Halaman utama Jelajahi Bantuan
Daftar Masuk
blallo
/
tt-rss
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Pohon: e6532439d6
Ranting Tag
tt-rss
/
classes
/
pref
/
users.php

users.php 14 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459 
  1. <?php
    2. 

  2. class Pref_Users extends Handler_Protected {
    3. 

  3. 		function before($method) {
    4. 

  4. 			if (parent::before($method)) {
    5. 

  5. 				if ($_SESSION["access_level"] < 10) {
    6. 

  6. 					print __("Your access level is insufficient to open this tab.");
    7. 

  7. 					return false;
    8. 

  8. 				}
    9. 

  9. 				return true;
    10. 

  10. 			}
    11. 

  11. 			return false;
    12. 

  12. 		}
    13. 

  13. 

  14. 		function csrf_ignore($method) {
    15. 

  15. 			$csrf_ignored = array("index", "edit", "userdetails");
    16. 

  16. 

  17. 			return array_search($method, $csrf_ignored) !== false;
    18. 

  18. 		}
    19. 

  19. 

  20. 		function edit() {
    21. 

  21. 			global $access_level_names;
    22. 

  22. 

  23. 			print '<div dojoType="dijit.layout.TabContainer" style="height : 400px">
    24. 

  24.         		<div dojoType="dijit.layout.ContentPane" title="'.__('Edit user').'">';
    25. 

  25. 

  26. 			print "<form id=\"user_edit_form\" onsubmit='return false' dojoType=\"dijit.form.Form\">";
    27. 

  27. 

  28. 			$id = (int) clean($_REQUEST["id"]);
    29. 

  29. 

  30. 			print_hidden("id", "$id");
    31. 

  31. 			print_hidden("op", "pref-users");
    32. 

  32. 			print_hidden("method", "editSave");
    33. 

  33. 

  34. 			$sth = $this->pdo->prepare("SELECT * FROM ttrss_users WHERE id = ?");
    35. 

  35. 			$sth->execute([$id]);
    36. 

  36. 

  37. 			if ($row = $sth->fetch()) {
    38. 

  38. 

  39. 				$login = $row["login"];
    40. 

  40. 				$access_level = $row["access_level"];
    41. 

  41. 				$email = $row["email"];
    42. 

  42. 

  43. 				$sel_disabled = ($id == $_SESSION["uid"] || $login == "admin") ? "disabled" : "";
    44. 

  44. 

  45. 				print "<div class=\"dlgSec\">".__("User")."</div>";
    46. 

  46. 				print "<div class=\"dlgSecCont\">";
    47. 

  47. 

  48. 				if ($sel_disabled) {
    49. 

  49. 					print_hidden("login", "$login");
    50. 

  50. 				}
    51. 

  51. 

  52. 				print "<input size=\"30\" style=\"font-size : 16px\"
    53. 

  53. 					dojoType=\"dijit.form.ValidationTextBox\" required=\"1\"
    54. 

  54. 					$sel_disabled
    55. 

  55. 					name=\"login\" value=\"$login\">";
    56. 

  56. 

  57. 				print "</div>";
    58. 

  58. 

  59. 				print "<div class=\"dlgSec\">".__("Authentication")."</div>";
    60. 

  60. 				print "<div class=\"dlgSecCont\">";
    61. 

  61. 

  62. 				print __('Access level: ') . " ";
    63. 

  63. 

  64. 				if (!$sel_disabled) {
    65. 

  65. 					print_select_hash("access_level", $access_level, $access_level_names,
    66. 

  66. 						"dojoType=\"dijit.form.Select\" $sel_disabled");
    67. 

  67. 				} else {
    68. 

  68. 					print_select_hash("", $access_level, $access_level_names,
    69. 

  69. 						"dojoType=\"dijit.form.Select\" $sel_disabled");
    70. 

  70. 					print_hidden("access_level", "$access_level");
    71. 

  71. 				}
    72. 

  72. 

  73. 				print "<hr/>";
    74. 

  74. 

  75. 				print "<input dojoType=\"dijit.form.TextBox\" type=\"password\" size=\"20\" placeholder=\"Change password\"
    76. 

  76. 				name=\"password\">";
    77. 

  77. 

  78. 				print "</div>";
    79. 

  79. 

