% qw(_password new_password new_password2)
% ) {
%
-% my $access_user = qsearchs( 'access_user', {
+% $access_user = qsearchs( 'access_user', {
% 'username' => getotaker,
% '_password' => $cgi->param('_password'),
% } );
%
% }
%
-% $error ||= $access_user->replace( { map { $_ => scalar($cgi->param($_)) }
-% qw( menu_position ) #XXX autogen
-% }
-% );
+% #XXX autogen
+% my @paramlist = qw( menu_position email_address
+% height width availHeight availWidth colorDepth
+% );
+%
+% foreach (@paramlist) {
+% scalar($cgi->param($_)) =~ /^[,.\@\w]*$/ && next;
+% $error ||= "Illegal value for parameter $_";
+% last;
+% }
+%
+% $error ||= $access_user->replace( {
+% map { $_ => scalar($cgi->param($_)) } @paramlist,
+% } );
%
% if ( $error ) {
% $cgi->param('error', $error);