user_is_admin) { header("Location: login.php"); exit; } if (($_POST['password1'] || $_POST['password2']) && $_POST['password1'] != $_POST['password2']) { barf("Passwords do not match."); } if ($_POST['Submit'] == 'Delete') { mysql_query_wrapper("delete from users where user_id='".$_POST['user_id']."'"); header("Location: users.php"); exit; } $user_id = $_POST['user_id'] + 0; if (!$user_id) { mysql_query_wrapper("insert into users (user_is_admin) values (1)"); $user_id = mysql_insert_id(); } mysql_query_wrapper("update users set user_name='{$_POST['user_name']}', user_email='{$_POST['user_email']}', user_notify_newticket='".oneorzero('user_notify_newticket')."', user_notify_assign='".oneorzero('user_notify_assign')."', user_notify_ownticket='".oneorzero('user_notify_ownticket')."' where user_id='$user_id'"); if ($_POST['password1']) { $md5 = md5($_POST['password1']); mysql_query_wrapper("update users set user_password_md5='$md5' where user_id='$user_id'"); } header ("Location: users.php"); ?>