- if ( length($cgi->param('_password')) ) {
- my $password = scalar($cgi->param('_password'));
- #my $error = $access_user->is_password_allowed($password)
- # || $access_user->change_password($password);
- $access_user->change_password($password);
- }
+ return '' unless length($cgi->param('_password'));
+
+ my $password = scalar($cgi->param('_password'));
+ my $error = $access_user->is_password_allowed($password);
+ return $error if $error;