sub UpdateUserData { # $dbh->trace(2); my ($sid, $password,$email,$secret) = @_; $session = new CGI::Session("driver:MySQL",$sid, {Handle=>$dbh}); my $SQL = qq|SELECT id FROM $sql_session_table WHERE id = '$sid' |; my $sth = ExecuteQuery($SQL); my ($tsid, $userid) = $sth->fetchrow_array(); if (!$tsid) { return 0; } else { my $userid = $session->param("user_id"); my $username = $session->param("username"); if (! defined $userid ){ return 0; } my $updateinfoemail = "webpass\@jala-mi.org"; my $passpart = ""; my $mailpart = ""; my $secretpart = ""; if ($password ne "") { $passpart = "password = '$password'"; } if (($email ne "") && ($password eq "")) { $mailpart = "email = '$email'"; } elsif (($email ne "") && ($password ne "")) { $mailpart = ", email = '$email'"; } if (($secret ne "") && ($password eq "") && ($email eq "")) { $secretpart = "secret = '$secret'"; } elsif (($secret ne "") && (($password ne "") || ($email ne ""))) { $secretpart = ", secret = '$secret'"; } my $wherepart = " where user_id = '$userid'"; my $statement = "update $sql_user_table set $passpart $mailpart $secretpart $wherepart"; $SQL = qq| $statement |; my $sth1 = ExecuteQuery($SQL); # success so disconnect and send an e-mail with the missing/altered information to the user. $session->flush() or die "Unable to update session storage\n"; my $password1 = "'06#$password&422'"; my $userid1 = "61345$userid"; my $message = "The member has updated their information through the website. The member userid is :'$userid1'. Their new password is '$password1' "; my $subject = 'JALA Update Information Request.'; my $from = 'webmaster@jala-mi.net'; my $to = $updateinfoemail; my $body = $message; my $heading = "Member Update Information"; my $closing = "Office Manager: Please update the member database."; my $signiture = "JALA Support"; my $result = SendMemberMail($subject,$from,$to,$heading,$body,$closing,$signiture); return 1; } }