hcuProfileRequire_8prg_source.html

<?php
  /*
   * File: hcuProfileRequire
   *
   * Purpose:  Handle the client-side setting up of the user's profile information. Gather it all
   *          at once and then submit it. Allow the user to test the Alias if there is one. System
   *          flags will be tested to see what needs to be updated. If the flag specifies it is necessary
   *          then that item/entry is required.  All need to pass validation for any to be updated.
   *
   * Note: Don't show the menu buttons because the user should not do anything else until they are
   *      set up successfully.
   */

  // ** SET SCRIPT LEVEL VARIABLES
  $serviceShowInfo = true;
  $serviceLoadMenu = true;
  $serviceShowMenu = false;
  $serviceSkipSecurity = true;    // so hcuService doesn't try to call us again

  // ** INCLUDE MAIN GLOBAL SCRIPT -- Handles security / global variable values
  require_once(dirname(__FILE__) . '/../library/hcuService.i');

  // ** INSERT BUSINESS LOGIC FOR THIS FORM
  // see if retry cookie has run out or expired
  $securePass = HCU_array_key_exists("securePass", $_COOKIE) ? $_COOKIE["securePass"] : "";
  $bailout = "{$HB_ENV["loginscript"]}?{$HB_ENV["cuquery"]}";

  $remainTries = null;
  $timeExpires = null;
  $testValidity = null;
  $parts = array("remain" => "", "until" => "", "check" => "");
  if ( !strlen( $securePass ) ) {
    // remove the securePass cookie since they are done with it
    HCU_setcookie_env($HB_ENV['SYSENV'], "securePass", "", time() - 60);

    // parse the parts
    parse_str( $securePass, $parts );
    $remainTries = HCU_array_key_exists("remain", $parts) ? $parts["remain"] : "";
    $timeExpires = HCU_array_key_exists("until", $parts) ? $parts["until"] : "";
    $testValidity = md5( $remainTries . $timeExpires . $HB_ENV["secret"] );
  }


  if ( (!$remainTries) || ($timeExpires < time()) || ( $testValidity != $parts["check"] ) ) {
    // remove the securePass cookie since they are done with it
    HCU_setcookie_env($HB_ENV['SYSENV'], "securePass", "", time() - 60);
  }


  // get any passed variables
  $dms_ok = array( "action" => "string", "chkSecure" => "string", "emailAddress" => "string", "emailValid" => "string",
                   "profileEgenl" => "string", "profileEmailAlerts" => "string", "security_confidence" => "string",
                   "challengeQuestion" => "prefix_s", "response" => "prefix_s", "estatementStart" => "string",
                   "profilePasswordCurr" => "string", "profilePasswordNew1" => "string", "profilePasswordNew2" => "string",
                   "profileAlias1" => "string", "profileAlias2" => "string", "estatementNoticeId" => "string", "security_phones" => "string" );

  HCU_ImportVars($HB_ENV, 'HCUPOST', $dms_ok);

  $returnScript = $HB_ENV["loginpath"] . "/hcuAccounts.prg?" . $HB_ENV["cuquery"];

  $action = HCU_array_key_value('action', $HB_ENV["HCUPOST"]);
  // handle any AJAX requests (before any output)
  if ( $action == "test_alias" ) {
    header('Content-Type: application/json');

    // get the user alias to test
    $userAlias = $_POST["alias"];

    // some basic tests
    $aryReply = array( "result" => FALSE, "message" => $MC->msg( "Error" , HCU_DISPLAY_AS_JS) );

    // * Validate user alias length
    if ( strlen( $userAlias ) >= 0 && strlen( $userAlias ) < 6 ) {
      $aryReply = array( "result" => FALSE, "message" => $MC->msg('Username too short', HCU_DISPLAY_AS_JS) );
    } else if ( strlen( $userAlias ) > 5 && !check_alias_format( $userAlias ) ) {
      // * Validate the useralias is correct format
      $aryReply = array( "result" => FALSE, "message" => $MC->msg('Username appears invalid', HCU_DISPLAY_AS_JS) );
    } else if ( check_alias_available( $dbh, $HB_ENV, $userAlias ) ) {
      $aryReply = array( "result" => TRUE, "message" => $MC->msg( "Available", HCU_DISPLAY_AS_JS) );
    } else {
      $aryReply = array( "result" => FALSE, "message" => $MC->msg( "Username not available" , HCU_DISPLAY_AS_JS) );
    }

    print HCU_JsonEncode($aryReply);

    exit;
  } else if ( $action == "cancel_profile" ) {
    // * Set the sC ticket value (2 = update later)
    $option = "sC=2";
    $newTicket = SetTicket($HB_ENV, $_COOKIE['Ticket'], $option );
    $_COOKIE['Ticket'] = $newTicket;

    // remove the securePass cookie since they gave up on their attempt
    HCU_setcookie_env($HB_ENV['SYSENV'], "securePass", "", time() - 60);

    if ( $HB_ENV["platform"] == "APP" || $HB_ENV["platform"] == "ADA" ) {
      // set up the parameters based on what changed
      if ( $newTicket != "" ) {
        $paramsForApps = array( "newTicket" => urlencode( $newTicket ) );

        $paramsJSON = HCU_JsonEncode($paramsForApps);
    ?>
    <html>
      <head>
        <script type="text/javascript">
          var appInfo = '<?php echo $paramsJSON; ?>';

          <?php if ( $HB_ENV["platform"] == "ADA" ) :  ?>
              AndroidController.notifyCommand("NEW_TICKET_COOKIE", appInfo);
          <?php elseif ( $HB_ENV["platform"] == "APP" ) :  ?>
              var postObject = {
                      body: {
                          cmd: "NEW_TICKET_COOKIE",
                          params: appInfo
                      }
                  };
              window.webkit.messageHandlers.interOp.postMessage(postObject);
          <?php endif ?>

        </script>
      </head>
      <body>
        <form method="post" id="formCancelContinue" name="formCancelContinue" action='<?php echo $returnScript ?>'>
        </form>
        <script type="text/javascript">
          // set up a re-direct
          document.formCancelContinue.submit();
        </script>
      </body>
    </html>
    <?php
      }
    } else {
      header("Location: {$returnScript}");
    }

    exit;
  }

  // ** INCLUDE PRE CONTENT SCRIPT
  require_once(dirname(__FILE__) . '/../includes/hcuPreContent.i');

  // set up defaults
  $rulesURLNoticeOnly = "";

  // Is the user alias required? Only ask for it if required.
  $aliasRequired = ($HB_ENV['Fset2'] & GetFlagsetValue("CU2_ALIAS_REQ")) == GetFlagsetValue("CU2_ALIAS_REQ");

  // only update the password if it is required
  $pwdRequired = ($HB_ENV['Ffchg'] == "Y");

  $pwdRequirements = array();
  $pwdConfigJSON = "{}";    // Set to empty json array by default
  if ( $pwdRequired ) {
    // allowed special characters (this needs to also match in hucProfile.data and hcuProfileRequire)
    $specialCharacters = Get_PwdSpecialCharacters();

    // read the password requirements, if any
    $pwdConfigAry = Get_PwdRules( $dbh, $HB_ENV );
    $pwdConfigJSON = HCU_JsonEncode( $pwdConfigAry );
    $hasPwdRequirements = count($pwdConfigAry) > 0;

    // flag if using password requirements
    /*$hasPwdRequirements = 1;
    if ( $hasPwdRequirements ) {
      $pwdConfigJSON = HCU_JsonEncode( $pwdConfigAry );
    } else {
      $pwdConfigJSON = "{}";
    }*/

    // set up the messages regarding what is being checked
    if (HCU_array_key_value("len", $pwdConfigAry) > 0) {
      $text = ( $pwdConfigAry["len"] > 1 ) ? $MC->msg("Characters", HCU_DISPLAY_AS_HTML) : $MC->msg("Character", HCU_DISPLAY_AS_HTML);
      $pwdRequirements[] = array( "which"=>"len", "text"=>"{$pwdConfigAry["len"]} {$text}" );
    }
    if (HCU_array_key_value("upper", $pwdConfigAry) > 0) {
      $text = ( $pwdConfigAry["upper"] > 1 ) ? $MC->msg("UPPER letters", HCU_DISPLAY_AS_HTML) : $MC->msg("UPPER letter", HCU_DISPLAY_AS_HTML);
      $pwdRequirements[] = array( "which"=>"upper", "text"=>"{$pwdConfigAry["upper"]} {$text}" );
    }
    if (HCU_array_key_value("lower", $pwdConfigAry) > 0) {
      $text = ( $pwdConfigAry["lower"] > 1 ) ? $MC->msg("lower letters", HCU_DISPLAY_AS_HTML) : $MC->msg("lower letter", HCU_DISPLAY_AS_HTML);
      $pwdRequirements[] = array( "which"=>"lower", "text"=>"{$pwdConfigAry["lower"]} {$text}" );
    }
    if (HCU_array_key_value("spec", $pwdConfigAry) > 0) {
      $text = ( $pwdConfigAry["spec"] > 1 ) ? $MC->msg("Special characters", HCU_DISPLAY_AS_HTML) : $MC->msg("Special character", HCU_DISPLAY_AS_HTML);
      $pwdRequirements[] = array( "which"=>"spec", "text"=>"{$pwdConfigAry["spec"]} {$text} <span class='fa fa-question-circle-o' style='color: #333' id='specialTip'></span>" );
    }
    if (HCU_array_key_value("digit", $pwdConfigAry) > 0) {
      $text = ( $pwdConfigAry["digit"] > 1 ) ? $MC->msg("Numbers", HCU_DISPLAY_AS_HTML) : $MC->msg("Number", HCU_DISPLAY_AS_HTML);
      $pwdRequirements[] = array( "which"=>"digit", "text"=>"{$pwdConfigAry["digit"]} {$text}" );
    }
  } else {
    $hasPwdRequirements = false;
    $specialCharacters = "";
  }

