<%@LANGUAGE="VBSCRIPT"%>
<!--#include file="../Connections/p1clogin.asp" -->
<%
' *** Edit Operations: declare variables

MM_editAction = CStr(Request("URL"))
If (Request.QueryString <> "") Then
  MM_editAction = MM_editAction & "?" & Request.QueryString
End If

' boolean to abort record edit
MM_abortEdit = false

' query string to execute
MM_editQuery = ""
%>
<%
' *** Update Record: set variables

If (CStr(Request("MM_update")) <> "" And CStr(Request("MM_recordId")) <> "") Then

  MM_editConnection = MM_p1clogin_STRING
  MM_editTable = "login"
  MM_editColumn = "username"
  MM_recordId = "'" + Request.Form("MM_recordId") + "'"
  MM_editRedirectUrl = "jump.asp"
  MM_fieldsStr  = "password|value|currdate|value"
  MM_columnsStr = "password|',none,''|exdate|',none,NULL"

  ' create the MM_fields and MM_columns arrays
  MM_fields = Split(MM_fieldsStr, "|")
  MM_columns = Split(MM_columnsStr, "|")
  
  ' set the form values
  For i = LBound(MM_fields) To UBound(MM_fields) Step 2
    MM_fields(i+1) = CStr(Request.Form(MM_fields(i)))
  Next

  ' append the query string to the redirect URL
  If (MM_editRedirectUrl <> "" And Request.QueryString <> "") Then
    If (InStr(1, MM_editRedirectUrl, "?", vbTextCompare) = 0 And Request.QueryString <> "") Then
      MM_editRedirectUrl = MM_editRedirectUrl & "?" & Request.QueryString
    Else
      MM_editRedirectUrl = MM_editRedirectUrl & "&" & Request.QueryString
    End If
  End If

End If
%>
<%
' boolean for password check
MM_badPassword = false

' password check
lenMin = 8
lenSpec = 7
dim pwd, pwd2, strMessage
pwd = Trim(CStr(Request.Form("password")))
pwd2 = Trim(CStr(Request.Form("password2")))
If pwd <> pwd2 Then
	strMessage = "Please type the password twice."
	MM_badPassword = true
	MM_abortEdit = true
Else
	If len(pwd) < lenMin Then
		strMessage = "Password must be at least " & lenMin & " characters."
		MM_badPassword = true
		MM_abortEdit = true
	End If
	bolCharFound = false
	strSpecial = "`~!@#$%^&*()_-+={[}]|\<>?/"
	For i = 1 to lenSpec
		If inStr(1, strSpecial, Mid(pwd, i, 1), 1) <> 0 Then
			bolCharFound = true
		End If
	Next
	If not(bolCharFound) Then
		strMessage = "Password must have a special character (" & strSpecial & ") in the first " & lenSpec & " characters."
		MM_badPassword = true
		MM_abortEdit = true
	End If

	set objRS = Server.CreateObject("ADODB.Recordset")
	objRS.ActiveConnection = MM_p1clogin_STRING
	objRS.Source = "SELECT * FROM login WHERE username = '" + Session("Username") + "'"
	objRS.CursorType = 0
	objRS.CursorLocation = 2
	objRS.LockType = 3
	objRS.Open()
	objRS_numRows = 0
	
	If pwd = objRS.Fields.Item("password").Value Then
		strMessage = "Password must be different from previous password."
		MM_badPassword = true
		MM_abortEdit = true
	End If
	objRS.Close()
End If

' *** Update Record: construct a sql update statement and execute it

If (CStr(Request("MM_update")) <> "" And CStr(Request("MM_recordId")) <> "") Then

  ' create the sql update statement
  MM_editQuery = "update " & MM_editTable & " set "
  For i = LBound(MM_fields) To UBound(MM_fields) Step 2
    FormVal = MM_fields(i+1)
    MM_typeArray = Split(MM_columns(i+1),",")
    Delim = MM_typeArray(0)
    If (Delim = "none") Then Delim = ""
    AltVal = MM_typeArray(1)
    If (AltVal = "none") Then AltVal = ""
    EmptyVal = MM_typeArray(2)
    If (EmptyVal = "none") Then EmptyVal = ""
    If (FormVal = "") Then
      FormVal = EmptyVal
    Else
      If (AltVal <> "") Then
        FormVal = AltVal
      ElseIf (Delim = "'") Then  ' escape quotes
        FormVal = "'" & Replace(FormVal,"'","''") & "'"
      Else
        FormVal = Delim + FormVal + Delim
      End If
    End If
    If (i <> LBound(MM_fields)) Then
      MM_editQuery = MM_editQuery & ","
    End If
    MM_editQuery = MM_editQuery & MM_columns(i) & " = " & FormVal
  Next
  MM_editQuery = MM_editQuery & " where " & MM_editColumn & " = " & MM_recordId

