Features LDAP, Rights, Cables, Menu improvements and bug fixing

userview.php

@@ -8,18 +8,26 @@ SPDX-License-Identifier: GPL-3.0-or-later
 *****************************************************************************/
 	
 include("includes.php");
-		
+
+if (($_SESSION['suser_role_admin'] == 0) and ($_SESSION['suser_role_manage'] == 0)) {
+    header_location('comments.php?comments=accessdenied');
+}
+
 $user_id = sanitize($_GET['user_id']);
 		
 include("header.php");
 
 $sql = "SELECT user_id AS id, user_name AS name, user_displayname AS displayname,
-            user_realm as realm
+            user_realm as realm, user_role AS role, user_flags AS flags
         FROM user
         WHERE user_id=?";
 $sth = $dbh->prepare($sql);
 $sth->execute([$user_id]);
-$smarty->assign("user", $sth->fetch(PDO::FETCH_OBJ));
+
+$user = $sth->fetch(PDO::FETCH_OBJ);
+$user->role = explode(',', $user->role);
+$user->flags = explode(',', $user->flags);
+$smarty->assign("user", $user);
 
 $smarty->display("userview.tpl");