  // if email needs verification then it is required
  $emailRequired = ($HB_ENV['Fmsg_tx'] & GetMsgTxValue('MSGTX_FORCE_EM'));

  // get list of security phone numbers for user
  // default empty list
  $aryPhones = array( "mobile"=>array() );
  $sql = "SELECT phones FROM {$HB_ENV['Cu']}usercontact c LEFT JOIN {$HB_ENV['Cu']}user u ON u.contact = c.contact_id WHERE u.user_name = '{$HB_ENV['Cn']}'";
  $sqlRs = db_query($sql, $dbh);
  if ($sqlRs) {
    $rowPhones = db_fetch_assoc($sqlRs, 0);
    $hasPhones = HCU_array_key_value("phones", $rowPhones);
    if ($hasPhones) {
      $aryPhones = HCU_JsonDecode($hasPhones);
    }
  }

  // update the challenge questions / phone list if required or missing
  $questTest = GetChallengeQuestions("CURRENT", $dbh, $HB_ENV, $MC, $HB_ENV['Cn']);

  /**
   * Show the MFA Tab for any of the following conditions
   *   Force Security is set for the user
   *   CU is setup for Challenge Questions and no challenge questions are configured
   *   CU is setup for SAC and no mobile numbers are configured
   */
  $challengeRequired = ($HB_ENV['Ffreset'] > 0) ||
                       ((intval($HB_ENV['flagset3'] & GetFlagsetValue("CU3_MFA_AUTHCODE")) === 0) && (empty( $questTest ) || $questTest["mfacount"] == 0)) ||
                       ((intval($HB_ENV['flagset3'] & GetFlagsetValue("CU3_MFA_AUTHCODE")) > 0) && empty( $aryPhones['mobile']));

  /*
   * ** START CONTENT
   */
  $errorList = array();
  $es_warnings = [];

  $act = "auth";  // default to first screen
  if (HCU_array_key_value('action', $HB_ENV['HCUPOST']) == 'submit') {
    // ** GET THE Current Member Info --- This is at least needed for username
    $mbrInfo = GetUserInfo($dbh, $HB_ENV, $MC, Array("user_id" => $HB_ENV['Uid'], "cu" => $HB_ENV['Cu']));

    // get the passed information into variables in case need to re-show on error
    $paramChkSecure = $HB_ENV["HCUPOST"]["chkSecure"] == "Y" ? "Y" : "N";
    $paramEmailAddress = $HB_ENV["HCUPOST"]["emailAddress"];
    $paramEmailValid = $HB_ENV["HCUPOST"]["emailValid"] == "true" ? "Y" : "N";
    $paramProfileEgenl = $HB_ENV["HCUPOST"]["profileEgenl"] == "true" ? "Y" : "N";
    $paramEstatementStart = $HB_ENV["HCUPOST"]["estatementStart"] == "true" ? "Y" : "N";
    $paramProfileEmailAlerts = $HB_ENV["HCUPOST"]["profileEmailAlerts"];
    $paramSecurityConfidence = $HB_ENV["HCUPOST"]["security_confidence"];

    $paramChallengeQuestions = array();
    $paramResponses = array();
    if (intval($HB_ENV['flagset3'] & GetFlagsetValue("CU3_MFA_AUTHCODE")) === 0) {
      // NOTE: this should create invalid entries if the user didn't send enough question/response pairs
      for ( $i = 0; $i < $HB_ENV['cu_chgqst_count']; $i++ ) {
        $paramChallengeQuestions[$HB_ENV["HCUPOST"]["challengeQuestion{$i}"]] = $HB_ENV["HCUPOST"]["response{$i}"];
      }
    }

    $paramProfileAlias1 = $HB_ENV["HCUPOST"]["profileAlias1"];
    $paramProfileAlias2 = $HB_ENV["HCUPOST"]["profileAlias2"];
    $paramProfilePasswordCurr = $HB_ENV["HCUPOST"]["profilePasswordCurr"];
    $paramProfilePasswordNew1 = $HB_ENV["HCUPOST"]["profilePasswordNew1"];
    $paramProfilePasswordNew2 = $HB_ENV["HCUPOST"]["profilePasswordNew2"];

    $errorList = array();

    // set up all the possible things being validated/updated
    $bolUseTransaction = false;
    // ** SET FIELDS FOR UPDATE
    // * Go in the upd_fields array -- then call Update_Settings
    $updFields['settings_password']['current'] = $paramProfilePasswordCurr;
    if ( $pwdRequired ) {
      // ** Include password with the information
      $updFields['settings_password']['newpasswd'] = $paramProfilePasswordNew1;
      $updFields['settings_password']['confpasswd'] = $paramProfilePasswordNew2;
      $updFields['settings_password']['review_guidelines'] = "Y";   // hard-code this for now as the requirement is going away

      // see if password requirements are set
      $aryResult = Validate_PwdRules( $dbh, $HB_ENV, $updFields, $MC );

      // check if the requirements were met
      if ( $aryResult["status"]["code"] != '000' ) {
        for ( $e = 0; $e < count( $aryResult["status"]["errors"] ); $e++ ) {
          $errorList[] = array( "id" => "", "message" => $aryResult["status"]["errors"][$e] );
        }
      }
    }

    // ** Include useralias? Only if required AND the current alias is empty.
    // ** This matches the logic for showing the username step
    /*
     * Prior to Odyssey user alias was a separate field.  It could easily be identified as 'NOT SET'
     * Now in Odyssey the user_name is ALWAYS the login, when an alias is set or not it will have a value
     * At this time I am going to identify the Alias as 'NOT SET' IF the user_name is all digits.  We will
     * still have the rule where an ALIAS may NOT be all digits mws 4/5/2016
     */
    if ($aliasRequired && is_numeric($mbrInfo["data"]["cuusers_user_name"])) {
      // ** Include information for member username
      $updFields['settings_alias']['username'] = $HB_ENV['HCUPOST']['profileAlias1'];
      $updFields['settings_alias']['username_confirm'] = $HB_ENV['HCUPOST']['profileAlias2'];
      $bolUseTransaction = true;
    }

    if ( $challengeRequired ) {
      // ** Confidence word
      $updFields['settings_confidence']['confword'] = $paramSecurityConfidence;

      if (HCU_array_key_exists('cuusers_userflags', $mbrInfo['data'])) {
        // * data structure exists for mbrInfo -- reset the field if 'userflags' EXISTS
        // ** Userflags -- Reset the MEM_FORCE_RESET flag?

        $tmpVal = (int) HCU_array_key_value('cuusers_userflags', $mbrInfo['data']);
        // ** NEGATE the MEM_FORCE_RESET value
        $tmpVal = ~(~$tmpVal | GetUserFlagsValue('MEM_FORCE_RESET'));

        $updFields['settings_confidence']['userflags'] = $tmpVal;
      }

      if (intval($HB_ENV['flagset3'] & GetFlagsetValue('CU3_MFA_AUTHCODE'))) {
        // ** get update for phone numbers
        if (HCU_array_key_exists("security_phones", $HB_ENV['HCUPOST'])) {
          $phonesJson = $HB_ENV['HCUPOST']['security_phones'];
          $phonesJson = html_entity_decode($phonesJson);
          $phonesAry = HCU_JsonDecode($phonesJson);

          $mobile =  HCU_array_key_value('mobile', $phonesAry);

          $updFields['settings_phones']['mobile'] = $mobile === false ? array() : $mobile;
        }
      } else {
        // ** Challenge Questions / Responses
        // ** loop through the questions
        $arrayKeys = array_keys( $paramChallengeQuestions );
        for ( $i = 0; $i < count( $arrayKeys ); $i++ ) {
          $updFields['settings_questions'][] = Array( 'cqid' => $arrayKeys[$i], 'display' => $paramChallengeQuestions[$arrayKeys[$i]] );
        }
      }
    }

    // ** email
    if ( $emailRequired || $challengeRequired ) {

      if ( strlen( $paramEmailAddress ) ) {
        $updFields['settings_email']['email'] = $paramEmailAddress;
        $updFields['settings_email']['egenl'] = $paramProfileEgenl;

        $updFields['settings_email']['verify'] = $emailRequired;
        $updFields['settings_email']['valid'] = $paramEmailValid;
      } else {
        $errorList[] = array( "id" => "", "message" => $MC->msg( "EMail Missing", HCU_DISPLAY_AS_HTML ) );
      }
    }

    // ** We have create our list of fields to update --
    // ** VALIDATE -- OR PUT VALIDATION IN UPDATE
    // * are we verifying the email address
    $aryUpdate = Validate_Settings($dbh, $HB_ENV, $updFields, $MC);

    if ($aryUpdate['status']['code'] != '000') {
      for ( $i = 0; $i < count( $aryUpdate["status"]["errors"] ); $i++ ) {
        $errorList[] = array( "id" => "", "message" => $aryUpdate["status"]["errors"][$i] );
      }