  If (Not MM_abortEdit) Then
    ' execute the update
    Set MM_editCmd = Server.CreateObject("ADODB.Command")
    MM_editCmd.ActiveConnection = MM_editConnection
    MM_editCmd.CommandText = MM_editQuery
    MM_editCmd.Execute
    MM_editCmd.ActiveConnection.Close

    If (MM_editRedirectUrl <> "") Then
      Response.Redirect(MM_editRedirectUrl)
    End If
  End If

End If
%>
<%
Dim objRS__MMColParam
objRS__MMColParam = "1"
If (Session("username") <> "") Then 
  objRS__MMColParam = Session("username")
End If
%>
<%
set objRS = Server.CreateObject("ADODB.Recordset")
objRS.ActiveConnection = MM_p1clogin_STRING
objRS.Source = "SELECT * FROM login WHERE username = '" + Replace(objRS__MMColParam, "'", "''") + "'"
objRS.CursorType = 0
objRS.CursorLocation = 2
objRS.LockType = 3
objRS.Open()
objRS_numRows = 0
%>
<html><!-- #BeginTemplate "/Templates/main.dwt" --><!-- DW6 -->
<head>
<!-- #BeginEditable "doctitle" --> 
<title>Change Password :: Pacific Office Solutions</title>
<!-- #EndEditable -->
<meta http-equiv="Content-Type" content="text/html;">
<!-- Fireworks 4.0  Dreamweaver 4.0 target.  Created Fri Apr 26 20:10:41 GMT-0700 (Pacific Daylight Time) 2002-->
<script language="JavaScript">
<!--
function MM_displayStatusMsg(msgStr)  { //v3.0
	status=msgStr; document.MM_returnValue = true;
}

function MM_findObj(n, d) { //v3.0
  var p,i,x;  if(!d) d=document; if((p=n.indexOf("?"))>0&&parent.frames.length) {
    d=parent.frames[n.substring(p+1)].document; n=n.substring(0,p);}
  if(!(x=d[n])&&d.all) x=d.all[n]; for (i=0;!x&&i<d.forms.length;i++) x=d.forms[i][n];
  for(i=0;!x&&d.layers&&i<d.layers.length;i++) x=MM_findObj(n,d.layers[i].document); return x;
}
function MM_swapImage() { //v3.0
  var i,j=0,x,a=MM_swapImage.arguments; document.MM_sr=new Array; for(i=0;i<(a.length-2);i+=3)
   if ((x=MM_findObj(a[i]))!=null){document.MM_sr[j++]=x; if(!x.oSrc) x.oSrc=x.src; x.src=a[i+2];}
}
function MM_swapImgRestore() { //v3.0
  var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x=a[i])&&x.oSrc;i++) x.src=x.oSrc;
}

function MM_preloadImages() { //v3.0
 var d=document; if(d.images){ if(!d.MM_p) d.MM_p=new Array();
   var i,j=d.MM_p.length,a=MM_preloadImages.arguments; for(i=0; i<a.length; i++)
   if (a[i].indexOf("#")!=0){ d.MM_p[j]=new Image; d.MM_p[j++].src=a[i];}}
}

//-->
</script>
<link rel="stylesheet" href="../css/pos.css" type="text/css">
</head>
<body bgcolor="#ffffff" onLoad="MM_preloadImages('/Templates/images/main_r2_c2_f2.gif','/Templates/images/main_r2_c3_f2.gif','/Templates/images/main_r2_c5_f2.gif','/Templates/images/main_r3_c4_f2.gif')">
<table border="0" cellpadding="0" cellspacing="0" width="758">
<!-- fwtable fwsrc="pos.png" fwbase="main.gif" fwstyle="Dreamweaver" fwdocid = "742308039" fwnested="0" -->
  <tr>
    <td><img src="images/spacer.gif" width="18" height="1" border="0"></td>
    <td><img src="images/spacer.gif" width="124" height="1" border="0"></td>
    <td><img src="images/spacer.gif" width="124" height="1" border="0"></td>
    <td><img src="images/spacer.gif" width="124" height="1" border="0"></td>
    <td><img src="images/spacer.gif" width="124" height="1" border="0"></td>
    <td><img src="images/spacer.gif" width="244" height="1" border="0"></td>
    <td><img src="images/spacer.gif" width="1" height="1" border="0"></td>
  </tr>

