return '' unless length($cgi->param('_password'));
my $password = scalar($cgi->param('_password'));
- $access_user->is_password_allowed($password)
- || $access_user->change_password_fields($password);
+ my $error = $access_user->is_password_allowed($password);
+ return $error if $error;
+
+ $access_user->change_password_fields($password);
+ '';
}
sub noerror_callback {