      // if failed the current password, update the cookie retries
      // failed_curr_pass is only set when password validation fails,
      // otherwise the index is not present with all errors

      // if( $aryUpdate['status']['failed_curr_pass'] ) {
      if( !empty ( $aryUpdate['status']['failed_curr_pass'] ) ) {
        $remainTries--;
        // these values were obtained on entry
        $hashedValue = md5( $remainTries . $timeExpires . $HB_ENV["secret"] );
        $profileCookie = "remain=$remainTries&until=$timeExpires&check=$hashedValue";
        HCU_setcookie_env($HB_ENV['SYSENV'], "securePass", "", time() - 60);
      }
    }

    if ( !count( $errorList ) ) {

      // see if we ask the member to start eStatements
      $userNeedsEstatements = false;
      $accountNumbers = array();
      if ($HB_ENV["flagset3"] & GetFlagsetValue("CU3_ESTMNT_SIGNUP")) {
        // This value doesn't not change.  If it is false, then I don't even need to check anything else.
        // Needs to loop to see if any estatements are "N"s. Gets accountnumbers where the user has Desktop Estatement access to.
        // Profile Require is not used in the apps.
        $sql = "select accountnumber from " . $HB_ENV["Cu"] . "memberacctrights where whichright = 'ES' and platform::jsonb ? 'D' and user_id = " . $HB_ENV["Uid"];
        $sth = db_query($sql, $dbh);

        $hasEsPositive = false;
        $hasEsNegative = false;
        for($i = 0; list($accountnumber) = db_fetch_row($sth, $i); $i++) {
          $retEstmtStatus = Get_EstmtEnrollStatus($dbh, $HB_ENV, $MC, trim($accountnumber));
          $accountNumbers[] = $accountnumber;

          if ($retEstmtStatus['status']['code'] == '000') {
            $hasEsPositive = $hasEsPositive || $retEstmtStatus["status"]["estmt"] == "Y";
            $hasEsNegative = $hasEsNegative || $retEstmtStatus["status"]["estmt"] == "N";
          }
        }

        $userNeedsEstatements = $hasEsNegative && !$hasEsPositive;
        // If the user has Estatements that have not been turned AND does not have estatements that have been turned on.
      }

      if ( $userNeedsEstatements && $paramEstatementStart == "Y" ) {
        // start the estatement
        $HB_ENV['esProcessMode'] = "start";

        foreach($accountNumbers as $accountnumber) { // Loop through accountnumbers found and try to set up estatements per accountnumber.
          $esResults = Post_CUEStmt($dbh, $HB_ENV, $MC, trim($accountnumber));
          if ( $esResults["status"]["code"] != "000" ) {
            for ( $i = 0; $i < count( $esResults["status"]["errors"] ); $i++ ) {
            //$retStatus_ary is undefined.
            //for ( $i = 0; $i < count( $retStatus_ary["status"]["errors"] ); $i++ ) {
             // $errorList[] = array( "id" => "", "message" => $esResults["status"]["errors"][$i] );
             $es_warnings[] = $esResults["status"]["errors"][$i];
            }
            break;
          }
        }

        // check for errors
        if ( $esResults["status"]["code"] == "000" ) {
          // don't show the result message because there isn't a good place to show it

          // now set the notification

          // build up a response to the notice so the member doesn't see again
          $HB_ENV["HCUPOST"]["notice_type"] = "C";
          $HB_ENV["HCUPOST"]["notice_id"] = intval( $HB_ENV["HCUPOST"]["estatementNoticeId"] );
          $HB_ENV["HCUPOST"]["notice_device"] = "M"; // mobile
          $HB_ENV["HCUPOST"]["notice_response"] = array( "answer" => 1 );    // something non-zero but numeric
          $HB_ENV["HCUPOST"]["notice_cancel"] = "0";

          // Need to insert a record in the response table for every accountnumber.
          foreach ($accountNumbers as $accountnumber) {
            $HB_ENV["HCUPOST"]["notice_accountnumber"] = $accountnumber;
            $retStatus_ary = Update_NoticeInfo($dbh, $HB_ENV, $MC);
          }

          if ( $retStatus_ary["status"]["code"] != "000" ) {
            for ( $i = 0; $i < count( $retStatus_ary["status"]["errors"] ); $i++ ) {
              $errorList[] = array( "id" => "", "message" => $retStatus_ary["status"]["errors"][$i] );
            }
          }
        }
      }

      if (intval($HB_ENV['flagset3'] & GetFlagsetValue('CU3_MFA_AUTHCODE'))) {
        if (HCU_array_key_exists("settings_phones", $updFields)) {
          // since the security phone number are part of a different table
          // we must update them separately from the Update_User_Settings
          // function.
          $aryUpdate = Update_User_Security($dbh, $HB_ENV, $MC, $updFields);
          if ($aryUpdate['status']['code'] != '000') {
            // an error occurred, convert the error into an id:message pair, if we know the id (field name)
            for ( $e = 0; $e < count( $aryUpdate["status"]["errors"] ); $e++ ) {
              $aryErrors[] = array( "message" => $aryUpdate["status"]["errors"][$e] );
            }

            throw new Exception (HCU_JsonEncode($aryErrors));
          }
        }
      }

      // Always use a transaction so we know if anything didn't complete that nothing completed.
      // This is mostly in case the user_name wasn't unique (e.g. conflict after validation and before actual update).
      $bolUseTransaction = true;
      $aryUpdate = Update_User_Settings($dbh, $HB_ENV, $MC, $updFields, $bolUseTransaction);

      if ($aryUpdate['status']['code'] != '000') {
        // * AN ERROR OCCURRED
        // ** Stay on this screen list the errors.
        for ( $i = 0; $i < count( $aryUpdate["status"]["errors"] ); $i++ ) {
          $errorList[] = array( "id" => "", "message" => $aryUpdate["status"]["errors"][$i] );
        }
      } else {
        // * SUCCESSFUL

        // ** BE sure to set the GLOBAL Ticket cookie to the new value
        // *  being returned by SetTicket
        $newTicket = "";

        // ** If the Ffchg flag is set to Y -- Then reset to N
        if ( $pwdRequired ) {
          $newTicket = SetTicket($HB_ENV, $_COOKIE['Ticket'],"Ffchg=N");
          $_COOKIE['Ticket'] = $newTicket;
        }
        // * RESET THE EMAIL
        // NOTE: resetting the verify email even if not verified so user won't get caught in a loop, verifying the email
        if ( $emailRequired ) {
          // ** OLD $_COOKIE['Ticket'] = SetTicket($HB_ENV, $_COOKIE['Ticket'],"Ml=$paramEmailAddress&Fmsg_tx=" . ($HB_ENV['Fmsg_tx'] ^ $EMAIL_FLAG));
          // * Changed to logic to not simply negate the EMAIL_FLAG.  This is because the logic above changed for emailRequired where we ALWAYS
            // * require the email .. Now it needs to properly  negate only when it is already set
          $newTicket = SetTicket($HB_ENV, $_COOKIE['Ticket'],"Ml=$paramEmailAddress&Fmsg_tx=" . ~(~(int)$HB_ENV['Fmsg_tx'] | GetMsgTxValue("MSGTX_FORCE_EM")));
          $_COOKIE['Ticket'] = $newTicket;
        }

        // * SET USER NAME COOKIE IF CHANGED
          // ** ENSURE profileAlias variable is set.  If the field is empty they did not Change
        if ( $mbrInfo["data"]["cuusers_user_name"] != $paramProfileAlias1 && $paramProfileAlias1 != '') {
          $newTicket = SetTicket($HB_ENV, $_COOKIE['Ticket'], "Cn=$paramProfileAlias1");
          $_COOKIE['Ticket'] = $newTicket;
          // ** Update the HB_ENV Cn (username) -- This will be used later when updating the device cookie
          $HB_ENV['Cn'] = $paramProfileAlias1;
        }
        // * RESET THE USERNAME
        if (($HB_ENV['Fset2'] & GetFlagsetValue("CU2_ALIAS_REQ")) == GetFlagsetValue("CU2_ALIAS_REQ")) {
          $newTicket = SetTicket($HB_ENV, $_COOKIE['Ticket'],"Fset2=" . ($HB_ENV['Fset2'] ^ GetFlagsetValue("CU2_ALIAS_REQ")));
          $_COOKIE['Ticket'] = $newTicket;
        }
        if ( $challengeRequired ) {
          // ** RESET THE Force Reset of Challenge Questions: Ffreset - be sure it is 0
          $newTicket = SetTicket($HB_ENV, $_COOKIE['Ticket'],"Ffreset=0");
          $_COOKIE['Ticket'] = $newTicket;
        }

        $newDeviceCookie = "";
        $newPassword = "";
        if ( $HB_ENV["platform"] == "APP" || $HB_ENV["platform"] == "ADA" ) {
          // build a new device cookie to give to the apps (the apps will check if it is needed)
          $usrInfo = GetUserbyName($HB_ENV['dbh'], $HB_ENV['Cu'], $HB_ENV['Cn']);

          // Get the MFA mode (authcode or not) flag
          $mfaMode = (intval($HB_ENV['Fset3'] & GetFlagsetValue('CU3_MFA_AUTHCODE')));