  80. 				print "<div class=\"dlgSec\">".__("Options")."</div>";
    81. 

  81. 				print "<div class=\"dlgSecCont\">";
    82. 

  82. 

  83. 				print "<input dojoType=\"dijit.form.TextBox\" size=\"30\" name=\"email\" placeholder=\"E-mail\"
    84. 

  84. 				value=\"$email\">";
    85. 

  85. 

  86. 				print "</div>";
    87. 

  87. 

  88. 				print "</table>";
    89. 

  89. 

  90. 				print "</form>";
    91. 

  91. 				
    92. 

  92. 			}
    93. 

  93. 

  94. 			print '</div>'; #tab
    95. 

  95. 			print "<div href=\"backend.php?op=pref-users&method=userdetails&id=$id\"
    96. 

  96. 				dojoType=\"dijit.layout.ContentPane\" title=\"".__('User details')."\">";
    97. 

  97. 

  98. 			print '</div>';
    99. 

  99. 			print '</div>';
    100. 

  100. 

  101. 			print "<div class=\"dlgButtons\">
    102. 

  102. 				<button dojoType=\"dijit.form.Button\" type=\"submit\">".
    103. 

  103. 				__('Save')."</button>
    104. 

  104. 				<button dojoType=\"dijit.form.Button\" onclick=\"dijit.byId('userEditDlg').hide()\">".
    105. 

  105. 				__('Cancel')."</button></div>";
    106. 

  106. 

  107. 			return;
    108. 

  108. 		}
    109. 

  109. 

  110. 		function userdetails() {
    111. 

  111. 			$id = (int) clean($_REQUEST["id"]);
    112. 

  112. 

  113. 			$sth = $this->pdo->prepare("SELECT login,
    114. 

  114. 				".SUBSTRING_FOR_DATE."(last_login,1,16) AS last_login,
    115. 

  115. 				access_level,
    116. 

  116. 				(SELECT COUNT(int_id) FROM ttrss_user_entries
    117. 

  117. 					WHERE owner_uid = id) AS stored_articles,
    118. 

  118. 				".SUBSTRING_FOR_DATE."(created,1,16) AS created
    119. 

  119. 				FROM ttrss_users
    120. 

  120. 				WHERE id = ?");
    121. 

  121. 			$sth->execute([$id]);
    122. 

  122. 

  123. 			if ($row = $sth->fetch()) {
    124. 

  124. 				print "<table width='100%'>";
    125. 

  125. 

  126. 				$last_login = make_local_datetime(
    127. 

  127. 					$row["last_login"], true);
    128. 

  128. 

  129. 				$created = make_local_datetime(
    130. 

  130. 					$row["created"], true);
    131. 

  131. 

  132. 				$stored_articles = $row["stored_articles"];
    133. 

  133. 

  134. 				print "<tr><td>".__('Registered')."</td><td>$created</td></tr>";
    135. 

  135. 				print "<tr><td>".__('Last logged in')."</td><td>$last_login</td></tr>";
    136. 

  136. 

  137. 				$sth = $this->pdo->prepare("SELECT COUNT(id) as num_feeds FROM ttrss_feeds
    138. 

  138. 					WHERE owner_uid = ?");
    139. 

  139. 				$sth->execute([$id]);
    140. 

  140. 				$row = $sth->fetch();
    141. 

  141. 				$num_feeds = $row["num_feeds"];
    142. 

  142. 

  143. 				print "<tr><td>".__('Subscribed feeds count')."</td><td>$num_feeds</td></tr>";
    144. 

  144. 				print "<tr><td>".__('Stored articles')."</td><td>$stored_articles</td></tr>";
    145. 

  145. 

  146. 				print "</table>";
    147. 

  147. 

  148. 				print "<h1>".__('Subscribed feeds')."</h1>";
    149. 

  149. 

  150. 				$sth = $this->pdo->prepare("SELECT id,title,site_url FROM ttrss_feeds
    151. 

  151. 					WHERE owner_uid = ? ORDER BY title");
    152. 

  152. 				$sth->execute([$id]);
    153. 

  153. 

  154. 				print "<ul class=\"userFeedList\">";
    155. 

  155. 

  156. 				while ($line = $sth->fetch()) {
    157. 

  157. 

  158. 					$icon_file = ICONS_URL."/".$line["id"].".ico";
    159. 

