X-Git-Url: http://git.freeside.biz/gitweb/?a=blobdiff_plain;f=httemplate%2Fpref%2Fpref-process.html;h=7848b72cb3a9bad323365ec2e790ba3543a5b578;hb=d7006fb84965da14819c4ad3581fcb5e907a14d3;hp=378164e7b4396dc66f1870d97be9c4667a56c827;hpb=63a268637b2d51a8766412617724b9436439deb6;p=freeside.git diff --git a/httemplate/pref/pref-process.html b/httemplate/pref/pref-process.html index 378164e7b..7848b72cb 100644 --- a/httemplate/pref/pref-process.html +++ b/httemplate/pref/pref-process.html @@ -7,35 +7,41 @@ % } <%init> +if ( FS::Conf->new->exists('disable_acl_changes') ) { + errorpage("Preference changes disabled in public demo"); + die "shouldn't be reached"; +} + my $error = ''; -my $access_user = ''; -if ( grep { $cgi->param($_) !~ /^\s*$/ } - qw(_password new_password new_password2) +if ( FS::Auth->auth_class->can('change_password') + && grep { $cgi->param($_) !~ /^\s*$/ } + qw(_password new_password new_password2) ) { - $access_user = qsearchs( 'access_user', { - 'username' => getotaker, - '_password' => $cgi->param('_password'), - } ); + if ( $cgi->param('new_password') ne $cgi->param('new_password2') ) { + $error = "New passwords don't match"; - $error = 'Current password incorrect; password not changed' - unless $access_user; + } elsif ( ! length($cgi->param('new_password')) ) { + $error = 'No new password entered'; - $error ||= "New passwords don't match" - unless $cgi->param('new_password') eq $cgi->param('new_password2'); + } elsif ( ! FS::Auth->authenticate( $FS::CurrentUser::CurrentUser, + scalar($cgi->param('_password')) ) + ) { + $error = 'Current password incorrect; password not changed'; - $error ||= "No new password entered" - unless length($cgi->param('new_password')); + } else { - $access_user->_password($cgi->param('new_password')) unless $error; + $error = $FS::CurrentUser::CurrentUser->change_password( + scalar($cgi->param('new_password')) + ); -} else { - - $access_user = $FS::CurrentUser::CurrentUser; + } } +my $access_user = $FS::CurrentUser::CurrentUser; + #well, if you got your password change wrong, you don't get anything else #changed right now. but it should be sticky on the form unless ( $error ) { # if ($access_user) { @@ -43,10 +49,18 @@ unless ( $error ) { # if ($access_user) { my %param = $access_user->options; #XXX autogen - my @paramlist = qw( menu_position default_customer_view + my @paramlist = qw( locale menu_position default_customer_view + history_order + spreadsheet_format mobile_menu + enable_fuzzy_on_exact + disable_html_editor disable_enter_submit_onetimecharge + enable_mask_clipboard_hack email_address + snom-ip snom-username snom-password vonage-fromnumber vonage-username vonage-password - show_pkgnum show_db_profile save_db_profile + cust_pkg-display_times + show_pkgnum show_confitem_counts export_getsettings + show_db_profile save_db_profile save_tmp_typesetting height width availHeight availWidth colorDepth ); @@ -64,4 +78,16 @@ unless ( $error ) { # if ($access_user) { } +if ( !$error and ($FS::TicketSystem::system || '') eq 'RT_Internal' ) { + # sync RT user locale on every update + my $locale = $access_user->option('locale'); + FS::TicketSystem->init; + my $UserObj = FS::TicketSystem->session('')->{'CurrentUser'}->UserObj; + # Bypass RT ModifySelf ACL + $UserObj->CurrentUser( $RT::SystemUser ); + if ( $UserObj->Lang ne $locale ) { + my ($val, $msg) = $UserObj->SetLang($locale); + $error = $msg if !$val; + } +}