          // Get the mfadate from the UserRec
          $mfaDate = HCU_array_key_value("mfadate", $usrInfo);


          $cookieParams = array ( "cu" => $HB_ENV["cu"],
                                  "user_name" => $usrInfo["user_name"],
                                  "saved_pass" => $usrInfo["passwd"],
                                  "saved_email" => $usrInfo['email'],
                                  "saved_confidence" => $usrInfo['confidence'],
                                  "mfa_mode" => $mfaMode,
                                  "mfa_date" => $mfaDate,
                                  "persists_time" => $HB_ENV['SYSENV']['ticket']['persists']
                                );

          // This will start working with with issue 3126
          $cookieInfo = CreateDeviceCookie( $cookieParams);

          $newDeviceCookie = $cookieInfo["name"] . "|" . $cookieInfo["content"] . "|" . $cookieInfo["expire"];

          // if the password was updated, get a copy to give to the apps in case of fingerprint signing
          if ( pwdRequired ) {
            $newPassword = $paramProfilePasswordNew1;
          }
        } else {
          // * Check to see if I want to rebuild the cookie
          if ( $paramChkSecure == 'Y' ) {
            // ** refetch the member information
            $mbrInfo = GetUserInfo($dbh, $HB_ENV, $MC, Array("user_id" => $HB_ENV['Uid'], "cu" => $HB_ENV['Cu']));
            // ** if we were able to retrieve the member data
            if ($mbrInfo['status']['code'] == '000') {
              // * Set fields for setting the
              $HB_ENV['cu'] = $HB_ENV['Cu'];
              $HB_ENV['username'] = $HB_ENV['Cn'];
              $HB_ENV['savepass'] = trim($mbrInfo['data']['cuusers_passwd']);
              $HB_ENV['savemail'] = trim($mbrInfo['data']['cuusers_email']);
              $HB_ENV['confidence'] = trim($mbrInfo['data']['cuusers_confidence']);
              SetDeviceCookie($HB_ENV, $mbrInfo['data']);
            }
          }
        }
        // now try to update the alerts - any in the list get updated
        if ( strlen( $paramProfileEmailAlerts ) > 0 ) {
          // get the alerts
          $alertInfo = Get_AlertsDetailed( $dbh, $HB_ENV["Cu"], $HB_ENV["Uid"], $HB_ENV["Fset3"]);
          $alertList = $alertInfo["data"];

          $emailList = explode( "|", $paramProfileEmailAlerts );
          // go through the alerts
          for ( $a = 0; $a < count( $alertList ); $a++ ) {
            if ( $alertList[$a]["emailtype"] == "E" &&
                 in_array( $alertList[$a]["notifyto"], $emailList ) ) {

              $sql = "UPDATE cu_alerts
                      SET notifyto = '{$paramEmailAddress}'
                      WHERE user_id = {$HB_ENV["Uid"]}
                      AND id = {$alertList[$a]["id"]}";

              db_query($sql, $dbh);

            }
          }

        }

        // fall through to show the "done" screen
      }
    } else {
      // ** VALIDATE FAILED -- RELOAD SCREEN
    }

    if ( count( $errorList ) == 0 ) {
      // set up to show the "Done" screen
      $act = "done";

      // Need to pass $newDeviceCookie back to the apps
      //   and possibly newPassword
      // Need to pass $newTicket back to the apps
    }
  }

  /*
   * DECLARE DEFAULT VALUES
   */
  $needPasswordUpdate = FALSE;
  $neededSteps = array();
  $currStep = 1;
  $needsChallenge = false;
  $needsEmail = false;
  $overrideTest = false;
  $esNoticeId = "";
  $esTermsText = "";
  $esAccept = "";
  $userNeedsEstatements = false;

  if ( $act == "auth" ) {
    // see what all the user needs to update

    // this gets info that is used in several places
    $mbrInfo = GetUserInfo($dbh, $HB_ENV, $MC, Array("user_id" => $HB_ENV['Uid'], "cu" => $HB_ENV['Cu']));

    // start page
    $neededSteps[] = array( "step" => $currStep++,
                          "name" => "Start",
                          "title" => "{$MC->msg('Start', HCU_DISPLAY_AS_RAW)}",
                          "visibility" => "progressStart" );

    // see if needing update of email (or verification if challengeRequired)
    if ( $emailRequired || $challengeRequired || $overrideTest ) {
      $needsEmail = true;
      $neededSteps[] = array( "step" => $currStep++,
                            "name" => "Email",
                            "title" => "{$MC->msg('EMAIL', HCU_DISPLAY_AS_RAW)}",
                            "visibility" => "progressEmail" );

      // see if we ask the member to start eStatements
      if ($HB_ENV["flagset3"] & GetFlagsetValue("CU3_ESTMNT_SIGNUP")) { // This value doesn't not change.  If it is false, then I don't even need to check anything else.

        // Needs to loop to see if any estatements are "N"s. Gets accountnumbers where the user has Desktop Estatement access to. Profile Require is not used in the apps.
        $sql = "select accountnumber from " . $HB_ENV["Cu"] . "memberacctrights where whichright = 'ES' and platform::jsonb ? 'D' and user_id = " . $HB_ENV["Uid"];
        $sth = db_query($sql, $dbh);

        $hasEsPositive = false;
        $hasEsNegative = false;
        for($i = 0; list($accountnumber) = db_fetch_row($sth, $i); $i++) {
          $retEstmtStatus = Get_EstmtEnrollStatus($dbh, $HB_ENV, $MC, trim($accountnumber));

          if ($retEstmtStatus['status']['code'] == '000') {
            $hasEsPositive = $hasEsPositive || $retEstmtStatus["status"]["estmt"] == "Y";
            $hasEsNegative = $hasEsNegative || $retEstmtStatus["status"]["estmt"] == "N";
          }
        }

        $userNeedsEstatements = $hasEsNegative && !$hasEsPositive;
        // If the user has Estatements that have not been turned AND does not have estatements that have been turned on.
      }

      if ( $userNeedsEstatements ) {
        // get the notice info to start the estatements
        // ** Lookup the Current Terms for the Credit Union
        $esTermsArray = Get_NoticeInfo($dbh, $HB_ENV, $MC, 'D', "esTermsStart");
        // ** Check to make sure the Terms are returned.
        if ($esTermsArray['status']['code'] == '000' && strlen( $esTermsArray['notice'][0]['notice_text'] ) > 0 ) {
          // get the terms
          $esTermsText = $esTermsArray['notice'][0]['notice_text'];
          $esAccept = $MC->msg( "Yes start e-statements", HCU_DISPLAY_AS_JS );
          $esNoticeId = $esTermsArray['notice'][0]['notice_id'];
        }
      }
    }

    // only ask for alias if required and not currently set up (i.e. user name is all digits)
    if ( ($aliasRequired && is_numeric( $mbrInfo["data"]["cuusers_user_name"] )) || $overrideTest ) {
      $neededSteps[] = array( "step" => $currStep++,
                            "name" => "Alias",
                            "title" => "{$MC->msg('Username', HCU_DISPLAY_AS_RAW)}",
                            "visibility" => "progressAlias" );
    }

    if ( $challengeRequired || $overrideTest ) {
      $needsChallenge = true;
      $neededSteps[] = array( "step" => $currStep++,
                            "name" => "Challenge",
                            "title" => "{$MC->msg('Security Settings', HCU_DISPLAY_AS_RAW)}",
                            "visibility" => "progressChallenge" );
    }

    // the password confirmation is always a step (the last step) but need to
    // see if password is being forced
    $neededSteps[] = array( "step" => $currStep++,
                          "name" => "Password",
                          "title" => "{$MC->msg('Password', HCU_DISPLAY_AS_RAW)}",
                          "visibility" => "progressPassword" );

    if( $pwdRequired || $overrideTest ) {
      $needPasswordUpdate = TRUE;

      // only get the help if needing to update password
      $noticesAry = Get_NoticeInfo($dbh, $HB_ENV, $MC, "D", "pwdRules", false);
      $hasRules = false;

      if ( $noticesAry["status"]["code"] == "000" && HCU_array_key_exists('0', $noticesAry["notice"]) && HCU_array_key_exists('notice_id', $noticesAry["notice"][0]) ) {
        $hasRules = true;
        $noticeOption = $noticesAry['notice'][0];

        $noticeOptions = Array (
              'docsid'      => $noticeOption['notice_id'],
              'docstype'    => $noticeOption['notice_type'],
              'device'      => 'D',
              'noticeOnly'  => '1',
              'expireTime'  => time() + 86400,
          );

        $encryptedRulesNoticeOnly= HCU_PayloadEncode($HB_ENV['Cu'], $noticeOptions);

        // build the url encoded string
        $rulesURLNoticeOnly = $HB_ENV['homebankingpath'] . '/hcuViewNotice.prg?cu=' . $HB_ENV['cu'] . '&x=' . urlencode($encryptedRulesNoticeOnly);
      }
    }

    // done page - always last
    $neededSteps[] = array( "step" => $currStep++,
                          "name" => "Done",
                          "title" => "{$MC->msg('Done', HCU_DISPLAY_AS_RAW)}",
                          "visibility" => "progressDone" );
  }

  // set up default values
  if ( $needsChallenge ) {
    // get the confidence word
    $mbrConfidence = $mbrInfo["data"]["cuusers_confidence"];