  159. 

  160. 					if (file_exists($icon_file) && filesize($icon_file) > 0) {
    161. 

  161. 						$feed_icon = "<img class=\"tinyFeedIcon\" src=\"$icon_file\">";
    162. 

  162. 					} else {
    163. 

  163. 						$feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">";
    164. 

  164. 					}
    165. 

  165. 

  166. 					print "<li>$feed_icon&nbsp;<a href=\"".$line["site_url"]."\">".$line["title"]."</a></li>";
    167. 

  167. 

  168. 				}
    169. 

  169. 

  170. 				print "</ul>";
    171. 

  171. 				
    172. 

  172. 				
    173. 

  173. 			} else {
    174. 

  174. 				print "<h1>".__('User not found')."</h1>";
    175. 

  175. 			}
    176. 

  176. 		
    177. 

  177. 		}
    178. 

  178. 

  179. 		function editSave() {
    180. 

  180. 			$login = trim(clean($_REQUEST["login"]));
    181. 

  181. 			$uid = clean($_REQUEST["id"]);
    182. 

  182. 			$access_level = (int) clean($_REQUEST["access_level"]);
    183. 

  183. 			$email = trim(clean($_REQUEST["email"]));
    184. 

  184. 			$password = clean($_REQUEST["password"]);
    185. 

  185. 

  186. 			if ($password) {
    187. 

  187. 				$salt = substr(bin2hex(get_random_bytes(125)), 0, 250);
    188. 

  188. 				$pwd_hash = encrypt_password($password, $salt, true);
    189. 

  189. 				$pass_query_part = "pwd_hash = ".$this->pdo->quote($pwd_hash).", 
    190. 

  190. 					salt = ".$this->pdo->quote($salt).",";
    191. 

  191. 			} else {
    192. 

  192. 				$pass_query_part = "";
    193. 

  193. 			}
    194. 

  194. 

  195. 			$sth = $this->pdo->prepare("UPDATE ttrss_users SET $pass_query_part login = ?,
    196. 

  196. 				access_level = ?, email = ?, otp_enabled = false WHERE id = ?");
    197. 

  197. 			$sth->execute([$login, $access_level, $email, $uid]);
    198. 

  198. 

  199. 		}
    200. 

  200. 

  201. 		function remove() {
    202. 

  202. 			$ids = explode(",", clean($_REQUEST["ids"]));
    203. 

  203. 

  204. 			foreach ($ids as $id) {
    205. 

  205. 				if ($id != $_SESSION["uid"] && $id != 1) {
    206. 

  206. 					$sth = $this->pdo->prepare("DELETE FROM ttrss_tags WHERE owner_uid = ?");
    207. 

  207. 					$sth->execute([$id]);
    208. 

  208. 

  209. 					$sth = $this->pdo->prepare("DELETE FROM ttrss_feeds WHERE owner_uid = ?");
    210. 

  210. 					$sth->execute([$id]);
    211. 

  211. 

  212. 					$sth = $this->pdo->prepare("DELETE FROM ttrss_users WHERE id = ?");
    213. 

  213. 					$sth->execute([$id]);
    214. 

  214. 				}
    215. 

  215. 			}
    216. 

  216. 		}
    217. 

  217. 

  218. 		function add() {
    219. 

  219. 

  220. 			$login = trim(clean($_REQUEST["login"]));
    221. 

  221. 			$tmp_user_pwd = make_password(8);
    222. 

  222. 			$salt = substr(bin2hex(get_random_bytes(125)), 0, 250);
    223. 

  223. 			$pwd_hash = encrypt_password($tmp_user_pwd, $salt, true);
    224. 

  224. 

  225. 			$sth = $this->pdo->prepare("SELECT id FROM ttrss_users WHERE
    226. 

  226. 				login = ?");
    227. 

  227. 			$sth->execute([$login]);
    228. 

  228. 

  229. 			if (!$sth->fetch()) {
    230. 

  230. 

  231. 				$sth = $this->pdo->prepare("INSERT INTO ttrss_users
    232. 

  232. 					(login,pwd_hash,access_level,last_login,created, salt)
    233. 

  233. 					VALUES (?, ?, 0, null, NOW(), ?)");
    234. 

  234. 				$sth->execute([$login, $pwd_hash, $salt]);
    235. 

