diff options
| author | cvs2git <cvs2git> | 2008-03-16 19:58:34 +0000 |
|---|---|---|
| committer | cvs2git <cvs2git> | 2008-03-16 19:58:34 +0000 |
| commit | eb061f5119325e666f0dff40d4089e5c1df58e17 (patch) | |
| tree | d55e8fef5aca62eb13bbc8ad20dbdf941c3bd266 /httemplate/pref | |
| parent | 3a17b276638200475d54201fa62566b7440e819a (diff) | |
This commit was manufactured by cvs2svn to create tag 'TRIXBOX_2_6'.TRIXBOX_2_6
Diffstat (limited to 'httemplate/pref')
| -rw-r--r-- | httemplate/pref/pref-process.html | 57 | ||||
| -rw-r--r-- | httemplate/pref/pref.html | 102 |
2 files changed, 0 insertions, 159 deletions
diff --git a/httemplate/pref/pref-process.html b/httemplate/pref/pref-process.html deleted file mode 100644 index 25f30e9a9..000000000 --- a/httemplate/pref/pref-process.html +++ /dev/null @@ -1,57 +0,0 @@ -% my $error = ''; -% -% my $access_user; -% if ( grep { $cgi->param($_) !~ /^\s*$/ } -% qw(_password new_password new_password2) -% ) { -% -% $access_user = qsearchs( 'access_user', { -% 'username' => getotaker, -% '_password' => $cgi->param('_password'), -% } ); -% -% $error = 'Current password incorrect; password not changed' -% unless $access_user; -% -% $error ||= "New passwords don't match" -% unless $cgi->param('new_password') eq $cgi->param('new_password2'); -% -% $error ||= "No new password entered" -% unless length($cgi->param('new_password')); -% -% $access_user->_password($cgi->param('new_password')) unless $error; -% -% } else { -% -% $access_user = $FS::CurrentUser::CurrentUser; -% -% } -% -% my %param = $access_user->options; -% -% #XXX autogen -% my @paramlist = qw( menu_position -% email_address -% vonage-fromnumber vonage-username vonage-password -% height width availHeight availWidth colorDepth -% ); -% -% foreach (@paramlist) { -% scalar($cgi->param($_)) =~ /^[,.\-\@\w]*$/ && next; -% $error ||= "Illegal value for parameter $_"; -% last; -% } -% -% foreach (@paramlist) { -% $param{$_} = scalar($cgi->param($_)); -% } -% -% $error ||= $access_user->replace( \%param ); -% -% if ( $error ) { -% $cgi->param('error', $error); -% print $cgi->redirect(popurl(1). "pref.html?". $cgi->query_string ); -% } else { -<% include('/elements/header.html', 'Preferences updated') %> -<% include('/elements/footer.html') %> -% } diff --git a/httemplate/pref/pref.html b/httemplate/pref/pref.html deleted file mode 100644 index de5bd8270..000000000 --- a/httemplate/pref/pref.html +++ /dev/null @@ -1,102 +0,0 @@ -<% include('/elements/header.html', 'Preferences for '. getotaker ) %> - -<FORM METHOD="POST" NAME="pref_form" ACTION="pref-process.html"> - -<% include('/elements/error.html') %> - - -Change password (leave blank for no change) -<% ntable("#cccccc",2) %> - - <TR> - <TH ALIGN="right">Current password: </TH> - <TD><INPUT TYPE="password" NAME="_password"></TD> - </TR> - - <TR> - <TH ALIGN="right">New password: </TH> - <TD><INPUT TYPE="password" NAME="new_password"></TD> - </TR> - - <TR> - <TH ALIGN="right">Re-enter new password: </TH> - <TD><INPUT TYPE="password" NAME="new_password2"></TD> - </TR> - -</TABLE> -<BR> - - -Interface -<% ntable("#cccccc",2) %> - - <TR> - <TH>Menu location: </TH> - <TD> - <INPUT TYPE="radio" NAME="menu_position" VALUE="left" onClick="document.images['menu_example'].src='../images/menu-left-example.png';" <% $menu_position eq 'left' ? ' CHECKED' : ''%>> Left<BR> - <INPUT TYPE="radio" NAME="menu_position" VALUE="top"onClick="document.images['menu_example'].src='../images/menu-top-example.png';" <% $menu_position eq 'top' ? ' CHECKED' : ''%>> Top <BR> - </TD> - <TD><IMG NAME="menu_example" SRC="../images/menu-<% $menu_position %>-example.png"></TD> - </TR> - -</TABLE> -<BR> - - -Email Address -<% ntable("#cccccc",2) %> - - <TR> - <TH>Email Address(es) (comma separated) </TH> - <TD> - <TD><INPUT TYPE="text" NAME="email_address" VALUE="<% $email_address %>"> - </TD> - </TR> - -</TABLE> -<BR> - - -Vonage integration (see <a href="https://secure.click2callu.com/">Click2Call</a>) -<% ntable("#cccccc",2) %> - - <TR> - <TH ALIGN="right">Vonage phone number</TH> - <TD><INPUT TYPE="text" NAME="vonage-fromnumber" VALUE="<% $FS::CurrentUser::CurrentUser->option('vonage-fromnumber') %>"></TD> - </TR> - - <TR> - <TH ALIGN="right">Vonage username</TH> - <TD><INPUT TYPE="text" NAME="vonage-username" VALUE="<% $FS::CurrentUser::CurrentUser->option('vonage-username') %>"></TD> - </TR> - - <TR> - <TH ALIGN="right">Vonage password</TH> - <TD><INPUT TYPE="password" NAME="vonage-password" VALUE="<% $FS::CurrentUser::CurrentUser->option('vonage-password') %>"></TD> - </TR> - -</TABLE> -<BR> - - -% foreach my $prop (qw( height width availHeight availWidth colorDepth )) { - <INPUT TYPE="hidden" NAME="<% $prop %>" VALUE=""> - <SCRIPT TYPE="text/javascript"> - document.pref_form.<% $prop %>.value = screen.<% $prop %>; - </script> -% } - -<INPUT TYPE="submit" VALUE="Update preferences"> - -<% include('/elements/footer.html') %> -<%init> - -# XSS via your own preferences? seems unlikely, but nice try anyway... -( $FS::CurrentUser::CurrentUser->option('menu_position') || 'left' ) - =~ /^(\w+)$/ or die "illegal menu_position"; -my $menu_position = $1; -( $FS::CurrentUser::CurrentUser->option('email_address') ) - =~ /^([,\w\@.]*)$/ or die "illegal email_address"; #too late -my $email_address = $1; - -</%init> |