    // gather the challenge questions
    $aryChallengeQuestions = GetChallengeQuestions("DISPLAY", $dbh, $HB_ENV, $MC);
    /*
     * Challenge questions are stored in the database as &#HEX;
     * The way we are displaying these, we need to first get them back to their
     * original entity
     *
     */
    foreach ($aryChallengeQuestions as $chgKey => $chgValue) {
      $chgValue['display'] = html_entity_decode($chgValue['display'], ENT_QUOTES, 'UTF-8');
      $aryChallengeQuestions[$chgKey] = $chgValue;
    }
    reset($aryChallengeQuestions);

    $currChallengeQuestions = array();
    if (isset($paramChallengeQuestions) && count( $paramChallengeQuestions ) > 0 &&
         count( $paramChallengeQuestions ) == $HB_ENV['cu_chgqst_count'] ) {
      // use the parameters
      $list = $paramChallengeQuestions;

      $arrayKeys = array_keys( $list );
      for ( $i = 0; $i < count( $arrayKeys ); $i++ ) {
        $currChallengeQuestions[] = array( "cqid" => $arrayKeys[$i], "response" => $list[$arrayKeys[$i]] );
      }
    } else {
      // get from the database
      $list = Get_MemberChallengeResponses($dbh, $HB_ENV, $HB_ENV['Cn']);
      // force user to start over
      for ( $i = 0; $i < $HB_ENV['cu_chgqst_count']; $i++ ) {
        $currChallengeQuestions[] = array( "cqid" => $aryChallengeQuestions[0]["cqid"], "response" => "" );
      }
    }
  } else {
    // set defaults
    $mbrConfidence = "";
    $aryChallengeQuestions = array();
    $currChallengeQuestions = array();
    for ( $i = 0; $i < $HB_ENV['cu_chgqst_count']; $i++ ) {
      $currChallengeQuestions[] = array( "cqid" => 0, "response" => "" );
    }
  }

  $currEmailAlerts = "";
  if ( $needsEmail ) {
    // read the emails used in the alerts
    $emailAlertList = array();
    $alertInfo = Get_AlertsDetailed( $dbh, $HB_ENV["Cu"], $HB_ENV["Uid"], $HB_ENV["Fset3"], $MC);
    $alertList = $alertInfo["data"];

    for ( $i = 0; $i < count( $alertList ); $i++ ) {
      if ( $alertList[$i]["emailtype"] == "E" ) {
        // see if already have this email address
        $found = false;
        for ( $e = 0; $e < count( $emailAlertList ); $e++ ) {
          if ( $emailAlertList[$e]["email"] == $alertList[$i]["notifyto"] ) {
            $found = true;

            // see if a different type of alert was found for this email
            if ( $emailAlertList[$e]["type"] != $alertList[$i]["type_name"] ) {
              // change it to "Multiple"
              $emailAlertList[$e]["type"] = $MC->msg('Multiple', HCU_DISPLAY_AS_JS);
            }
          }
        }

        // fix the email type name to what will be displayed
        if ( !$found ) {
          $emailAlertList[] = array( "id" => $i,
                                     "type" => $alertList[$i]["type_name"],
                                     "email" => $alertList[$i]["notifyto"],
                                     "choice" => $alertList[$i]["notifyto"] == $HB_ENV["Ml"] ? "Y" : "N" );
        }
      }
    }

    $hasAlertEmail = count( $emailAlertList ) > 0;

    for ( $i = 0; $i < count( $emailAlertList ); $i++ ) {
      if ( $emailAlertList[$i]["choice"] == "Y" ) {
        if ( strlen( $currEmailAlerts ) > 0 ) $currEmailAlerts .= "|";
        $currEmailAlerts .= $emailAlertList[$i]["email"];
      }
    }
  } else {
    $hasAlertEmail = false;
  }

  if (!isset($paramEmailAddress) || $paramEmailAddress == "" ) {
    $currEmail = $HB_ENV["Ml"];
  } else {
    $currEmail = $paramEmailAddress;
  }

  // Flag stored as "Y"/"N" but need a boolean to set it correctly in javascript
  if (isset($paramEmailAddress) && $paramProfileEgenl != "" ) {
    $currEgenl = $paramProfileEgenl == "Y";
  } else {
    $currEgenl = $mbrInfo["data"]["cuusers_egenl_flag"] == "Y";
  }

  $currUserAlias = "";
  if ( $aliasRequired && isset($paramProfileAlias1)) {
    $currUserAlias = $paramProfileAlias1;
  }

  if (!isset($paramSecurityConfidence) || $paramSecurityConfidence == "" ) {
    $currConfidence = $mbrConfidence;
  } else {
    $currConfidence = $paramSecurityConfidence;
  }

  $currCheckSecure = "";
  if (isset($paramChkSecure)) {
    // user currently selected value (if coming back from error)
    $currCheckSecure = $paramChkSecure;
  }

?>
<script type="text/javascript">

  var hcuChallengeQuestions = <?php echo HCU_JsonEncode($aryChallengeQuestions) ?>;

  var hcuPhonesList = <?php print HCU_JsonEncode($aryPhones); ?>;
  var hcuPhonesData = [];

  <?php if (intval($HB_ENV['flagset3'] & GetFlagsetValue('CU3_MFA_AUTHCODE'))): ?>
      if (hcuPhonesList && hcuPhonesList.mobile) {
        for (var i = 0; i < hcuPhonesList.mobile.length; i++) {
          var phone = hcuPhonesList.mobile[i];
          var phoneParts = hcuPhonesList.mobile[i].split(/[-\s]/);
          var phone = "";

          if (phoneParts.length === 3) {
            phone += "(" + phoneParts[0].replace(/\D/g, '') + ") ";
            phone += phoneParts[1] + "-";
            phone += phoneParts[2];
          } else {
            phone += phoneParts[0] + "-";
            phone += phoneParts[1];
          }

          hcuPhonesData.push({
            id: i+1,
            value: phone,
            new: false
          });
        }
      }

      if (hcuPhonesData.length < 5) {
        hcuPhonesData.push({
          value: null,
          id: -1,
          new: false
        });
      }
  <?php endif; ?>
  var stepsData = <?php echo HCU_JsonEncode($neededSteps) ?>;

  <?php if ( $hasAlertEmail ) { ?>
  var emailAlertList = <?php echo HCU_JsonEncode( $emailAlertList ) ?>;
  <?php } ?>

  var viewModel;
  var infoWindow;
  var pwdRequirements = <?php echo $pwdConfigJSON; ?>;
  var pwdSpecial = <?php echo HCU_JsonEncode(explode(",", $specialCharacters )); ?>;
  $(document).ready(function() {
  <?php
    if ( $act == "done" ) {
      // show "done" screen
  ?>
      var viewModel = kendo.observable({

          progressStart: false,
          progressEmail: false,
          progressChallenge: false,
          progressAlias: false,
          progressPassword: false,
          progressDone: true,
          continueClick: function( e ) {
              e.preventDefault();

              window.location.href = "<?php echo $returnScript; ?>";
          }
      });

      kendo.bind($("#profile"), viewModel);

      // set up the progress bar
      $("#progressBar").kendoProgressBar({
              type: "value",
              min: 0,
              max: 1,
              value: 1
            });
      var progressSteps = $("#progressBar").data("kendoProgressBar");

      progressSteps.progressStatus.text( "<?php echo $MC->msg('Done', HCU_DISPLAY_AS_JS); ?>" );

      $("#progressDoneMessage").css("visibility", "visible");

    <?php
      if ( $HB_ENV["platform"] == "APP" || $HB_ENV["platform"] == "ADA" ) {
        // set up the parameters based on what changed
        if ( $newTicket != "" ) {
          $paramsForApps = array( "newTicket" => urlencode( $newTicket ) );

          $paramsJSON = HCU_JsonEncode($paramsForApps);
    ?>
          var appInfo = '<?php echo $paramsJSON; ?>';

          <?php if ( $HB_ENV["platform"] == "ADA" ) :  ?>
                AndroidController.notifyCommand("NEW_TICKET_COOKIE", appInfo);
          <?php elseif ( $HB_ENV["platform"] == "APP" ) :  ?>
                var postObject = {
                        body: {
                            cmd: "NEW_TICKET_COOKIE",
                            params: appInfo
                        }
                    };
                window.webkit.messageHandlers.interOp.postMessage(postObject);
          <?php endif ?>
    <?php
        }

        if ( $newDeviceCookie != "" ) {
          $paramsForApps = array( "deviceKey" => $newDeviceCookie );
          if( $newPassword != "" ) {
            $paramsForApps["newPassword"] = $newPassword;
          }

          $paramsJSON = HCU_JsonEncode($paramsForApps);

    ?>
          var appInfo = '<?php echo $paramsJSON; ?>';

          <?php if ( $HB_ENV["platform"] == "ADA" ) :  ?>
                AndroidController.notifyCommand("NEW_DEVICE_KEY", appInfo);
          <?php elseif ( $HB_ENV["platform"] == "APP" ) :  ?>
                var postObject = {
                        body: {
                            cmd: "NEW_DEVICE_KEY",
                            params: appInfo
                        }
                    };
                window.webkit.messageHandlers.interOp.postMessage(postObject);
          <?php endif ?>
    <?php
        }
      }
    ?>
    <?php
      // let apps know we did an update to profile info
      if ( $HB_ENV["platform"] == "APP" || $HB_ENV["platform"] == "ADA" ) {
          $paramsForApps = array( "script" => "ProfileRequire" );
          $paramsJSON = HCU_JsonEncode($paramsForApps);
    ?>
          var appInfo = '<?php echo $paramsJSON; ?>';

