X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=admin%2Fcreate_coy.php;h=db276a063fa5b0627a704966204fe9d40b45a6b5;hb=f6f02cc789c66c6807fb612ae02a6908f46e60f9;hp=afb0266035ea15d08b65171eb7505296b180d5c1;hpb=76817e1db4fc96382c7bdff9bcc528fea24712e5;p=fa-stable.git

diff --git a/admin/create_coy.php b/admin/create_coy.php
index afb02660..db276a06 100644
--- a/admin/create_coy.php
+++ b/admin/create_coy.php
@@ -25,11 +25,11 @@ $comp_subdirs = array('images', 'pdf_files', 'backup','js_cache', 'reporting', '
 //---------------------------------------------------------------------------------------------
 if (isset($_GET['selected_id']))
 {
-	$selected_id = $_GET['selected_id'];
+	$selected_id = (int)$_GET['selected_id'];
 }
 elseif (isset($_POST['selected_id']))
 {
-	$selected_id = $_POST['selected_id'];
+	$selected_id = (int)$_POST['selected_id'];
 }
 else
 	$selected_id = -1;
@@ -130,9 +130,13 @@ function handle_submit()
 			if (!db_import($path_to_root.'/sql/'.get_post('coa'), $conn, $selected_id)) {
 				display_error(_('Cannot create new company due to bugs in sql file.'));
 				$error = true;
-			} else
-				if (isset($_POST['admpassword']) && $_POST['admpassword'] != "")
-					update_admin_password($conn, md5($_POST['admpassword']));
+			} 
+			else
+			{
+				if (!isset($_POST['admpassword']) || $_POST['admpassword'] == "")
+					$_POST['admpassword'] = "password";
+				update_admin_password($conn, md5($_POST['admpassword']));
+			}	
 		}
 		set_global_connection();
 		if ($error) {
@@ -168,7 +172,7 @@ function handle_delete()
 {
 	global $def_coy, $db_connections, $comp_subdirs, $path_to_root;
 
-	$id = $_GET['id'];
+	$id = (int)$_GET['id'];
 
 	// First make sure all company directories from the one under removal are writable. 
 	// Without this after operation we end up with changed per-company owners!
@@ -286,6 +290,7 @@ function display_companies()
 
 	end_table();
     display_note(_("The marked company is the current company which cannot be deleted."), 0, 0, "class='currentfg'");
+    display_note(_("If no Admin Password is entered, the new Admin Password will be '<b>password</b>' by default "), 1, 0, "class='currentfg'");
 }
 
 //---------------------------------------------------------------------------------------------
@@ -328,7 +333,7 @@ function display_company_edit($selected_id)
 		$_POST['dbname']  = $conn['dbname'];
 	}
 
-	text_row_ex(_("Company"), 'name', 30);
+	text_row_ex(_("Company"), 'name', 50);
 
 	if ($selected_id == -1)
 	{