edit_user

February 11, 2011 by Thorsten 0 Comments

Definition:
function edit_user( $user_id = 0 ) {}

Edit user settings based on contents of $_POST

Used on user-edit.php and profile.php to manage and process user options, passwords etc.

Parameters

int $user_id: Optional. User ID.

Return values

returns:user id of the updated user

Defined actions

check_passwords
do_action_ref_array( 'check_passwords', array ( $user->user_login, & $pass1, & $pass2 ));
user_profile_update_errors
do_action_ref_array('user_profile_update_errors', array ( &$errors, $update, &$user ) );

Source code

function edit_user( $user_id = 0 ) {

	global $wp_roles, $wpdb;

	$user = new stdClass;

	if ( $user_id ) {

		$update = true;

		$user->ID = (int) $user_id;

		$userdata = get_userdata( $user_id );

		$user->user_login = $wpdb->escape( $userdata->user_login );

	} else {

		$update = false;

	}



	if ( !$update && isset( $_POST['user_login'] ) )

		$user->user_login = sanitize_user($_POST['user_login'], true);



	$pass1 = $pass2 = '';

	if ( isset( $_POST['pass1'] ))

		$pass1 = $_POST['pass1'];

	if ( isset( $_POST['pass2'] ))

		$pass2 = $_POST['pass2'];



	if ( isset( $_POST['role'] ) && current_user_can( 'edit_users' ) ) {

		$new_role = sanitize_text_field( $_POST['role'] );

		$potential_role = isset($wp_roles->role_objects[$new_role]) ? $wp_roles->role_objects[$new_role] : false;

		// Don't let anyone with 'edit_users' (admins) edit their own role to something without it.

		// Multisite super admins can freely edit their blog roles -- they possess all caps.

		if ( ( is_multisite() && current_user_can( 'manage_sites' ) ) || $user_id != get_current_user_id() || ($potential_role && $potential_role->has_cap( 'edit_users' ) ) )

			$user->role = $new_role;



		// If the new role isn't editable by the logged-in user die with error

		$editable_roles = get_editable_roles();

		if ( ! empty( $new_role ) && empty( $editable_roles[$new_role] ) )

			wp_die(__('You can’t give users that role.'));

	}



	if ( isset( $_POST['email'] ))

		$user->user_email = sanitize_text_field( $_POST['email'] );

	if ( isset( $_POST['url'] ) ) {

		if ( empty ( $_POST['url'] ) || $_POST['url'] == 'http://' ) {

			$user->user_url = '';

		} else {

			$user->user_url = esc_url_raw( $_POST['url'] );

			$user->user_url = preg_match('/^(https?|ftps?|mailto|news|irc|gopher|nntp|feed|telnet):/is', $user->user_url) ? $user->user_url : 'http://'.$user->user_url;

		}

	}

	if ( isset( $_POST['first_name'] ) )

		$user->first_name = sanitize_text_field( $_POST['first_name'] );

	if ( isset( $_POST['last_name'] ) )

		$user->last_name = sanitize_text_field( $_POST['last_name'] );

	if ( isset( $_POST['nickname'] ) )

		$user->nickname = sanitize_text_field( $_POST['nickname'] );

	if ( isset( $_POST['display_name'] ) )

		$user->display_name = sanitize_text_field( $_POST['display_name'] );



	if ( isset( $_POST['description'] ) )

		$user->description = trim( $_POST['description'] );



	foreach ( _wp_get_user_contactmethods( $user ) as $method => $name ) {

		if ( isset( $_POST[$method] ))

			$user->$method = sanitize_text_field( $_POST[$method] );

	}



	if ( $update ) {

		$user->rich_editing = isset( $_POST['rich_editing'] ) && 'false' == $_POST['rich_editing'] ? 'false' : 'true';

		$user->admin_color = isset( $_POST['admin_color'] ) ? sanitize_text_field( $_POST['admin_color'] ) : 'fresh';

		$user->show_admin_bar_front = isset( $_POST['admin_bar_front'] ) ? 'true' : 'false';

		$user->show_admin_bar_admin = isset( $_POST['admin_bar_admin'] ) ? 'true' : 'false';

	}



	$user->comment_shortcuts = isset( $_POST['comment_shortcuts'] ) && 'true' == $_POST['comment_shortcuts'] ? 'true' : '';



	$user->use_ssl = 0;

	if ( !empty($_POST['use_ssl']) )

		$user->use_ssl = 1;



	$errors = new WP_Error();



	/* checking that username has been typed */

	if ( $user->user_login == '' )

		$errors->add( 'user_login', __( '<strong>ERROR</strong>: Please enter a username.' ));



	/* checking the password has been typed twice */

	do_action_ref_array( 'check_passwords', array ( $user->user_login, & $pass1, & $pass2 ));



	if ( $update ) {

		if ( empty($pass1) && !empty($pass2) )

