/* $Log: do_change_pw.html,v $ Revision 1.13 1996/08/22 00:49:58 kimberly return to prefs if change is successful Revision 1.12 1996/08/09 18:07:59 kimberly use JavaScript to go back in frame instead of reloading page. preserves changes Revision 1.11 1996/08/09 02:04:47 kimberly change version number Revision 1.10 1996/08/08 21:33:42 kimberly use textCheckQuotes to check for single and double quotes Revision 1.9 1996/08/08 01:13:48 kimberly layout and copy stuff Revision 1.8 1996/08/03 00:07:15 kimberly add link to try again if user does something wrong Revision 1.7 1996/08/02 02:19:47 kimberly changes for flattened directory s structure Revision 1.6 1996/07/31 22:01:26 kimberly prevent blank screen from user typing in URL when on correct prevPage Revision 1.5 1996/07/31 17:53:36 kimberly use writeln to make generated HTML easier to read Revision 1.4 1996/07/31 02:06:15 curtis Removed writeButtonBar() from all pages. Button bar is now in a frame above the main frame. Revision 1.3 1996/07/27 01:37:18 kimberly minor fixes for beta Revision 1.2 1996/07/23 18:53:09 kimberly Add Log tag */ success = false; if (request.prevPage) client.prevPage = request.prevPage; checkPrevPage("do_change_pw.html"); if (!request.old_pw) writeln("

You must enter your current password in order to change "+ "your password.

"); else if (!request.new_pw || !request.new_pw2) writeln("

You did not enter a new password!

") else if (request.new_pw != request.new_pw2) writeln("

Your new password was not the same in both entry boxes.

"); else if (request.new_pw.indexOf("'") >= 0) writeln("

Invalid new password! Single quotes (') not allowed in password.

"); else if (request.new_pw.indexOf("\"") >= 0) writeln("

Invalid new password! Double quotes (\") not allowed in password.

"); else { query = database.cursor("select password from user where id="+client.id); if (query.next()) { if (query.password == request.old_pw) { database.execute("update user set password='"+request.new_pw+ "' where id="+client.id); writeln("

Password changed.

"); success = true; } else writeln("

Old password did not match. Password not changed.

"); } else writeln("

User not found in database!

"); query.close(); } if (success) { client.status_msg = "Password changed."; redirect("user_info.html"); } else { writeln("

"); writeln("

"); write(""); write(" "); writeln("
"); }