  235. 

  236. 				$sth = $this->pdo->prepare("SELECT id FROM ttrss_users WHERE
    237. 

  237. 					login = ? AND pwd_hash = ?");
    238. 

  238. 				$sth->execute([$login, $pwd_hash]);
    239. 

  239. 

  240. 				if ($row = $sth->fetch()) {
    241. 

  241. 

  242. 					$new_uid = $row['id'];
    243. 

  243. 

  244. 					print format_notice(T_sprintf("Added user <b>%s</b> with password <b>%s</b>",
    245. 

  245. 						$login, $tmp_user_pwd));
    246. 

  246. 

  247. 					initialize_user($new_uid);
    248. 

  248. 

  249. 				} else {
    250. 

  250. 

  251. 					print format_warning(T_sprintf("Could not create user <b>%s</b>", $login));
    252. 

  252. 

  253. 				}
    254. 

  254. 			} else {
    255. 

  255. 				print format_warning(T_sprintf("User <b>%s</b> already exists.", $login));
    256. 

  256. 			}
    257. 

  257. 		}
    258. 

  258. 

  259. 		static function resetUserPassword($uid, $show_password) {
    260. 

  260. 

  261. 			$pdo = Db::pdo();
    262. 

  262. 

  263. 			$sth = $pdo->prepare("SELECT login, email
    264. 

  264. 				FROM ttrss_users WHERE id = ?");
    265. 

  265. 			$sth->execute([$uid]);
    266. 

  266. 			
    267. 

  267. 			if ($row = $sth->fetch()) {
    268. 

  268. 

  269. 				$login = $row["login"];
    270. 

  270. 				$email = $row["email"];
    271. 

  271. 

  272. 				$new_salt = substr(bin2hex(get_random_bytes(125)), 0, 250);
    273. 

  273. 				$tmp_user_pwd = make_password(8);
    274. 

  274. 

  275. 				$pwd_hash = encrypt_password($tmp_user_pwd, $new_salt, true);
    276. 

  276. 

  277. 				$sth = $pdo->prepare("UPDATE ttrss_users 
    278. 

  278. 					  SET pwd_hash = ?, salt = ?, otp_enabled = false
    279. 

  279. 					WHERE id = ?");
    280. 

  280. 				$sth->execute([$pwd_hash, $new_salt, $uid]);
    281. 

  281. 

  282. 				if ($show_password) {
    283. 

  283. 					print T_sprintf("Changed password of user <b>%s</b> to <b>%s</b>", $login, $tmp_user_pwd);
    284. 

  284. 				} else {
    285. 

  285. 					print_notice(T_sprintf("Sending new password of user <b>%s</b> to <b>%s</b>", $login, $email));
    286. 

  286. 				}
    287. 

  287. 

  288. 				require_once 'classes/ttrssmailer.php';
    289. 

  289. 

  290. 				if ($email) {
    291. 

  291. 					require_once "lib/MiniTemplator.class.php";
    292. 

  292. 

  293. 					$tpl = new MiniTemplator;
    294. 

  294. 

  295. 					$tpl->readTemplateFromFile("templates/resetpass_template.txt");
    296. 

  296. 

  297. 					$tpl->setVariable('LOGIN', $login);
    298. 

  298. 					$tpl->setVariable('NEWPASS', $tmp_user_pwd);
    299. 

  299. 

  300. 					$tpl->addBlock('message');
    301. 

  301. 

  302. 					$message = "";
    303. 

  303. 

  304. 					$tpl->generateOutputToString($message);
    305. 

  305. 

  306. 					$mail = new ttrssMailer();
    307. 

  307. 

  308. 					$rc = $mail->quickMail($email, $login,
    309. 

  309. 						__("[tt-rss] Password change notification"),
    310. 

  310. 						$message, false);
    311. 

  311. 

  312. 					if (!$rc) print_error($mail->ErrorInfo);
    313. 

  313. 				}
    314. 

  314. 				
    315. 

  315. 			}
    316. 

  316. 		}
    317. 

  317. 

  318. 		function resetPass() {
    319. 

  319. 			$uid = clean($_REQUEST["id"]);
    320. 

  320. 			Pref_Users::resetUserPassword($uid, true);
    321. 

  321. 		}
    322. 

  322. 

  323. 		function index() {
    324. 