			$errors->add( 'pass', __( '<strong>ERROR</strong>: You entered your new password only once.' ), array( 'form-field' => 'pass1' ) );

		elseif ( !empty($pass1) && empty($pass2) )

			$errors->add( 'pass', __( '<strong>ERROR</strong>: You entered your new password only once.' ), array( 'form-field' => 'pass2' ) );

	} else {

		if ( empty($pass1) )

			$errors->add( 'pass', __( '<strong>ERROR</strong>: Please enter your password.' ), array( 'form-field' => 'pass1' ) );

		elseif ( empty($pass2) )

			$errors->add( 'pass', __( '<strong>ERROR</strong>: Please enter your password twice.' ), array( 'form-field' => 'pass2' ) );

	}



	/* Check for "\" in password */

	if ( false !== strpos( stripslashes($pass1), "\\" ) )

		$errors->add( 'pass', __( '<strong>ERROR</strong>: Passwords may not contain the character "\\".' ), array( 'form-field' => 'pass1' ) );



	/* checking the password has been typed twice the same */

	if ( $pass1 != $pass2 )

		$errors->add( 'pass', __( '<strong>ERROR</strong>: Please enter the same password in the two password fields.' ), array( 'form-field' => 'pass1' ) );



	if ( !empty( $pass1 ) )

		$user->user_pass = $pass1;



	if ( !$update && isset( $_POST['user_login'] ) && !validate_username( $_POST['user_login'] ) )

		$errors->add( 'user_login', __( '<strong>ERROR</strong>: This username is invalid because it uses illegal characters. Please enter a valid username.' ));



	if ( !$update && username_exists( $user->user_login ) )

		$errors->add( 'user_login', __( '<strong>ERROR</strong>: This username is already registered. Please choose another one.' ));



	/* checking e-mail address */

	if ( empty( $user->user_email ) ) {

		$errors->add( 'empty_email', __( '<strong>ERROR</strong>: Please enter an e-mail address.' ), array( 'form-field' => 'email' ) );

	} elseif ( !is_email( $user->user_email ) ) {

		$errors->add( 'invalid_email', __( '<strong>ERROR</strong>: The e-mail address isn’t correct.' ), array( 'form-field' => 'email' ) );

	} elseif ( ( $owner_id = email_exists($user->user_email) ) && ( !$update || ( $owner_id != $user->ID ) ) ) {

		$errors->add( 'email_exists', __('<strong>ERROR</strong>: This email is already registered, please choose another one.'), array( 'form-field' => 'email' ) );

	}



	// Allow plugins to return their own errors.

	do_action_ref_array('user_profile_update_errors', array ( &$errors, $update, &$user ) );



	if ( $errors->get_error_codes() )

		return $errors;



	if ( $update ) {

		$user_id = wp_update_user( get_object_vars( $user ) );

	} else {

		$user_id = wp_insert_user( get_object_vars( $user ) );

		wp_new_user_notification( $user_id, isset($_POST['send_password']) ? $pass1 : '' );

	}

	return $user_id;

}

1008

/wp-admin/includes/user.php, Actions, Actions by letter c, Actions by letter u, Documentation, Files, Functions, Functions by letter e

check_passwords, edit_user, idb58b7734468d16be475544cbbe1998fd, user_profile_update_errors

edit_tag_link

email_exists

No comments yet... Be the first to leave a reply!

Ouch, we don’t have this here!

It seems that we do not have anything about this topic here, but you might want to do one of the following. If you were searching for a php function head over to the php manual and use one of their entry points

If you were searching for a WordPress related topic and did not find it here try one of the following options.

Use the search form in the navigation bar above
Use the WordPress search

If nothing like this helps try using Google or an other search engine

Google
Bing

Golden Q&A rules

Search first

Be sure that you first search in Google, the WordPress forums, Codex or this site ( using the form in the menu ). Sharing your previous results helps narrowing down the problem if you also tell us what you found and why it didn’t serve your needs.

Be specific

Give as much details about your problem as possible. Make sure to include examples, links and context related to your problem.

Be WordPress related

This site focuses on WordPress and related topics. Please make sure that your question is related to WordPress code, functionality or other related topics.

Be nice

Please keep in mind that this is a voluntary service. Answers might not always be correct or what you expect. Please be nice and let us know if any inappropriate answers come to your attention.

Latest
Popular
Comments

Speed up WordPress when you have a lot of terms February 15, 2014
WordPress Importer with remote lookup for assets. February 15, 2014
It’s been a while! Sorry for neglecting you! September 4, 2013
Cache posts in category/tag/taxonomy for better performing content blocks May 10, 2012
Lost in time(zones)? http://localtime.at can help May 5, 2012

WordPress Syntax mode for Panic Coda February 18, 2011
wp_tiny_mce February 12, 2011
Initialize WordPress from a PHP CLI script July 22, 2011
wp_save_image February 12, 2011
Caching WordPress navigation menus – wp_nav_menu() wrapper October 7, 2011