Revision 1457
Added by Dietmar over 13 years ago
| save.php | ||
|---|---|---|
| 19 | 19 |
// Print admin header |
| 20 | 20 |
require('../../config.php');
|
| 21 | 21 |
require_once(WB_PATH.'/framework/class.admin.php'); |
| 22 |
$admin = new admin('Access', 'users_modify');
|
|
| 22 |
// suppress to print the header, so no new FTAN will be set |
|
| 23 |
$admin = new admin('Access', 'users_modify', false);
|
|
| 23 | 24 |
|
| 24 |
|
|
| 25 | 25 |
// Create a javascript back link |
| 26 | 26 |
$js_back = ADMIN_URL.'/users/index.php'; |
| 27 | 27 |
|
| 28 |
// Create new database object |
|
| 29 |
//$database = new database(); |
|
| 30 | 28 |
if( !$admin->checkFTAN() ) |
| 31 | 29 |
{
|
| 30 |
$admin->print_header(); |
|
| 32 | 31 |
$admin->print_error($MESSAGE['GENERIC_SECURITY_ACCESS'],$js_back); |
| 33 |
exit(); |
|
| 34 | 32 |
} |
| 33 |
// After check print the header |
|
| 34 |
$admin->print_header(); |
|
| 35 | 35 |
|
| 36 | 36 |
// Check if user id is a valid number and doesnt equal 1 |
| 37 | 37 |
if(!isset($_POST['user_id']) OR !is_numeric($_POST['user_id']) OR $_POST['user_id'] == 1) {
|
Also available in: Unified diff
Preparing 2.8.2 stable, last tests