""){ $company=$_GET['CompanyID']; } else $company=0; $db=new database(); $uidx=$_GET['id']; $db->query("SELECT * FROM `users_accts` WHERE `uid`='$uidx'"); $row=$db->get_row(); $user=$row['utype']; $CompanyIDx=$row['CompanyID']; $CompanyNamex=$row['CompanyName']; $email=$row['email']; $pass=$row['pass']; $fname=$row['fname']; $lname=$row['lname']; if($row['perms']) $perms=explode("-",$row['perms']); $msg=''; if (isset($user) && $user>"" && $_SERVER['REQUEST_METHOD']=="POST"){ if($user=='Admin'){ $email=mysql_real_escape_string(trim($_POST['email'])); $pass=mysql_real_escape_string(trim($_POST['pass'])); $fname=mysql_real_escape_string(trim($_POST['fname'])); $lname=mysql_real_escape_string(trim($_POST['lname'])); if(isset($_POST['perms'])) $perms=implode('-',$_POST['perms']); else $perms=''; $db->query("SELECT email FROM `users_accts` WHERE `email`='$email' AND uid!='$uidx'"); if($db->count_rows()==0){ $db->query("UPDATE `users_accts` SET `utype`='Admin', `email`='$email', `fname`='$fname', `lname`='$lname', `perms`='$perms' WHERE `uid`='$uidx'"); if($pass>''){ $db->query("UPDATE `users_accts` SET `pass`=OLD_PASSWORD('$pass') WHERE `uid`='$uidx'"); } $msg='Admin Updated'; }else{ $msg='Email Already Exists'; } } elseif($user=='Company') { $CompanyName=mysql_real_escape_string(trim($_POST['CompanyName'])); if(isset($_POST['perms'])) $perms=implode('-',$_POST['perms']); else $perms=''; $db->query("SELECT CompanyName FROM `users_accts` WHERE `utype`='Company' AND `CompanyName`='$CompanyName' AND uid!='$uidx'"); if($db->count_rows()==0){ $db->query("UPDATE `users_accts` SET `utype`='Company', `CompanyName`='$CompanyName', `perms`='$perms' WHERE `uid`='$uidx'"); $msg='Company Updated'; }else{ $msg='Company Name Already Exists'; } }elseif($user=='Consultant'){ $email=mysql_real_escape_string(trim($_POST['email'])); $pass=mysql_real_escape_string(trim($_POST['pass'])); $fname=mysql_real_escape_string(trim($_POST['fname'])); $lname=mysql_real_escape_string(trim($_POST['lname'])); if(isset($_POST['perms'])) $perms=implode('-',$_POST['perms']); else $perms=''; $db->query("SELECT email FROM `users_accts` WHERE `email`='$email' AND uid!='$uidx'"); if($db->count_rows()==0){ $db->query("UPDATE `users_accts` SET `utype`='Consultant', `email`='$email', `fname`='$fname', `lname`='$lname', `perms`='$perms' WHERE `uid`='$uidx'"); if($pass>''){ $db->query("UPDATE `users_accts` SET `pass`=OLD_PASSWORD('$pass') WHERE `uid`='$uidx'"); } $db->query("DELETE FROM `consultant_companies` WHERE (`cuid`='$uidx') "); foreach($_POST['CompanyIDb'] as $ccomid){ $db->query("INSERT INTO `consultant_companies` SET `cuid`='$uidx',`ccomid`='$ccomid'"); } $msg='Consultant Updated'; }else{ $msg='Email Already Exists'; } }elseif($user=='Client'){ $email=mysql_real_escape_string(trim($_POST['email'])); $pass=mysql_real_escape_string(trim($_POST['pass'])); $fname=mysql_real_escape_string(trim($_POST['fname'])); $lname=mysql_real_escape_string(trim($_POST['lname'])); $CompanyID=mysql_real_escape_string(trim($_POST['CompanyID'])); if(isset($_POST['perms'])) $perms=implode('-',$_POST['perms']); else $perms=''; $db->query("SELECT email FROM `users_accts` WHERE `email`='$email' AND uid!='$uidx'"); if($db->count_rows()==0){ $db->query("UPDATE `users_accts` SET `utype`='Client', `email`='$email', `fname`='$fname', `lname`='$lname', CompanyID='$CompanyID', `perms`='$perms' WHERE `uid`='$uidx' "); if($pass>''){ $db->query("UPDATE `users_accts` SET `pass`=OLD_PASSWORD('$pass') WHERE `uid`='$uidx'"); } $msg='Client Updated'; }else{ $msg='Email Already Exists'; } } $db->query("SELECT * FROM `users_accts` WHERE `uid`='$uidx'"); $row=$db->get_row(); $user=$row['utype']; $CompanyIDx=$row['CompanyID']; $CompanyNamex=$row['CompanyName']; $email=$row['email']; $pass=$row['pass']; $fname=$row['fname']; $lname=$row['lname']; if($row['perms']) $perms=explode("-",$row['perms']); } ///UPDATE `users_accts` SET `utype`='$CompanyName',`email`='$Email',`pass`='$Pass',`CompanyID`='12',`CompanyName`='12',`fname`='$frname',`lname`='$lname' WHERE (`uid`='2') $db->query("SELECT * FROM `consultant_companies` WHERE (`cuid`='$uidx') "); if($db->count_rows()>0){ $consoltantIDs=''; while($row=$db->get_row()){ $consoltantIDs[]=$row['ccomid']; } }else{ $consoltantIDs=array(); } $db->query("SELECT * FROM `users_accts` WHERE `utype` = 'Company' "); $numberofcompanies=$db->count_rows(); $CompanySelect=' '.$CompanyName.' '; } $CompanySelect.=''; $CompanyBoxes.=''; get_header(); ?>
FilesAdd FileUsersAdd UserEdit ProfileLogout

User Edit ''){ print "
".$msg; } ?>

User Type
Email
Password Leave password blank to keep the current password
   
First Name
Last Name
   
Permissions   2009     2012
 
Limited Partner
   
Permissions   2009     2012
 
Email
Password Leave password blank to keep the current password
   
First Name
Last Name
   
 
Limited Partners
   
 
Limited Partner
   
Email
Password Leave password blank to keep the current password
   
First Name
Last Name
   
Permissions   2009     2012
 
Method Advisors, LLC | 192 South Street, 6th Floor | Boston, MA 02111
Legal Disclaimer