httemplate/pref/pref-process.html


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76

% if ( $error ) {
%   $cgi->param('error', $error);
<% $cgi->redirect(popurl(1). "pref.html?". $cgi->query_string ) %>
% } else {
<% include('/elements/header.html', 'Preferences updated') %>
<% include('/elements/footer.html') %>
% }
<%init>

if ( FS::Conf->new->exists('disable_acl_changes') ) {
  errorpage("Preference changes disabled in public demo");
  die "shouldn't be reached";
}

my $error = '';
my $access_user = '';

if ( grep { $cgi->param($_) !~ /^\s*$/ }
          qw(_password new_password new_password2)
   ) {

  $access_user = qsearchs( 'access_user', {
    'username'  => getotaker,
    '_password' => $cgi->param('_password'),
  } );

  $error = 'Current password incorrect; password not changed'
    unless $access_user;

  $error ||= "New passwords don't match"
    unless $cgi->param('new_password') eq $cgi->param('new_password2');

  $error ||= "No new password entered"
   unless length($cgi->param('new_password'));

  $access_user->_password($cgi->param('new_password')) unless $error;

} else {

  $access_user = $FS::CurrentUser::CurrentUser;

}

#well, if you got your password change wrong, you don't get anything else
#changed right now.  but it should be sticky on the form
unless ( $error ) { # if ($access_user) {

  my %param = $access_user->options;

  #XXX autogen
  my @paramlist = qw( menu_position default_customer_view
                      disable_html_editor
                      email_address
                      snom-ip snom-username snom-password
                      vonage-fromnumber vonage-username vonage-password
                      cust_pkg-display_times
                      show_pkgnum show_confitem_counts export_getsettings
                      show_db_profile save_db_profile
                      height width availHeight availWidth colorDepth
                    );

  foreach (@paramlist) {
    scalar($cgi->param($_)) =~ /^[,.\-\@\w]*$/ && next;
    $error ||= "Illegal value for parameter $_";
    last;
  }

  foreach (@paramlist) {
    $param{$_} = scalar($cgi->param($_));
  }

  $error ||= $access_user->replace( \%param );

}

</%init>