}
}
+$user_id = (int) $user_id;
+
+if ( !$user_id )
+ die(__('Invalid user ID.'));
+
switch ($action) {
case 'switchposts':
$errors = array();
if (!current_user_can('edit_users'))
- $errors['head'] = __('You do not have permission to edit this user.');
+ die(__('You do not have permission to edit this user.'));
else
$errors = edit_user($user_id);
default:
include ('admin-header.php');
-$profileuser = new WP_User($user_id);
+$profileuser = get_user_to_edit($user_id);
+
+if (!current_user_can('edit_users'))
+ die__('You do not have permission to edit this user.');
-if (!current_user_can('edit_users')) $errors['head'] = __('You do not have permission to edit this user.');
?>
<?php if ( isset($_GET['updated']) ) : ?>
<p><label><?php _e('Nickname:') ?><br />
<input type="text" name="nickname" value="<?php echo $profileuser->nickname ?>" /></label></p>
-</p><label><?php _e('Display name publicly as:') ?> <br />
+<p><label><?php _e('Display name publicly as:') ?> <br />
<select name="display_name">
<option value="<?php echo $profileuser->display_name; ?>"><?php echo $profileuser->display_name; ?></option>
<option value="<?php echo $profileuser->nickname ?>"><?php echo $profileuser->nickname ?></option>