<%-- Allows any user to change their password. --%> <%-- Unusual: this page does no prepopulation of any fields. This is a --%> <%-- defensive measure, since it minimizes exposure of cleartext passwords. --%> <%-- So, if an error occurs, then the user will need to re-input both items in full. --%>

Change your password. If you have forgotten your password, you will need to ask for a password *reset*. Once that is done, you may use this screen to change your password to whatever you prefer. [A Faire.]

<%-- The name is displayed here, but is NOT submitted as a request param. --%> <%-- That would be highly insecure, since one user could easily mimic another. --%> <%-- On the server, the user name is simply fetched from the existing session. --%> Name	${itemForEdit}
Old Password
New Password
Confirm New Password