirm_delete_users( $_POST['allusers'] ); |
|
|
142 |
echo '</div>'; |
|
5
|
143 |
require_once( ABSPATH . 'wp-admin/admin-footer.php' ); |
|
|
144 |
} else { |
|
0
|
145 |
wp_redirect( network_admin_url( 'users.php' ) ); |
|
|
146 |
} |
|
|
147 |
exit(); |
|
|
148 |
|
|
|
149 |
case 'allusers': |
|
|
150 |
if ( !current_user_can( 'manage_network_users' ) ) |
|
5
|
151 |
wp_die( __( 'You do not have permission to access this page.' ), 403 ); |
|
0
|
152 |
|
|
|
153 |
if ( ( isset( $_POST['action']) || isset($_POST['action2'] ) ) && isset( $_POST['allusers'] ) ) { |
|
|
154 |
check_admin_referer( 'bulk-users-network' ); |
|
|
155 |
|
|
|
156 |
$doaction = $_POST['action'] != -1 ? $_POST['action'] : $_POST['action2']; |
|
|
157 |
$userfunction = ''; |
|
|
158 |
|
|
5
|
159 |
foreach ( (array) $_POST['allusers'] as $user_id ) { |
|
|
160 |
if ( !empty( $user_id ) ) { |
|
0
|
161 |
switch ( $doaction ) { |
|
|
162 |
case 'delete': |
|
|
163 |
if ( ! current_user_can( 'delete_users' ) ) |
|
5
|
164 |
wp_die( __( 'You do not have permission to access this page.' ), 403 ); |
|
0
|
165 |
$title = __( 'Users' ); |
|
|
166 |
$parent_file = 'users.php'; |
|
|
167 |
require_once( ABSPATH . 'wp-admin/admin-header.php' ); |
|
|
168 |
echo '<div class="wrap">'; |
|
|
169 |
confirm_delete_users( $_POST['allusers'] ); |
|
|
170 |
echo '</div>'; |
|
|
171 |
require_once( ABSPATH . 'wp-admin/admin-footer.php' ); |
|
|
172 |
exit(); |
|
|
173 |
|
|
|
174 |
case 'spam': |
|
5
|
175 |
$user = get_userdata( $user_id ); |
|
0
|
176 |
if ( is_super_admin( $user->ID ) ) |
|
|
177 |
wp_die( sprintf( __( 'Warning! User cannot be modified. The user %s is a network administrator.' ), esc_html( $user->user_login ) ) ); |
|
|
178 |
|
|
|
179 |
$userfunction = 'all_spam'; |
|
5
|
180 |
$blogs = get_blogs_of_user( $user_id, true ); |
|
|
181 |
foreach ( (array) $blogs as $details ) { |
|
0
|
182 |
if ( $details->userblog_id != $current_site->blog_id ) // main blog not a spam ! |
|
|
183 |
update_blog_status( $details->userblog_id, 'spam', '1' ); |
|
|
184 |
} |
|
5
|
185 |
update_user_status( $user_id, 'spam', '1' ); |
|
0
|
186 |
break; |
|
|
187 |
|
|
|
188 |
case 'notspam': |
|
|
189 |
$userfunction = 'all_notspam'; |
|
5
|
190 |
$blogs = get_blogs_of_user( $user_id, true ); |
|
|
191 |
foreach ( (array) $blogs as $details ) |
|
0
|
192 |
update_blog_status( $details->userblog_id, 'spam', '0' ); |
|
|
193 |
|
|
5
|
194 |
update_user_status( $user_id, 'spam', '0' ); |
|
0
|
195 |
break; |
|
|
196 |
} |
|
|
197 |
} |
|
|
198 |
} |
|
|
199 |
|
|
|
200 |
wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => $userfunction ), wp_get_referer() ) ); |
|
|
201 |
} else { |
|
|
202 |
$location = network_admin_url( 'users.php' ); |
|
|
203 |
|
|
|
204 |
if ( ! empty( $_REQUEST['paged'] ) ) |
|
|
205 |
$location = add_query_arg( 'paged', (int) $_REQUEST['paged'], $location ); |