          <?php if ( $HB_ENV["platform"] == "ADA" ) :  ?>
                AndroidController.notifyCommand("PROFILE_UPDATE", appInfo);
          <?php elseif ( $HB_ENV["platform"] == "APP" ) :  ?>
                var postObject = {
                        body: {
                            cmd: "PROFILE_UPDATE",
                            params: appInfo
                        }
                    };
                window.webkit.messageHandlers.interOp.postMessage(postObject);
          <?php endif ?>
    <?php
      }
    ?>
  <?php
    } else if ( $act == "auth" ) {
  ?>

      homecuTooltip.bind({
          confidenceTip: "<?php echo $MC->msg("Set Config Conf Msg", HCU_DISPLAY_AS_JS); ?>",
          reenterPassTip: "<?php echo $MC->msg("Tip Re-enter Password", HCU_DISPLAY_AS_JS); ?>",
          newPassTip1: "<?php echo $MC->msg( "New password requirements", HCU_DISPLAY_AS_JS ) . "<br />" . $MC->msg('Case Sensitive', HCU_DISPLAY_AS_JS); ?>",
          newPassTip2: "<?php echo $MC->msg("Enter NEW password again to confirm", HCU_DISPLAY_AS_JS); ?>",
          phoneTip: "<?php echo $MC->msg("TXT Enabled Tip", HCU_DISPLAY_AS_JS); ?>",
          showTooltipPrivate: "<?php echo $MC->msg('Remember Me Secure Only', HCU_DISPLAY_AS_JS); ?>"
      });

      viewModel = kendo.observable({
          chksecure: "<?php echo $currCheckSecure; ?>",
          email: "<?php echo $currEmail; ?>",
          emailValid: false,
          egenl: <?php echo $currEgenl ? "true" : "false"; ?>,
          emailAlerts: "<?php echo $currEmailAlerts; ?>",
          estatementStart: <?php echo $userNeedsEstatements ? "true" : "false"; ?>,
          profileAlias1: "<?php echo $currUserAlias; ?>",
          profileAlias2: "",
          confidence: "<?php echo $currConfidence; ?>",
          phones: "",
          phoneSource: new kendo.data.DataSource({
            data: hcuPhonesData,
            schema: {
              model: {
                id: "id",
                fields: {
                  id: { type: "number" },
                  value: { type: "string" },
                  new: { type: "boolean", default: true }
                }
              }
            },
            sort: [
              { field: "new", dir: "asc" },
              { field: "id", dir: "desc" }
            ]
          }),
          phoneBind: function() {
            var grid = $("#phoneGrid").data("kendoGrid");
            var data = grid.dataSource.data();

            if (data.length >= 6) {
              $(".addRow").hide();
            } else {
              $(".addRow").show();
            }
          },

      <?php
          for ( $i = 0; $i < $HB_ENV['cu_chgqst_count']; $i++ ) {
            print "questionList{$i}: hcuChallengeQuestions,\n";
            print "selectedQuestion{$i}: {$currChallengeQuestions[$i]["cqid"]},\n";
            print "response{$i}: \"{$currChallengeQuestions[$i]["response"]}\",\n";
          }
      ?>
          profilePasswordCurr: "",
          profilePasswordNew1: "",
          profilePasswordNew2: "",

          progressStart: true,
          progressEmail: false,
          progressChallenge: false,
          progressAlias: false,
          progressPassword: false,
          progressDone: false,
          continueClick: function(e) {
              e.preventDefault();

              // clear out any current message
              $.homecuValidator.displayMessage( "", $.homecuValidator.settings.statusError );

              // figure out the next step
              var currStep = progressSteps.value();

              $.homecuValidator.setup({
                formValidate: "formProgress" + stepsData[currStep].name,
                formErrorTitle: "<?php echo $MC->msg("Error Occurred", HCU_DISPLAY_AS_JS) ?>"
              });
              // validate the data for the current step
              if ( currStep > 0 ) {
                // validate user name
                if (this.progressAlias) {
                    // this validation cannot return true of false easily becausei t uses ajax,
                    // the step progress will be handlled inside this function.
                    validateFormUsername(true);
                } else if (this.progressChallenge) {
                  // have to validate somewhat differently on step two since a
                  // grid does have required fields.
                  if (validateFormStepTwo()) {
                    // add the phone number values to the array
                    // add phones list to hidden input as json string
                    var security_phones = {
                      mobile: hcuPhonesList.mobile
                    };

                    <?php if (intval($HB_ENV['flagset3'] & GetFlagsetValue("CU3_MFA_AUTHCODE")) > 0) { ?>
                      security_phones.mobile = [];

                      var grid = $("#phoneGrid").data("kendoGrid");
                      var data = grid.dataSource.data();
                      for (var i = 0; i < data.length; i++) {
                        if (data[i].id === -1) {
                          continue;
                        }
                        var value = data[i].value;
                        value = value.replace(/[\)\(]/g, '');
                        value = value.replace(/\s/g, '-');
                        security_phones.mobile.push(value);
                      }
                    <?php } ?>

                    this.set("phones", JSON.stringify(security_phones));

                    progressSteps.value( currStep + 1);
                  } else {
                    // there was an error so scroll to the top
                    $("#content-wrapper").animate({ scrollTop: $("#formStatus").offset().top }, { duration: 500 } );
                  }
                } else if (this.progressPassword) {
                  var needPasswordUpdate = <?php echo HCU_JsonEncode($needPasswordUpdate); ?>;
                  var hasPwdRequirements = <?php echo HCU_JsonEncode($hasPwdRequirements); ?>;

                  if (needPasswordUpdate && hasPwdRequirements) {
                    if (validateFormStepThree()) {
                      progressSteps.value( currStep + 1);
                    } else {
                      // there was an error scroll to the top
                      $("#content-wrapper").animate({ scrollTop: $("#formStatus").offset().top }, { duration: 500 } );
                    }
                  } else {
                    if ($.homecuValidator.validate()) {
                      progressSteps.value( currStep + 1 );
                    } else {
                      // there was an error so scroll to the top
                      $("#content-wrapper").animate({ scrollTop: $("#formStatus").offset().top }, { duration: 500 } );
                    }
                  }

                } else if ( $.homecuValidator.validate() ) {
                  progressSteps.value( currStep + 1 );
                } else {
                  // there was an error so scroll to the top
                  $("#content-wrapper").animate({ scrollTop: $("#formStatus").offset().top }, { duration: 500 } );
                }
              } else {
                // validate step 1
                if ($.homecuValidator.validate()) {
                  progressSteps.value( currStep + 1 );
                }
              }

              if (progressSteps.value() > currStep) {
                // make sure back button is visible
                // only make visible when form is valid (mostly for first step)
                $("#backBtn").css( "visibility", "visible" );
                $("#backBtn").css( "display", "block" );
              }
          },
          backClick: function( e ) {
              e.preventDefault();

              $.homecuValidator.displayMessage( "", $.homecuValidator.settings.statusError );

              // validate the data on each step
              var currStep = progressSteps.value();
              if ( currStep > 0 ) {
                $.homecuValidator.setup({formValidate: "formProgress" + stepsData[currStep].name,
                                         formErrorTitle: "<?php echo $MC->msg("Error Occurred", HCU_DISPLAY_AS_JS) ?>"});
                  progressSteps.value( currStep - 1 );

                  if ( currStep === 1 ) {
                    // hide the back button
                    width = $(window).width();

                    if (width >= 768) {
                      $("#backBtn").css( "visibility", "hidden" );
                    } else {
                      $("#backBtn").css( "display", "none" );
                    }
                  }
              }
          },
          cancel: function( e ) {
              e.preventDefault();

              <?php
                // let the apps know about the new cookie
                if ( $HB_ENV["platform"] == "APP" || $HB_ENV["platform"] == "ADA" ) {
                  // Create the sC ticket value for the apps (2 = update later) (web-based is done later)
                  $option = "sC=2";
                  $newTicket = SetTicket($HB_ENV, $_COOKIE['Ticket'], $option );

                  // set up the parameters based on what changed
                  if ( $newTicket != "" ) {
                    $paramsForApps = array( "newTicket" => $newTicket );
                    $paramsJSON = HCU_JsonEncode($paramsForApps);
              ?>
                    var appInfo = '<?php echo $paramsJSON; ?>';

                    <?php if ( $HB_ENV["platform"] == "ADA" ) :  ?>
                          AndroidController.notifyCommand("NEW_TICKET_COOKIE", appInfo);
                    <?php elseif ( $HB_ENV["platform"] == "APP" ) :  ?>
                          var postObject = {
                                  body: {
                                      cmd: "NEW_TICKET_COOKIE",
                                      params: appInfo
                                  }
                              };
                          window.webkit.messageHandlers.interOp.postMessage(postObject);
                    <?php endif ?>
              <?php
                  }
                }

              // go to self so can set correct cookie
              ?>
              document.formCancel.submit();
          }
      });

      kendo.bind($("#profile"), viewModel);

