Navigation

Changeset 4216

Timestamp:

09/24/06 10:08:58 (2 years ago)

Author:

ryan

Message:

Don't show user form without privs. Props westi. fixes #3142

Files:

r4112	r4216
13	13	$wp_http_referer = remove_query_arg(array('update', 'delete_count'), stripslashes($wp_http_referer));
14	14
	15	$user_id = (int) $user_id;
	16
	17	if ( !$user_id )
	18	wp_die(__('Invalid user ID.'));
	19
15	20	switch ($action) {
16	21	case 'switchposts':
…	…
27	32
28	33	if ( !current_user_can('edit_user', $user_id) )
29		~~$errors = new WP_Error('head',~~ __('You do not have permission to edit this user.'));
30		else
31		$errors = edit_user($user_id);
	34	wp_die(__('You do not have permission to edit this user.'));
	35
	36	$errors = edit_user($user_id);
32	37
33	38	if( !is_wp_error( $errors ) ) {
…	…
39	44
40	45	default:
	46	$profileuser = get_user_to_edit($user_id);
	47
	48	if ( !current_user_can('edit_user', $user_id) )
	49	wp_die(__('You do not have permission to edit this user.'));
	50
41	51	include ('admin-header.php');
42
43		~~$profileuser = get_user_to_edit($user_id);~~
44
45		~~if ( !current_user_can('edit_user', $user_id) )~~
46		~~if ( !is_wp_error( $errors ) )~~
47		~~$errors = new WP_Error('head', __('You do not have permission to edit this user.'));~~
48	52	?>
49	53