/*
LibreSSL - CAcert web application
Copyright (C) 2004-2008 CAcert Inc.
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; version 2 of the License.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
*/ ?>
$userid=0; if(array_key_exists('userid',$_GET)) $userid=intval($_GET['userid']);
if($userid <= 0)
{
$domainsearch = $domain = mysql_escape_string(stripslashes($_POST['domain']));
if(!strstr($domain, "%"))
$domainsearch = "%$domain%";
if(preg_match("/^\d+$/",$domain))
$domainsearch = "";
$query = "select `users`.`id` as `id`, `domains`.`domain` as `domain` from `users`,`domains`
where `users`.`id`=`domains`.`memid` and
(`domains`.`domain` like '$domainsearch' or `domains`.`id`='$domain') and
`domains`.`deleted`=0 and `users`.`deleted`=0 and
`users`.`verified`=1
group by `users`.`id` limit 100";
$res = mysql_query($query);
if(mysql_num_rows($res) >= 1) { ?>
=_("Select Specific Account Details")?> |
while($row = mysql_fetch_assoc($res))
{ ?>
=_("Domain")?>: |
=sanitizeHTML($row['domain'])?> |
} if(mysql_num_rows($res) >= 100) { ?>
=_("Only the first 100 rows are displayed.")?> |
} else { ?>
printf(_("%s rows displayed."), mysql_num_rows($res)); ?> |
} ?>
} elseif(mysql_num_rows($res) == 1) {
$row = mysql_fetch_assoc($res);
$_GET['userid'] = intval($row['id']);
} else {
printf(_("No personal domains found matching %s"), sanitizeHTML($domain));
}
$query = "select `orgid`,`domain` from `orgdomains` where `domain` like '$domainsearch' or `id`='$domain' limit 100";
$res = mysql_query($query);
if(mysql_num_rows($res) >= 1) { ?>
=_("Select Specific Account Details")?> |
while($row = mysql_fetch_assoc($res))
{ ?>
=_("Domain")?>: |
=sanitizeHTML($row['domain'])?> |
} if(mysql_num_rows($res) >= 100) { ?>
=_("Only the first 100 rows are displayed.")?> |
} else { ?>
printf(_("%s rows displayed."), mysql_num_rows($res)); ?> |
} ?>
} elseif(mysql_num_rows($res) == 1) {
$row = mysql_fetch_assoc($res);
$_GET['userid'] = intval($row['id']);
} else {
printf(_("No organisational domains found matching %s"), sanitizeHTML($domain));
}
}
if($userid > 0)
{
header("location: account.php?id=43&userid=".intval($_GET['userid']));
exit;
}
?>