  324. 

  325. 			global $access_level_names;
    326. 

  326. 

  327. 			print "<div id=\"pref-user-wrap\" dojoType=\"dijit.layout.BorderContainer\" gutters=\"false\">";
    328. 

  328. 			print "<div id=\"pref-user-header\" dojoType=\"dijit.layout.ContentPane\" region=\"top\">";
    329. 

  329. 

  330. 			print "<div id=\"pref-user-toolbar\" dojoType=\"dijit.Toolbar\">";
    331. 

  331. 

  332. 			$user_search = trim(clean($_REQUEST["search"]));
    333. 

  333. 

  334. 			if (array_key_exists("search", $_REQUEST)) {
    335. 

  335. 				$_SESSION["prefs_user_search"] = $user_search;
    336. 

  336. 			} else {
    337. 

  337. 				$user_search = $_SESSION["prefs_user_search"];
    338. 

  338. 			}
    339. 

  339. 

  340. 			print "<div style='float : right; padding-right : 4px;'>
    341. 

  341. 				<input dojoType=\"dijit.form.TextBox\" id=\"user_search\" size=\"20\" type=\"search\"
    342. 

  342. 					value=\"$user_search\">
    343. 

  343. 				<button dojoType=\"dijit.form.Button\" onclick=\"updateUsersList()\">".
    344. 

  344. 					__('Search')."</button>
    345. 

  345. 				</div>";
    346. 

  346. 

  347. 			$sort = clean($_REQUEST["sort"]);
    348. 

  348. 

  349. 			if (!$sort || $sort == "undefined") {
    350. 

  350. 				$sort = "login";
    351. 

  351. 			}
    352. 

  352. 

  353. 			print "<div dojoType=\"dijit.form.DropDownButton\">".
    354. 

  354. 					"<span>" . __('Select')."</span>";
    355. 

  355. 			print "<div dojoType=\"dijit.Menu\" style=\"display: none;\">";
    356. 

  356. 			print "<div onclick=\"selectTableRows('prefUserList', 'all')\"
    357. 

  357. 				dojoType=\"dijit.MenuItem\">".__('All')."</div>";
    358. 

  358. 			print "<div onclick=\"selectTableRows('prefUserList', 'none')\"
    359. 

  359. 				dojoType=\"dijit.MenuItem\">".__('None')."</div>";
    360. 

  360. 			print "</div></div>";
    361. 

  361. 

  362. 			print "<button dojoType=\"dijit.form.Button\" onclick=\"addUser()\">".__('Create user')."</button>";
    363. 

  363. 

  364. 			print "
    365. 

  365. 				<button dojoType=\"dijit.form.Button\" onclick=\"editSelectedUser()\">".
    366. 

  366. 				__('Edit')."</button dojoType=\"dijit.form.Button\">
    367. 

  367. 				<button dojoType=\"dijit.form.Button\" onclick=\"removeSelectedUsers()\">".
    368. 

  368. 				__('Remove')."</button dojoType=\"dijit.form.Button\">
    369. 

  369. 				<button dojoType=\"dijit.form.Button\" onclick=\"resetSelectedUserPass()\">".
    370. 

  370. 				__('Reset password')."</button dojoType=\"dijit.form.Button\">";
    371. 

  371. 

  372. 			PluginHost::getInstance()->run_hooks(PluginHost::HOOK_PREFS_TAB_SECTION,
    373. 

  373. 				"hook_prefs_tab_section", "prefUsersToolbar");
    374. 

  374. 

  375. 			print "</div>"; #toolbar
    376. 

  376. 			print "</div>"; #pane
    377. 

  377. 			print "<div id=\"pref-user-content\" dojoType=\"dijit.layout.ContentPane\" region=\"center\">";
    378. 

  378. 

  379. 			$sort = validate_field($sort,
    380. 

  380. 				["login", "access_level", "created", "num_feeds", "created", "last_login"], "login");
    381. 

  381. 

  382. 			if ($sort != "login") $sort = "$sort DESC";
    383. 

  383. 

  384. 			$sth = $this->pdo->prepare("SELECT
    385. 

  385. 					tu.id,
    386. 

  386. 					login,access_level,email,
    387. 

  387. 					".SUBSTRING_FOR_DATE."(last_login,1,16) as last_login,
    388. 

