: UPDATE
: user
: SET
: user_email = ${mysql::cgi.param.desc_email},
: user_desc = ${mysql::cgi.param.desc_desc}
: WHERE
: user_id = $userid
);
case cgi.param["action"] ~== "passwd":
var crypted_old = sql_value(db, "SELECT user_crypt FROM user WHERE user_id = $userid");
if (!check_crypt(cgi.param.passwd_old, crypted_old)) {
?>
Old password is incorrect!
Password and retyped password are different!
: UPDATE
: user
: SET
: user_crypt = ${mysql::crypt(cgi.param.passwd_new_1)}
: WHERE
: user_id = $userid
);
newpasswd_failed:;
}
var u = sql_tuple(db, <:SQL>
: SELECT
: user_email AS email,
: user_desc AS `desc`
: FROM
: user
: WHERE
: user_id = $userid
);
?>