StringFunctions::Convert((*queryvars.find("identityid")).second,identityid);\r
}\r
\r
- if(identityid!=0 && queryvars.find("formaction")!=queryvars.end() && (*queryvars.find("formaction")).second=="deletemessages")\r
+ if(identityid!=0 && queryvars.find("formaction")!=queryvars.end() && (*queryvars.find("formaction")).second=="deletemessages" && ValidateFormPassword(queryvars))\r
{\r
SQLite3DB::Statement del=m_db->Prepare("DELETE FROM tblMessage WHERE IdentityID=?;");\r
del.Bind(0,identityid);\r
del.Step();\r
}\r
\r
- if(identityid!=0 && queryvars.find("formaction")!=queryvars.end() && (*queryvars.find("formaction")).second=="hide")\r
+ if(identityid!=0 && queryvars.find("formaction")!=queryvars.end() && (*queryvars.find("formaction")).second=="hide" && ValidateFormPassword(queryvars))\r
{\r
SQLite3DB::Statement del=m_db->Prepare("UPDATE tblIdentity SET Hidden='true' WHERE IdentityID=?;");\r
del.Bind(0,identityid);\r
del.Step();\r
}\r
\r
- if(identityid!=0 && queryvars.find("formaction")!=queryvars.end() && (*queryvars.find("formaction")).second=="show")\r
+ if(identityid!=0 && queryvars.find("formaction")!=queryvars.end() && (*queryvars.find("formaction")).second=="show" && ValidateFormPassword(queryvars))\r
{\r
SQLite3DB::Statement del=m_db->Prepare("UPDATE tblIdentity SET Hidden='false' WHERE IdentityID=?;");\r
del.Bind(0,identityid);\r
content+="<tr><td>Hidden in Main Peer Trust Page</td>";\r
content+="<td>"+hidden;\r
content+=" <form name=\"frmhidden\" method=\"POST\">";\r
+ content+=CreateFormPassword();\r
content+="<input type=\"hidden\" name=\"identityid\" value=\""+identityidstr+"\">";\r
if(hidden=="false")\r
{\r
content+="<td>Message Count</td>";\r
content+="<td>"+messagecountstr;\r
content+=" <form name=\"frmdeletemessages\" method=\"POST\">";\r
+ content+=CreateFormPassword();\r
content+="<input type=\"hidden\" name=\"identityid\" value=\""+identityidstr+"\">";\r
content+="<input type=\"hidden\" name=\"formaction\" value=\"deletemessages\">";\r
content+="<input type=\"submit\" value=\"Delete Messages\">";\r