      <?php
        // show any errors
        if ( ( HCU_array_key_value('action', $HB_ENV["HCUPOST"]) == "submit" ) && count( $errorList ) ) {
      ?>
            $.homecuValidator.setup({formValidate: "formProgressStart",
                                     formErrorTitle: "<?php echo $MC->msg("Error Occurred", HCU_DISPLAY_AS_JS) ?>"});

            var error = <?php echo HCU_JsonEncode($errorList); ?>;
            $.homecuValidator.displayMessage(error, $.homecuValidator.settings.statusError);
      <?php
        }
      ?>

      // set up the submit window
      var submitWindow = $("<div />").kendoWindow({
          title: "",
          resizable: false,
          modal: true,
          draggable: false,
          actions: []
      });


      // set up the progress bar
      $("#progressBar").kendoProgressBar({
              type: "value",
              min: 0,
              max: <?php echo count( $neededSteps ) - 1; ?>,
              value: 0,
              change: function( e ) {
                var currStep = progressSteps.value();
                var stepLabel = stepsData[currStep].title;
                if ( currStep > 0 ) {
                  stepLabel = stepLabel + " (" + currStep + "/" + <?php echo count( $neededSteps ) - 1; ?> + ")";
                }
                progressSteps.progressStatus.text( stepLabel );
                ChangeStep( currStep );
             },
              complete: function( e ) {
                if ( $.homecuValidator.validate({formValidate: progressPassword}) ) {
                  ShowWaitWindow();
                  document.formProfile.submit();
                }
              }
            });
      var progressSteps = $("#progressBar").data("kendoProgressBar");

      function ChangeStep( step ) {
        for ( var i = 0; i < stepsData.length; i++ ) {
          var active = ( i == step );
          viewModel.set( "progress" + stepsData[i]["name"], active );
        }
      }

      progressSteps.progressStatus.text( stepsData[0].title );

      <?php
        if ( $hasAlertEmail ) {
      ?>
          $("#updateAlertEmails").css( "display", "inline" );

          // MOBILE COLUMN TEMPLATE
          var mobile_column_data = "";
          mobile_column_data += "<div class=\"account_cell_desc\"><strong><?php echo $MC->msg("Alert Type", HCU_DISPLAY_AS_JS); ?>:</strong></div> <div class=\"account_cell_value\">#= type #</div>";

          mobile_column_data += "<div class=\"account_cell_desc\"><strong><?php echo $MC->msg("Alert Email Address", HCU_DISPLAY_AS_JS); ?>:</strong></div> <div class=\"account_cell_value\">#= email #</div>";

          $('#gridAlertEmails').kendoGrid({
            dataSource: emailAlertList,
            sortable: {
              mode: "single",
              allowUnsort: false
            },
            pageable: false,
            autoBind: true,
            editable: false,
            selectable: "row",
            columns: [
              { field: "type", title: "<?php echo $MC->msg("Alert Type", HCU_DISPLAY_AS_JS); ?>", editable: false, minScreenWidth: 768 },
              { field: "email", title: "<?php echo $MC->msg("Alert Email Address", HCU_DISPLAY_AS_JS); ?>", editable: false, minScreenWidth: 768 },
              { title: "<?php echo $MC->msg("Alerts", HCU_DISPLAY_AS_JS); ?>", template: mobile_column_data
              },
              { field: "choice", title: "<?php echo $MC->msg("Update to above email", HCU_DISPLAY_AS_JS); ?>", width: 65,
                template: "<input type='checkbox' id='email#=id#' #= choice === 'Y' ? 'checked=checked' : '' #></input>",
                editable: false
              }
            ],
            change: function(e) {
              e.preventDefault();

              var selectedRow = this.dataItem(this.select());

              // cause the check box to be clicked
              // NOTE: the onclick handler will return "false" to prevent a "double click" when clicking on the checkbox itself
              $("#email"+selectedRow["id"]).prop("checked", !$("#email"+selectedRow["id"]).prop("checked"));
              updateEmailAlerts();
              return false;
            },
            dataBound: function () {
                $("table tbody tr").hover(
                  function() {
                    $(this).toggleClass("k-state-hover");
                  }

                );
            }
          });

          // handlers for any possible checked checkbox
      <?php
        }
      ?>

      <?php
      // only need password fields if updating password
      if ( $needPasswordUpdate ) {
        if ( $hasPwdRequirements ) {
      ?>

          homecuTooltip.bind({specialTip: "<?php echo $MC->msg("Special characters allowed", HCU_DISPLAY_AS_JS); ?>: <?php echo implode( " ", explode( ",", $specialCharacters ) ); ?>"});

          $("#profilePasswordNew1").keyup(function () {
            // see which requirements are passing or failing
            var testVal = $("#profilePasswordNew1").val();
            var testLength = false;
            var testUpper = false;
            var testLower = false;
            var testDigit = false;
            var testSpeciel = false;

            testLength = testVal.length >= pwdRequirements['len'];

            testUpper = RegExp("([A-Z].*){" + pwdRequirements['upper'] + "}");
            testUpper = testUpper.test(testVal);

            testLower = RegExp("([a-z].*){" + pwdRequirements['lower'] + "}");
            testLower = testLower.test(testVal);

            testDigit = RegExp("(\\d.*){" + pwdRequirements['digit'] + "}");
            testDigit = testDigit.test(testVal);

            testSpecial = pwdSpecial.join("|");
            testSpecial = testSpecial.replace(/[-\/\\^$*+?.()|[\]{}]/g, '\\$&');
            testSpecial = RegExp("([" + testSpecial + "].*){" + pwdRequirements['spec'] + "}");
            testSpecial = testSpecial.test(testVal);

            // test overal length requirement
            if (pwdRequirements["len"] > 0) {
              if ( testLength ) {
                $("#len .fa").removeClass("fa-times").addClass("fa-check");
                $("#len").css("color", "green");
                viewModel.progressPassword = true;
              } else {
                $("#len .fa").removeClass("fa-check").addClass("fa-times");
                $("#len").css("color", "red");
                viewModel.progressPassword = false;
              }
            }

            if ( pwdRequirements["upper"] > 0 ) {
              if ( testUpper ) {
                $("#upper .fa").removeClass("fa-times").addClass("fa-check");
                $("#upper").css("color", "green");
                viewModel.progressPassword = true;
              } else {
                $("#upper .fa").removeClass("fa-check").addClass("fa-times");
                $("#upper").css("color", "red");
                viewModel.progressPassword = false;
              }
            }

            if ( pwdRequirements["lower"] > 0 ) {
              if ( testLower ) {
                $("#lower .fa").removeClass("fa-times").addClass("fa-check");
                $("#lower").css("color", "green");
                viewModel.progressPassword = true;
              } else {
                $("#lower .fa").removeClass("fa-check").addClass("fa-times");
                $("#lower").css("color", "red");
                viewModel.progressPassword = false;
              }
            }

            if ( pwdRequirements["digit"] > 0 ) {
              if ( testDigit ) {
                $("#digit .fa").removeClass("fa-times").addClass("fa-check");
                $("#digit").css("color", "green");
                viewModel.progressPassword = true;
              } else {
                $("#digit .fa").removeClass("fa-check").addClass("fa-times");
                $("#digit").css("color", "red");
                viewModel.progressPassword = false;
              }
            }

            if ( pwdRequirements["spec"] > 0 ) {
              if ( testSpecial ) {
                $("#spec .fa").removeClass("fa-times").addClass("fa-check");
                $("#spec").css("color", "green");
                viewModel.progressPassword = true;
              } else {
                $("#spec .fa").removeClass("fa-check").addClass("fa-times");
                $("#spec").css("color", "red");
                viewModel.progressPassword = false;
              }
            }
          });
      <?php
        }
      ?>

        function revertPassword() {
          $("#showPasswordText").val( "" );
          $("#showPasswordText").css( "display", "none" );
          $("#profilePasswordNew1").css( "display", "inline" );
        }

        $("#showPassword").click(function() {
          $("#showPasswordText").val( $("#profilePasswordNew1").val() )
          $("#profilePasswordNew1").css( "display", "none" );
          $("#showPasswordText").css( "display", "inline" );
          setTimeout(revertPassword, 1000);
        });
      <?php
      }
      ?>

    $('#testAlias').click(function() {
      validateFormUsername(false);
    });

      // set up a window for showing public computer info
      infoWindow = $('#publicInfo');
      infoWindow.kendoWindow({
          modal: true,
          maxWidth: "500px",
          visible: false,
          resizable: false
      });

  <?php
    } else {
  ?>
      window.location.href = "<?php echo $_COOKIE[$HB_ENV['loginscript']]; ?>";
  <?php
    }
  ?>
    // not let <enter> submit anything
    $(window).keydown(function(e){
      if(e.keyCode == 13) {
        e.preventDefault();
        return false;
      }
    });

<?php
        if ( $hasAlertEmail ) {
?>
    // CHECK SIZE TO HIDE LAST COLUMN, LAST COLUMN ONLY VISIBLE IN MOBILE
    var width = $(window).width();
    var grid = $("#gridAlertEmails").data("kendoGrid");

    // INITIAL CHECK IN PAGE OPEN
    if ($(window).width() >= 768) {
      grid.hideColumn(2);

      // hide but save space as placeholder
      $("#backBtn").css( "visibility", "hidden" );
    } else {
      grid.showColumn(2);

