<? 
include("parse_vars.php");

 $LogOn=$_COOKIE["LogOn"];
  if($LogOn!="On")
  {
   include("aut_inc.php");
  }
   include("headCP.php");
   include("Funciones.php");
   include("Administracion/Validaciones.php");


function Main()
{
	$IdUsuario=ReturnDatoUsuario(usu_id);
	
	;?>
	  <FORM method="post" name="form" action="ChangePasswd.php?op=ChangePassword" enctype="multipart/form-data">
		<input  type="hidden" name="IdUsuario" value="<?=$IdUsuario;?>">
	
		<TABLE class="Menu">
		<TR>
		 <td width="5px">
	    	&nbsp;
	   	   </td>
	   	   
		  <td width="10px">
	    	<DIV align="LEFT">
	    	 <B CLASS="CampoO">
	    	  Password :
	    	 </B>
	    	</DIV>
	   	   </td> 
	   	   
	   	   <td width="10px">
	    	<DIV align="LEFT">
	    	 <input  type="password" name="Password" size="15px">
	    	</DIV>
	   	   </td>   	   
		</TR>
		
		<TR>
		   <td width="5px">
	    	&nbsp;
	   	   </td>
	   	   
		  <td width="10px">
	    	<DIV align="LEFT">
	    	 <B CLASS="CampoO">
	    	  New Password :
	    	 </B>
	    	</DIV>
	   	   </td> 
	   	   
	   	   <td width="10px">
	    	<DIV align="LEFT">
	    	 <input  type="password" name="NewPassword" size="15px">
	    	</DIV>
	   	   </td>   	   
		</TR>
		
		<TR>
		 <td width="5px">
	    	&nbsp;
	   	   </td>
	   	   
		  <td width="10px">
	    	<DIV align="LEFT">
	    	 <B CLASS="CampoO">
	    	  Confirm Password :
	    	 </B>
	    	</DIV>
	   	   </td> 
	   	   
	   	   <td width="10px">
	    	<DIV align="LEFT">
	    	 <input  type="password" name="ConfirmPassword" size="15px">
	    	</DIV>
	   	   </td>   	   
		</TR>
		
			
		 <TR>
		  <TD colspan="3">
		   <DIV align="CENTER">
		   <input type="submit" name="Boton" value=" Change ">
		    </DIV> 
		 </TD>
		</TR>
	   </TABLE>
	   
	  </FORM>
<?
}

function ChangePassword($IdUsuario,$Password,$NewPassword,$ConfirmPassword)
{
	$POld=ReturnQuery($IdUsuario,usu_id,Usuario,usu_password);
	$Password=ReturnPasswordCrypt($Password);

	if($Password=="" || $NewPassword=="" || $ConfirmPassword=="")
	{
	
	
	$Mensaje="Please, complete the fields";
	Alerta($Mensaje,"ChangePasswd.php","Back...");
	exit();
	
	}
	
	if($Password!=$POld)
	{
	
	$Mensaje="Please, insert the present Password";
	Alerta($Mensaje,"ChangePasswd.php","Back...");
	exit();
	
	}
	
	
	if($NewPassword!=$ConfirmPassword)
	{
	
	$Mensaje="Passwords are not the same ";
	Alerta($Mensaje,"ChangePasswd.php","Back...");
	exit();
	
	}
	
	$NewPassword=ReturnPasswordCrypt($NewPassword);
	
	dbquery("UPDATE Usuario SET usu_password='$NewPassword' WHERE usu_id='$IdUsuario'");
	
	?>
	
	<div id="ILOADING">
	 <img src="images/loading.gif" width="60px">
	</div>
	
	  <body onLoad="JavaScript:Cerraraliniciar()">
		<script language="JavaScript">
		function Cerraraliniciar(){
		var id;
		id = setTimeout("cerrar()", 1000);
		}
		function cerrar() {
		location.href="logout.php";
		}		

        </script>
	
	<?
}

switch($op)
{
	case "ChangePassword";
	ChangePassword($IdUsuario,$Password,$NewPassword,$ConfirmPassword);
	break;

	default:
	Main();
	break;
	
}   
	

 include("footerI.php");