userinfo['userid']) { $message->error_permission(); } $userapi = new UserAPI($bugsys); $userapi->set('userid', $bugsys->userinfo['userid']); $userapi->set_condition(); $userinfo = $bugsys->userinfo; // ################################################################### if (empty($_REQUEST['do'])) { $_REQUEST['do'] = 'modify'; } // ################################################################### if ($_POST['do'] == 'update') { // ------------------------------------------------------------------- // authentication if (!empty($bugsys->in['password']) OR !empty($bugsys->in['email'])) { if (empty($bugsys->in['validate'])) { $message->add_error($lang->string('You need to enter your current password to change your email or password')); } else { if (md5(md5($bugsys->in['validate']) . md5($bugsys->userinfo['salt'])) != $bugsys->userinfo['password']) { $message->add_error($lang->string('Your authentication password does not match the one in our records')); } } } // ------------------------------------------------------------------- // email validation if (!empty($bugsys->in['email'])) { if (!empty($bugsys->in['email']) AND empty($bugsys->in['email_confirm'])) { $message->add_error($lang->string('You need to enter both the email and confirm email fields to change your address')); } if ($bugsys->in['email'] != $bugsys->in['email_confirm']) { $message->add_error($lang->string('Your email and confirm email addresses do not match')); } $userapi->set('email', $bugsys->in['email']); $email = true; } // ------------------------------------------------------------------- // password validation if (!empty($bugsys->in['password'])) { if (!empty($bugsys->in['password']) AND empty($bugsys->in['password_confirm'])) { $message->add_error($lang->string('You need to enter both the password and confirm password fields to change your password')); } else { if ($bugsys->in['password'] != $bugsys->in['password_confirm']) { $message->add_error($lang->string('Your password and confirm password do not match')); } } $userapi->set('password', $bugsys->in['password']); $password = true; } $userapi->set('displayname', $bugsys->in['displayname']); $userapi->set('showemail', $bugsys->in['showemail']); $userapi->set('showcolours', $bugsys->in['showcolours']); $userapi->set('languageid', $bugsys->in['languageid']); $userapi->set('timezone', $bugsys->in['timezone']); // ------------------------------------------------------------------- // copy fields $userinfo['displayname'] = $bugsys->in['displayname']; $userinfo['showemail'] = $bugsys->in['showemail']; $userinfo['showcolours'] = $bugsys->in['showcolours']; $userinfo['languageid'] = $bugsys->in['languageid']; $userinfo['timezone'] = $bugsys->in['timezone']; $email = $bugsys->in['email']; $email_confirm = $bugsys->in['email_confirm']; // ------------------------------------------------------------------- // error handling if ($message->items) { $message->error_list_process(); $show['errors'] = true; $_REQUEST['do'] = 'modify'; } else { $userapi->update(); if (can_perform('canbeassignedto')) { require_once('./includes/functions_datastore.php'); build_assignedto(); } $message->redirect($lang->string('The changes to your account have been made.'), 'userctrl.php'); } } // ################################################################### if ($_REQUEST['do'] == 'modify') { $langselect = construct_datastore_select('language', 'title', 'languageid', $userinfo['languageid']); foreach ($datef->fetch_timezone_list() AS $value => $label) { $selected = ($value == $userinfo['timezone']); eval('$tzselect .= "' . $template->fetch('selectoption') . '";'); } eval('$template->flush("' . $template->fetch('userctrl') . '");'); } /*=====================================================================*\ || ################################################################### || # $HeadURL$ || # $Id$ || ################################################################### \*=====================================================================*/ ?>