|
|
206 |
wp_redirect( $location ); |
|
|
207 |
} |
|
|
208 |
exit(); |
|
|
209 |
|
|
|
210 |
case 'dodelete': |
|
|
211 |
check_admin_referer( 'ms-users-delete' ); |
|
|
212 |
if ( ! ( current_user_can( 'manage_network_users' ) && current_user_can( 'delete_users' ) ) ) |
|
5
|
213 |
wp_die( __( 'You do not have permission to access this page.' ), 403 ); |
|
0
|
214 |
|
|
|
215 |
if ( ! empty( $_POST['blog'] ) && is_array( $_POST['blog'] ) ) { |
|
|
216 |
foreach ( $_POST['blog'] as $id => $users ) { |
|
|
217 |
foreach ( $users as $blogid => $user_id ) { |
|
|
218 |
if ( ! current_user_can( 'delete_user', $id ) ) |
|
|
219 |
continue; |
|
|
220 |
|
|
|
221 |
if ( ! empty( $_POST['delete'] ) && 'reassign' == $_POST['delete'][$blogid][$id] ) |
|
|
222 |
remove_user_from_blog( $id, $blogid, $user_id ); |
|
|
223 |
else |
|
|
224 |
remove_user_from_blog( $id, $blogid ); |
|
|
225 |
} |
|
|
226 |
} |
|
|
227 |
} |
|
|
228 |
$i = 0; |
|
|
229 |
if ( is_array( $_POST['user'] ) && ! empty( $_POST['user'] ) ) |
|
|
230 |
foreach( $_POST['user'] as $id ) { |
|
|
231 |
if ( ! current_user_can( 'delete_user', $id ) ) |
|
|
232 |
continue; |
|
|
233 |
wpmu_delete_user( $id ); |
|
|
234 |
$i++; |
|
|
235 |
} |
|
|
236 |
|
|
|
237 |
if ( $i == 1 ) |
|
|
238 |
$deletefunction = 'delete'; |
|
|
239 |
else |
|
|
240 |
$deletefunction = 'all_delete'; |
|
|
241 |
|
|
|
242 |
wp_redirect( add_query_arg( array( 'updated' => 'true', 'action' => $deletefunction ), network_admin_url( 'users.php' ) ) ); |
|
|
243 |
exit(); |
|
|
244 |
} |
|
|
245 |
} |
|
|
246 |
|
|
|
247 |
$wp_list_table = _get_list_table('WP_MS_Users_List_Table'); |
|
|
248 |
$pagenum = $wp_list_table->get_pagenum(); |
|
|
249 |
$wp_list_table->prepare_items(); |
|
|
250 |
$total_pages = $wp_list_table->get_pagination_arg( 'total_pages' ); |
|
|
251 |
|
|
|
252 |
if ( $pagenum > $total_pages && $total_pages > 0 ) { |
|
|
253 |
wp_redirect( add_query_arg( 'paged', $total_pages ) ); |
|
|
254 |
exit; |
|
|
255 |
} |
|
|
256 |
$title = __( 'Users' ); |
|
|
257 |
$parent_file = 'users.php'; |
|
|
258 |
|
|
5
|
259 |
add_screen_option( 'per_page' ); |
|
0
|
260 |
|
|
|
261 |
get_current_screen()->add_help_tab( array( |
|
|
262 |
'id' => 'overview', |
|
|
263 |
'title' => __('Overview'), |
|
|
264 |
'content' => |
|
|
265 |
'<p>' . __('This table shows all users across the network and the sites to which they are assigned.') . '</p>' . |
|
5
|
266 |
'<p>' . __('Hover over any user on the list to make the edit links appear. The Edit link on the left will take you to their Edit User profile page; the Edit link on the right by any site name goes to an Edit Site screen for that site.') . '</p>' . |
|
0
|
267 |
'<p>' . __('You can also go to the user’s profile page by clicking on the individual username.') . '</p>' . |
|
|
268 |