  <tr>
    <td colspan="6"><img name="main_r1_c1" src="/Templates/images/main_r1_c1.gif" width="758" height="36" border="0"></td>
    <td><img src="images/spacer.gif" width="1" height="36" border="0"></td>
  </tr>
  <tr>
    <td rowspan="2"><img name="main_r2_c1" src="/Templates/images/main_r2_c1.gif" width="18" height="30" border="0"></td>
    <td rowspan="2"><a href="/" onMouseOut="MM_swapImgRestore();"  onMouseOver="MM_displayStatusMsg('Return to home page');MM_swapImage('main_r2_c2','','/Templates/images/main_r2_c2_f2.gif',1);return document.MM_returnValue" ><img name="main_r2_c2" src="/Templates/images/main_r2_c2.gif" width="124" height="30" border="0" alt="Home"></a></td>
    <td rowspan="2"><a href="/store" onMouseOut="MM_swapImgRestore();"  onMouseOver="MM_displayStatusMsg('Enter e-commerce zone');MM_swapImage('main_r2_c3','','/Templates/images/main_r2_c3_f2.gif',1);return document.MM_returnValue" ><img name="main_r2_c3" src="/Templates/images/main_r2_c3.gif" width="124" height="30" border="0" alt="E-store"></a></td>
    <td><img name="main_r2_c4" src="/Templates/images/main_r2_c4.gif" width="124" height="3" border="0"></td>
    <td rowspan="2"><a href="/contact" onMouseOut="MM_swapImgRestore();"  onMouseOver="MM_displayStatusMsg('Display contact information');MM_swapImage('main_r2_c5','','/Templates/images/main_r2_c5_f2.gif',1);return document.MM_returnValue" ><img name="main_r2_c5" src="/Templates/images/main_r2_c5.gif" width="124" height="30" border="0" alt="Contact Information"></a></td>
    <td rowspan="2"><img name="main_r2_c6" src="/Templates/images/main_r2_c6.gif" width="244" height="30" border="0"></td>
    <td><img src="images/spacer.gif" width="1" height="3" border="0"></td>
  </tr>
  <tr>
    <td><a href="/news" onMouseOut="MM_swapImgRestore();"  onMouseOver="MM_displayStatusMsg('Display latest news');MM_swapImage('main_r3_c4','','/Templates/images/main_r3_c4_f2.gif',1);return document.MM_returnValue" ><img name="main_r3_c4" src="/Templates/images/main_r3_c4.gif" width="124" height="27" border="0" alt="Latest News"></a></td>
    <td><img src="images/spacer.gif" width="1" height="27" border="0"></td>
  </tr>
</table>
<!-- #BeginEditable "body" --> 

<form name="changedata" method="POST" action="<%=MM_editAction%>">
  <p align="center"><font size="+2">Change User Password</font></p>
 <% if (objRS.Fields.Item("exdate").Value) < date() or Not(IsDate(objRS.Fields.Item("exdate").Value)) Then %>
  <p align="center"><font color="#FF0000">Your password has expired: please change 
    your password.</font></p>
<% End If %>
<% If MM_badPassword Then Response.Write("<p align=""center""><font color=""#FF0000"">" & strMessage & "</font></p>") %>
  <table width="100%" border="0">
    <tr> 
      <td width="23%">User Name</td>
      <td width="77%"><%=(objRS.Fields.Item("username").Value)%> </td>
    </tr>
    <tr> 
      <td width="23%">Full Name</td>
      <td width="77%"><%=(objRS.Fields.Item("fullname").Value)%> </td>
    </tr>
    <tr> 
      <td width="23%">Email</td>
      <td width="77%"><%=(objRS.Fields.Item("email").Value)%> </td>
    </tr>
    <tr> 
      <td>Password</td>
      <td><input type="text" name="password" <% If (objRS.Fields.Item("exdate").Value) >= date() Then Response.Write("value='" & (objRS.Fields.Item("password").Value) & "'") %>></td>
    </tr>
    <tr> 
      <td>Reenter password</td>
      <td><input type="password" name="password2" <% If (objRS.Fields.Item("exdate").Value) >= date() Then Response.Write("value='" & (objRS.Fields.Item("password").Value) & "'") %>></td>
    </tr>
  </table>
  <p align="center"> 
    <input type="submit" name="Submit" value="Submit Changes">
  </p>
  <input type="hidden" name="MM_update" value="changedata">
  <input type="hidden" name="MM_recordId" value="<%= objRS.Fields.Item("username").Value %>">
  <input name="currdate" type="hidden" id="currdate" value='<%=(date()+180)%>'>
</form>
<!-- #EndEditable --> 
</body>
<!-- #EndTemplate --></html>
<%
objRS.Close()
%>