user can edit admins?

i did this to allow only user 1 to edit other admins:
forum/admin/config.php
add at the bottom:

Code:

// user can edit admins
$editadmin='1';

you can add as many users you want there...

forum/admin/user.php
find:

Code:

adminlog(iif($userid!=0,"user id = $userid",""));

below this add:

Code:

unset($editadmin);

find:

Code:

if ($HTTP_POST_VARS['action']=="doupdate") {

replace it with:

Code:

if ($HTTP_POST_VARS['action']=="doupdate" && checklogperms($editadmin,1,"<p>You are not allowed to edit this user.</p>")) {

it will not work. what do i do wrong? thanks.

[Admin]

Remove

Code:

unset($editadmin);

Place it before requiring config.php.

[TECK]

thanks firefly. can you please explain to me why it must be done this way, unseting $editadmin before config.php file? if i use my logic, an unset should work anywhere before an related action.

[Admin]

You can also unset the variable before requiring global.php, it pretty much does the same thing.

However, if you unset it after you require global.php (and config.php), the variable won't be present anymore and the checklogperms() call will fail no matter what.

[TECK]

aha... i understand now. thanks alot chen.

[Almax]

find:
code:
if ($HTTP_POST_VARS['action']=="doupdate") {

erm .... this aint on my admin/config.php script m8
wot do i do now ??

[TECK]

<a href="https://vborg.vbsupport.ru/showthread.php?s=&threadid=40787" target="_blank">https://vborg.vbsupport.ru/showt...threadid=40787</a>

[TECK]

chen, i need your help. i cant figure a way to make it dentify with the username that edits another user. here it is what i tried as an alternative:

Code:

if ($HTTP_POST_VARS['action']=="doupdate") {
  if (!in_array($bbuserinfo['userid'],array($caneditadmin)) and $user['userid']!=$bbuserinfo['userid']) {
    echo "<p>You are not allowed to edit this user</p>";
    exit;
  }

everything works except i cant edit myself anymore...

[TECK]

i got it working.
thanks chen!!