From 0840c207646277c9eb7fb55504794d1d98e9c8a7 Mon Sep 17 00:00:00 2001
From: Ramon Novoa <rnovoa@artica.es>
Date: Tue, 19 May 2015 11:26:36 +0200
Subject: [PATCH] Ask for the old password before letting a user renew his
 password.

---
 pandora_console/include/javascript/jquery.pandora.js | 2 +-
 pandora_console/index.php                            | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/pandora_console/include/javascript/jquery.pandora.js b/pandora_console/include/javascript/jquery.pandora.js
index 128cebb80c..ed61e44910 100644
--- a/pandora_console/include/javascript/jquery.pandora.js
+++ b/pandora_console/include/javascript/jquery.pandora.js
@@ -129,7 +129,7 @@ $(document).ready (function () {
 			resizable: true,
 			draggable: true,
 			modal: true,
-			height: 260,
+			height: 360,
 			width: 590,
 			overlay: {
 				opacity: 0.5,
diff --git a/pandora_console/index.php b/pandora_console/index.php
index 1c1d79eef9..7acafe2fba 100755
--- a/pandora_console/index.php
+++ b/pandora_console/index.php
@@ -151,11 +151,12 @@ $change_pass = get_parameter_post('renew_password', 0);
 
 if ($change_pass == 1) {
 	
+	$password_old = (string) get_parameter_post ('old_password', '');
 	$password_new = (string) get_parameter_post ('new_password', '');
 	$password_confirm = (string) get_parameter_post ('confirm_new_password', '');
 	$id = (string) get_parameter_post ('login', '');
 	
-	$changed_pass = login_update_password_check ($password_new, $password_confirm, $id);
+	$changed_pass = login_update_password_check ($password_old, $password_new, $password_confirm, $id);
 }
 
 $searchPage = false;