diff --git a/admin/user_management/edit_user.php b/admin/user_management/edit_user.php
index f2c4b5f..f7a72eb 100644
--- a/admin/user_management/edit_user.php
+++ b/admin/user_management/edit_user.php
@@ -84,18 +84,15 @@
echo $discordLink;
echo "";
-
- if ($_POST["administrator"] != $userInfo["privileges"]) {
+ if ($_POST["privileges"] == "administrator") {
$privileges = 1;
- } else {
- $privileges = $userInfo["privileges"];
- }
- if ($_POST["moderator"] != $userInfo["privileges"]) {
+ } else if ($_POST["privileges"] == "moderator") {
$privileges = 2;
} else {
- $privileges = $userInfo["privileges"];
+ $privileges = 0;
}
+
// Prepare the command
$update = $conn->prepare("UPDATE " . $userTableName . " SET
privileges = :privileges,
@@ -118,7 +115,7 @@
$update->execute(); // Execute query
-
+ if ($username == $_SESSION["username"]) {
// Function from StackOverflow used to get the base URL, to which we append
// the redirect (where the user came from)
function url(){
@@ -135,10 +132,25 @@
// Redirect user back to their page
echo "";
- echo "Account successfully updated
";
echo "You should have been redirected to your account. Here's a link:
";
- echo "My Account
";
+ echo "My Account
";
+ } else {
+ function url(){
+ return sprintf(
+ "%s://%s/user/%s",
+ isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] != 'off' ? 'https' : 'http',
+ $_SERVER['SERVER_NAME'],
+ $_SESSION["username"]
+ );
+ }
+
+ $address = url();
+ echo "Account successfully updated
";
+ echo "Back
";
+
+ }
+
} catch (PDOException $e) { // failed connection
echo "Connection failed: " . $e->getMessage();
diff --git a/admin/user_management/user_edit_form.php b/admin/user_management/user_edit_form.php
index 8bed1d1..e7bfa63 100644
--- a/admin/user_management/user_edit_form.php
+++ b/admin/user_management/user_edit_form.php
@@ -83,6 +83,7 @@ try { // Try opening the SQL database connection
+