Rev 119 | Blame | Compare with Previous | Last modification | View Log | RSS feed
<%@LANGUAGE="VBSCRIPT"%><%'====================================================='| |'| Chage Password |'| |'=====================================================%><%Option explicit' Good idea to set when using redirectResponse.Expires = 0 ' always load the page, dont store%><!--#include file="common/conf.asp"--><!--#include file="common/globals.asp"--><!--#include file="common/formating.asp"--><!--#include file="common/qstr.asp"--><!--#include file="common/common_subs.asp"--><!--#include file="sec/Crypt.asp"--><%'------------ ACCESS CONTROL ------------------%><!--#include file="_access_control_general.asp"--><%'------------ Variable Definition -------------Dim parReturnDim parUsernameDim parPassword'------------ Constants Declaration -----------'------------ Variable Init -------------------parUsername = QStrPar("FRuser")parPassword = Session("RELEASEMANAGER_logininfo")parReturn = QStrPar("rfile")'----------------------------------------------%><%Function PassRequireChange ( SSusername )Dim Query_String, rsTempQuery_String = _"SELECT * FROM users WHERE user_name='"& SSusername &"'"Set rsTemp = OraDatabase.DbCreateDynaset( Query_String, cint(0))If ((NOT rsTemp.BOF) AND (NOT rsTemp.EOF)) ThenIf IsNull(rsTemp.Fields("user_password")) ThenPassRequireChange = TRUEElse'Password does not Require changeResponse.Redirect("message.asp?msg=400-1")End IfEnd IfEnd FunctionSub Change_Password ( SSusername, SSPassword )Dim rsTemp, Query_StringQuery_String = _"SELECT user_password FROM users WHERE user_name='"& SSusername &"'"Set rsTemp = OraDatabase.CreateDynaset( Query_String, cint(0))'update fieldsrsTemp.EditrsTemp.Fields("user_password").Value = EnCrypt ( SSPassword )rsTemp.UpdatersTemp.CloseSet rsTemp = nothingEnd Sub%><%'------------ Process submition -------------------If CBool(QStrPar("action")) AND (QStrPar("FRchangepass")) Then'If EnCrypt( Request("FRpassc") ) <> parPassword ThenIf Request("FRpassc") <> parPassword Then' Password confirmation is incorrectResponse.Redirect("message.asp?msg=401-7")End IfIf PassRequireChange ( parUsername ) ThenCall Change_Password ( parUsername, parPassword )End If' Now LoginResponse.Redirect( "login.asp?action=true&FRuser="& parUsername &"&rfile="& QStrPar("rfile") )End If%><html><head><title>Release Manager</title><meta HTTP-EQUIV="Pragma" CONTENT="no-cache"><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"><link rel="stylesheet" href="images/release_manager_style.css" type="text/css"><link rel="stylesheet" href="images/navigation.css" type="text/css"><script language="JavaScript" src="images/common.js"></script><!-- DROPDOWN MENUS --><!--#include file="_menu_def.asp"--><script language="JavaScript1.2" src="images/popup_menu.js"></script></head><body bgcolor="#FFFFFF" text="#000000" leftmargin="0" topmargin="0" onload="document.chpass.FRpassc.focus()"><!-- MENU LAYERS --------------------------------------><div id="popmenu" class="menuskin" onMouseover="clearhidemenu();highlightmenu(event,'on')" onMouseout="highlightmenu(event,'off');dynamichide(event)"></div><!-- HEADER --><!-- BODY ----><table width="100%" border="0" cellspacing="0" cellpadding="0"><tr><td background="images/bg_lght_gray.gif" align="left" valign="top"><table width="100%" border="0" cellspacing="0" cellpadding="0"><tr><td valign="top" width="1%"><img src="images/h_trsp_dot.gif" width="10" height="10"></td><td valign="top" width="1%"><!-- LEFT --></td><td valign="top" width="1%"><img src="images/h_trsp_dot.gif" width="30" height="10"></td><td valign="top" width="100%"><!-- MIDDLE --><table width="400" border="0" cellspacing="0" cellpadding="0"><tr><td><table width="100%" border="0" cellspacing="0" cellpadding="0"><tr><td width="1%"> </td><td align="right"><img src="images/h_trsp_dot.gif" width="30" height="30"></td><td width="1%"> </td></tr><tr><td width="1%"> </td><td align="left" valign="bottom" class="form_ttl">LOGIN</td><td width="1%"> </td></tr><tr><td align="left" valign="top" width="1%" background="images/lbox_bg_orange.gif"><img src="images/lbox_tl_cnr.gif" width="13" height="13"></td><td background="images/lbox_bg_orange.gif" width="100%"> </td><td align="right" valign="top" width="1%" background="images/lbox_bgside_orange.gif"><img src="images/lbox_tr_cnr.gif" width="21" height="20"></td></tr><tr><td width="1%" bgcolor="#FFFFFF"><img src="images/h_trsp_dot.gif" width="10" height="150"></td><td bgcolor="#FFFFFF" valign="top"><table width="100%" border="0" cellspacing="1" cellpadding="2"><form name="chpass" method="post" action="<%=scriptName%>?done=done<%=QSTR_All%>"><tr><td width="1%"><img src="images/h_trsp_dot.gif" width="10" height="30"></td><td width="1%" nowrap class="form_group" valign="bottom"></td><td nowrap width="100%" valign="bottom" align="right"> </td></tr><tr><td width="1%"> </td><td width="1%" nowrap class="form_field" background="images/bg_form_lightbluedark.gif">PasswordConfirm </td><td nowrap width="100%" background="images/bg_form_lightbluedark.gif"><input type="password" name="FRpassc"><input type="hidden" name="rfile" value="<%=parReturn%>"><input type="hidden" name="FRuser" value="<%=parUsername%>"><input type="hidden" name="FRchangepass" value="true"><input type="hidden" name="action" value="true"></td></tr><tr><td width="1%"> </td><td width="1%" nowrap class="form_field"><img src="images/h_trsp_dot.gif" width="100" height="10"></td><td nowrap width="100%"><input type="submit" name="btn" value=" Login " class="sublbox_item" onClick="MM_validateForm('FRuser','','R');return document.MM_returnValue"><input type="reset" name="btn" value="Cancel" class="sublbox_item" onclick="history.back()"></td></tr></form></table></td><td width="1%" background="images/lbox_bgside_white.gif"> </td></tr><tr><td width="1%" background="images/lbox_bg_orange.gif"><img src="images/h_trsp_dot.gif" width="1" height="1"></td><td background="images/lbox_bg_orange.gif"></td><td width="1%" background="images/lbox_bgside_orange.gif"></td></tr></table></td></tr></table><!-- END MIDDLE --></td></tr></table></td></tr></table><!-- FOOTER --><!--#include file="_footer.asp"--></body></html><%Call Destroy_All_Objects%>