'<p>' . __('You can sort the table by clicking on any of the bold headings and switch between list and excerpt views by using the icons in the upper right.') . '</p>' . |
|
|
269 |
'<p>' . __('The bulk action will permanently delete selected users, or mark/unmark those selected as spam. Spam users will have posts removed and will be unable to sign up again with the same email addresses.') . '</p>' . |
|
|
270 |
'<p>' . __('You can make an existing user an additional super admin by going to the Edit User profile page and checking the box to grant that privilege.') . '</p>' |
|
|
271 |
) ); |
|
|
272 |
|
|
|
273 |
get_current_screen()->set_help_sidebar( |
|
|
274 |
'<p><strong>' . __('For more information:') . '</strong></p>' . |
|
5
|
275 |
'<p>' . __('<a href="https://codex.wordpress.org/Network_Admin_Users_Screen" target="_blank">Documentation on Network Users</a>') . '</p>' . |
|
|
276 |
'<p>' . __('<a href="https://wordpress.org/support/forum/multisite/" target="_blank">Support Forums</a>') . '</p>' |
|
0
|
277 |
); |
|
|
278 |
|
|
|
279 |
require_once( ABSPATH . 'wp-admin/admin-header.php' ); |
|
|
280 |
|
|
|
281 |
if ( isset( $_REQUEST['updated'] ) && $_REQUEST['updated'] == 'true' && ! empty( $_REQUEST['action'] ) ) { |
|
|
282 |
?> |
|
5
|
283 |
<div id="message" class="updated notice is-dismissible"><p> |
|
0
|
284 |
<?php |
|
|
285 |
switch ( $_REQUEST['action'] ) { |
|
|
286 |
case 'delete': |
|
|
287 |
_e( 'User deleted.' ); |
|
|
288 |
break; |
|
|
289 |
case 'all_spam': |
|
|
290 |
_e( 'Users marked as spam.' ); |
|
|
291 |
break; |
|
|
292 |
case 'all_notspam': |
|
|
293 |
_e( 'Users removed from spam.' ); |
|
|
294 |
break; |
|
|
295 |
case 'all_delete': |
|
|
296 |
_e( 'Users deleted.' ); |
|
|
297 |
break; |
|
|
298 |
case 'add': |
|
|
299 |
_e( 'User added.' ); |
|
|
300 |
break; |
|
|
301 |
} |
|
|
302 |
?> |
|
|
303 |
</p></div> |
|
|
304 |
<?php |
|
|
305 |
} |
|
|
306 |
?> |
|
|
307 |
<div class="wrap"> |
|
|
308 |
<h2><?php esc_html_e( 'Users' ); |
|
|
309 |
if ( current_user_can( 'create_users') ) : ?> |
|
|
310 |
<a href="<?php echo network_admin_url('user-new.php'); ?>" class="add-new-h2"><?php echo esc_html_x( 'Add New', 'user' ); ?></a><?php |
|
|
311 |
endif; |
|
|
312 |
|
|
|
313 |
if ( !empty( $usersearch ) ) |
|
|
314 |
printf( '<span class="subtitle">' . __( 'Search results for “%s”' ) . '</span>', esc_html( $usersearch ) ); |
|
|
315 |
?> |
|
|
316 |
</h2> |
|
|
317 |
|
|
|
318 |
<?php $wp_list_table->views(); ?> |
|
|
319 |
|
|
5
|
320 |
<form method="get" class="search-form"> |
|
0
|
321 |
<?php $wp_list_table->search_box( __( 'Search Users' ), 'all-user' ); ?> |
|
|
322 |
</form> |
|
|
323 |
|
|
5
|
324 |
<form id="form-user-list" action="users.php?action=allusers" method="post"> |
|
0
|
325 |
<?php $wp_list_table->display(); ?> |
|
|
326 |
</form> |
|
|
327 |
</div> |
|
|
328 |
|
|
|
329 |
<?php require_once( ABSPATH . 'wp-admin/admin-footer.php' ); ?> |