  388. 					".SUBSTRING_FOR_DATE."(created,1,16) as created,
    389. 

  389. 					(SELECT COUNT(id) FROM ttrss_feeds WHERE owner_uid = tu.id) AS num_feeds
    390. 

  390. 				FROM
    391. 

  391. 					ttrss_users tu
    392. 

  392. 				WHERE
    393. 

  393. 					(:search = '' OR login LIKE :search) AND tu.id > 0
    394. 

  394. 				ORDER BY $sort");
    395. 

  395. 			$sth->execute([":search" => $user_search ? "%$user_search%" : ""]);
    396. 

  396. 

  397. 			print "<p><table width=\"100%\" cellspacing=\"0\"
    398. 

  398. 				class=\"prefUserList\" id=\"prefUserList\">";
    399. 

  399. 

  400. 			print "<tr class=\"title\">
    401. 

  401. 						<td align='center' width=\"5%\">&nbsp;</td>
    402. 

  402. 						<td width='20%'><a href=\"#\" onclick=\"updateUsersList('login')\">".__('Login')."</a></td>
    403. 

  403. 						<td width='20%'><a href=\"#\" onclick=\"updateUsersList('access_level')\">".__('Access Level')."</a></td>
    404. 

  404. 						<td width='10%'><a href=\"#\" onclick=\"updateUsersList('num_feeds')\">".__('Subscribed feeds')."</a></td>
    405. 

  405. 						<td width='20%'><a href=\"#\" onclick=\"updateUsersList('created')\">".__('Registered')."</a></td>
    406. 

  406. 						<td width='20%'><a href=\"#\" onclick=\"updateUsersList('last_login')\">".__('Last login')."</a></td></tr>";
    407. 

  407. 

  408. 			$lnum = 0;
    409. 

  409. 

  410. 			while ($line = $sth->fetch()) {
    411. 

  411. 

  412. 				$uid = $line["id"];
    413. 

  413. 

  414. 				print "<tr id=\"UMRR-$uid\">";
    415. 

  415. 

  416. 				$line["login"] = htmlspecialchars($line["login"]);
    417. 

  417. 

  418. 				$line["created"] = make_local_datetime($line["created"], false);
    419. 

  419. 				$line["last_login"] = make_local_datetime($line["last_login"], false);
    420. 

  420. 

  421. 				print "<td align='center'><input onclick='toggleSelectRow2(this);'
    422. 

  422. 					dojoType=\"dijit.form.CheckBox\" type=\"checkbox\"
    423. 

  423. 					id=\"UMCHK-$uid\"></td>";
    424. 

  424. 

  425. 				$onclick = "onclick='editUser($uid, event)' title='".__('Click to edit')."'";
    426. 

  426. 

  427. 				print "<td $onclick><img src='images/user.png' class='markedPic' alt=''> " . $line["login"] . "</td>";
    428. 

  428. 

  429. 				if (!$line["email"]) $line["email"] = "&nbsp;";
    430. 

  430. 

  431. 				print "<td $onclick>" .	$access_level_names[$line["access_level"]] . "</td>";
    432. 

  432. 				print "<td $onclick>" . $line["num_feeds"] . "</td>";
    433. 

  433. 				print "<td $onclick>" . $line["created"] . "</td>";
    434. 

  434. 				print "<td $onclick>" . $line["last_login"] . "</td>";
    435. 

  435. 

  436. 				print "</tr>";
    437. 

  437. 

  438. 				++$lnum;
    439. 

  439. 			}
    440. 

  440. 

  441. 			print "</table>";
    442. 

  442. 

  443. 			if ($lnum == 0) {
    444. 

  444. 				if (!$user_search) {
    445. 

  445. 					print_warning(__('No users defined.'));
    446. 

  446. 				} else {
    447. 

  447. 					print_warning(__('No matching users found.'));
    448. 

  448. 				}
    449. 

  449. 			}
    450. 

  450. 

  451. 			print "</div>"; #pane
    452. 

  452. 

  453. 			PluginHost::getInstance()->run_hooks(PluginHost::HOOK_PREFS_TAB,
    454. 

  454. 				"hook_prefs_tab", "prefUsers");
    455. 

  455. 

  456. 			print "</div>"; #container
    457. 

  457. 

  458. 		}
    459. 

  459. 	}
    460.