#!/usr/bonsaitools/bin/perl -w # -*- Mode: perl; indent-tabs-mode: nil -*- # # The contents of this file are subject to the Mozilla Public # License Version 1.1 (the "License"); you may not use this file # except in compliance with the License. You may obtain a copy of # the License at http://www.mozilla.org/MPL/ # # Software distributed under the License is distributed on an "AS # IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or # implied. See the License for the specific language governing # rights and limitations under the License. # # The Original Code is the Bugzilla Bug Tracking System. # # The Initial Developer of the Original Code is Netscape Communications # Corporation. Portions created by Netscape are # Copyright (C) 1998 Netscape Communications Corporation. All # Rights Reserved. # # Contributor(s): Terry Weissman require "CGI.pl"; confirm_login(); print "Content-type: text/html\n\n"; if (! defined $::FORM{'pwd1'}) { PutHeader("Preferences", "Change your password and
other preferences", $::COOKIE{'Bugzilla_login'}); my $qacontactpart = ""; if (Param('useqacontact')) { $qacontactpart = ", the current QA Contact"; } my $loginname = SqlQuote($::COOKIE{'Bugzilla_login'}); SendSQL("select emailnotification,realname from profiles where login_name = " . $loginname); my ($emailnotification, $realname) = (FetchSQLData()); $realname = value_quote($realname); print qq{

Please enter the new password for $::COOKIE{'Bugzilla_login'}:
Re-enter your new password:
Your real name (optional):

Bugzilla will send out email notification of changed bugs to the current owner, the submitter of the bug$qacontactpart, and anyone on the CC list. However, you can suppress some of those email notifications. On which of these bugs would you like email notification of changes?


Review your votes
"; PutFooter(); exit; } if ($::FORM{'pwd1'} ne $::FORM{'pwd2'}) { print "

Try again.

The two passwords you entered did not match. Please click Back and try again.\n"; PutFooter(); exit; } my $pwd = $::FORM{'pwd1'}; sub x { my $sc="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789./"; return substr($sc, int (rand () * 100000) % (length ($sc) + 1), 1); } if ($pwd ne "") { if ($pwd !~ /^[a-zA-Z0-9-_]*$/ || length($pwd) < 3 || length($pwd) > 15) { print "

Sorry; we're picky.

Please choose a password that is between 3 and 15 characters long, and that contains only numbers, letters, hyphens, or underlines.

Please click Back and try again.\n"; PutFooter(); exit; } # Generate a random salt. my $salt = x() . x(); my $encrypted = crypt($pwd, $salt); SendSQL("update profiles set password='$pwd',cryptpassword='$encrypted' where login_name=" . SqlQuote($::COOKIE{'Bugzilla_login'})); SendSQL("update logincookies set cryptpassword = '$encrypted' where cookie = $::COOKIE{'Bugzilla_logincookie'}"); } SendSQL("update profiles set emailnotification='$::FORM{'emailnotification'}' where login_name = " . SqlQuote($::COOKIE{'Bugzilla_login'})); my $newrealname = $::FORM{'realname'}; if ($newrealname ne "") { $newrealname = SqlQuote($newrealname); SendSQL("update profiles set realname=$newrealname where login_name = " . SqlQuote($::COOKIE{'Bugzilla_login'})); } PutHeader("Preferences updated."); print " Your preferences have been updated.

"; PutFooter();