/*
Script: login.js
Author: P. Törnstrand
Date: 2006-03-10
Function for encrypting password and sending it for verification to server side script using HTTPRequest.
*/

/*
Encrypt password and send data
*/
function login(frm) {
	var sUsername = frm.username.value;
	var sHash = hex_md5(frm.password.value);
	var sAction = frm.action.value;
	sendRequest("username="+sUsername+"&password="+sHash+"&action="+sAction);
	return false;
}

/*
Return HTTPRequest object depending on browser
*/
function getNewXMLHttpRequest() {
  var obj;
    try {
      // For Internet Explorer.
      obj = new ActiveXObject('Microsoft.XMLHTTP');
    }
    catch(e) {
      try {
        // Gecko-based browsers, Safari, and Opera.
        obj = new XMLHttpRequest();
      }
      catch (e) {
        // Browser supports Javascript but not XMLHttpRequest.
        obj = false;
      }
    }
    return obj;
}

/*
Send HTTPRequest
*/
function sendRequest(params) {
	var request = getNewXMLHttpRequest();
	request.open('GET', '/scripts/login.asp?'+params, false);
	request.send(false);
	handleResponse(request.responseXML);
}

/*
Handle HTTPRequest response
*/
function handleResponse(response) {
	var stat = response.getElementsByTagName('status')[0].firstChild.nodeValue;
	var msg = response.getElementsByTagName('message')[0].firstChild.nodeValue;
	if (stat=='Success') {
		window.location = '/oversikt/default.asp';
	} else if (stat=='Complete') {
		window.location = '/oversikt/komplettera.asp';
	} else {
		// Login failed, display message
		//document.getElementById('login-response').innerHTML = msg;
		alert(msg);
	}
}