      // remove from dom
      $("#backBtn").css( "display", "none" );
    }

    // CHECK ON PAGE RESIZE
    $(window).resize(function() {
      width = $(window).width();

      if (width >= 768) {
        grid.hideColumn(2);
      } else {
        grid.showColumn(2);
      }
    });
<?php
        }
?>
    <?php if (intval($HB_ENV['flagset3'] & GetFlagsetValue("CU3_MFA_AUTHCODE")) > 0) { ?>
      var phoneGrid = $("#phoneGrid").data("kendoGrid");
      $.each(phoneGrid.columns, function(idx, column) {
        if (column.field === "value")
          column.editor = phoneEdit;
      });

      $("#phoneGrid").on("click", ".removeBtn", function() {
        var row = $(this).closest("tr");
        var grid = $("#phoneGrid").data("kendoGrid");
        var data = grid.dataSource.data();

        grid.removeRow(row);
        return false;
      });

      $("#phoneGrid").on("click", ".addRow", function() {
        var row = $(this).closest("tr");
        var grid = $("#phoneGrid").data("kendoGrid");
        var data = grid.dataSource.data();

        grid.addRow();
        return false;
      });
    <?php } ?>

    // Must hide confirmation email until
    // the user makes a change to the original
    // email

    // On change, display the email field
    // add required and homecu validator fields

    // Also if email is required, disable the checkbox
    // after checking.
    $("#emailConfirmSection").hide();
    $("#emailAddress").change(function(){
      $("#profileEmailValid").prop("checked", true);
      $("#profileEmailValid").prop("disabled", true);
      $("#emailConfirmSection").show();
      $("#emailAddressConfirm").attr("required", "required");
      $("#emailAddressConfirm").attr("homecu-match", "email");
      $("#emailAddressConfirm").attr("homecu-equals", "email_match");
    });
  });

  function validateFormStepThree() {
    var formValid = $.homecuValidator.validate();

    var testStepThree = false;
    var testVal = $("#profilePasswordNew1").val();
    var testLength = testVal.length >= pwdRequirements['len'];

    var testUpper = RegExp("([A-Z].*){" + pwdRequirements['upper'] + "}");
    testUpper = testUpper.test(testVal);

    var testLower = RegExp("([a-z].*){" + pwdRequirements['lower'] + "}");
    testLower = testLower.test(testVal);

    var testDigit = RegExp("(\\d.*){" + pwdRequirements['digit'] + "}");
    testDigit = testDigit.test(testVal);

    var testSpecial = pwdSpecial.join("|");
    testSpecial = testSpecial.replace(/[-\/\\^$*+?.()|[\]{}]/g, '\\$&');
    testSpecial = RegExp("([" + testSpecial + "].*){" + pwdRequirements['spec'] + "}");
    testSpecial = testSpecial.test(testVal);

    if (pwdRequirements['len'] > 0 && testLength == false) { testStepThree = false; }
    else if (pwdRequirements['upper'] > 0 && testUpper == false) { testStepThree = false; }
    else if (pwdRequirements['lower'] > 0 && testLower == false) { testStepThree = false; }
    else if (pwdRequirements['digit'] > 0 && testDigit == false) { testStepThree = false; }
    else if (pwdRequirements['spec'] > 0 && testSpecial == false) { testStepThree = false; }
    else { testStepThree = true; }

    var stepThreeError = "<?php echo $MC->msg('New password requirements', HCU_DISPLAY_AS_HTML) ?>";
    var errors = $.homecuValidator.homecuKendoValidator.errors();

    // strip the first message if length is 0
    if (!testLength) {
      var index = $.inArray(stepThreeError, errors);
      if (index > -1) {
        errors.splice(index, 1);
      }
    }

    if (!testStepThree) {
      errors.push(stepThreeError);
      $.homecuValidator.displayMessage(errors, $.homecuValidator.settings.statusError);
    }

    return formValid && testStepThree;
  }

  function validateFormStepTwo() {
    // validate other fields first
    var valid = $.homecuValidator.validate();

    <?php if (intval($HB_ENV['flagset3'] & GetFlagsetValue("CU3_MFA_AUTHCODE")) > 0) { ?>
      var grid = $("#phoneGrid").data("kendoGrid");
      var data = grid.dataSource.data();
      var regex = new RegExp(/^[2-9]\d{2}-\d{3}-\d{4}$/);

      for (var i = 0; i < data.length; i++) {
        var id = data[i].id;

        if (id === -1) {
          continue;
        }

        var phone = data[i].value;
        phone = phone.replace(/[_\(\)]/g, '');
        phone = phone.replace(/\s/g, '-');
        var phoneValid = regex.test(phone);

        // if invalid, append this message onto current errors
        if (phoneValid === false) {
          valid = false;
          var message = "<?php echo $MC->msg("Phone Invalid", HCU_DISPLAY_AS_JS); ?>";
          var errors = $.homecuValidator.homecuKendoValidator.errors();
          var show = errors.concat(message);

          $.homecuValidator.displayMessage(show, $.homecuValidator.settings.statusError);
        }
      }
    <?php } ?>

    return valid;
  }

 // this function is used by the test username button and the continue button
 // the updateStep variable tells where the call came frome.
 // updateStep = true means it came from the continue button and needs to validatet
 // the form as well
  function validateFormUsername(updateStep) {
      var userAlias = viewModel.profileAlias1;

      // disable the button
      $("#testAlias").prop("disabled","disabled");
      $("#testAliasResult").html( "" );
      $("#testAliasResult").css( "display", "inline" );

      // start AJAX
      var parameters = { "action": "test_alias",
                         "alias": userAlias };
      $.ajax({
            url: "<?php echo $HB_ENV['loginpath'] . "/" . $HB_ENV['currentscript'] . "?" . $HB_ENV['cuquery']; ?>",
            type: "post",
            data: parameters
        })
        .done(function( data, textStatus, jqXHR ) {
          // Show the result
          var message = null;
          if (data.result) {

            // only progress the steps if username is valid
            if (updateStep) {

              // only validate form if username is valid
              if ($.homecuValidator.validate()) {
                var step = $("#progressBar").data("kendoProgressBar").value();
                $("#progressBar").data("kendoProgressBar").value( step+1 );
              }
            } else {
              message = "<i class='fa fa-check-circle fa-2x' style='color:green;'></i>";
              $.homecuValidator.hideMessage();
            }
          } else {
            // only display no sign if not updating steps
            // this means it came from test button
            if (updateStep) {

            } else {
              message = "<i class='fa fa-ban fa-2x' style='color:red;'></i>";
            }
            $.homecuValidator.displayMessage(data.message, $.homecuValidator.settings.statusError);
          }

          $("#testAliasResult").html( message );
        })
        .fail(function(jqXHR, textStatus, errorThrown) {
          $("#testAliasResult").html( "<?php echo $MC->msg( "Error" , HCU_DISPLAY_AS_HTML); ?>" );
          $("#testAliasResult").css("color", "red");
        })
        .always(function(jqXHR, textStatus, errorThrown) {
          $("#testAlias").removeProp("disabled");
          $("#testAliasResult").delay(5000).fadeOut(100);
        });

      }

  function phoneEdit(container, options) {
    var maskedTextBox = $("<input name=\"" + options.field + "\">")
      .appendTo(container)
      .kendoMaskedTextBox({
        mask: "(000) 000-0000",
        change: function() {
          var value = this.value();
          var valueStrip = value.replace(/_/g, '');
          valueStrip = valueStrip.replace(/\s/g, '-');
          valueStrip = valueStrip.replace(/[\(\)]/g, '');

          options.model.phone = valueStrip;
        }
      })
      .data("kendoMaskedTextBox");
  }

  function show_help()
  {
    ShowNotice('<?php echo $rulesURLNoticeOnly; ?>');
  }

<?php
  if ( $hasAlertEmail ) {
?>
    function updateEmailAlerts() {
      var alertEmails = "";
      var total = emailAlertList.length;
      for ( var i = 0; i < total; i++ ) {
        // get the row
        var row = emailAlertList[i];

        // test if selected to update
        var test = $("#email"+i);
        if ( $("#email"+i).prop('checked') ) {
          if ( alertEmails.length > 0 )
            alertEmails = alertEmails + "|";
          alertEmails = alertEmails + row["email"];
        }
      }

      // set the observable value
      viewModel.set( "emailAlerts", alertEmails );
    }
<?php
  }
?>
</script>
<style>
#profileEdit {
  min-width: 300px;
  max-width: 700px;
}
.k-tooltip-content { text-align: left; max-width: 300px; }
#progressStart a {text-decoration: underline !important; cursor: pointer; color: blue; }
#passRequirements {
        display: inline-block;
        vertical-align: top;
        width: 210px;
        margin: 10px;
        background-color: #F0F0F0;
        padding: 5px 5px 5px 5px;
        min-height: 50px;
        box-shadow: 0 1px 2px rgba(0,0,0,0.5);
        border: 1px solid rgba(255,255,255,0.2);
        -moz-border-radius: 3px;
        -webkit-border-radius: 3px;
  }
// get the dropdowns to resize to a small width
.k-dropdown .k-input,.k-selectbox .k-input {
    white-space: normal;
}

.pwd-fail {color:red}
.pwd-pass {color: green}
#profileHolder .row {
  margin-top: 1em;
}
.profile-margin-when-narrow {
  margin-top: 1em;
}

#phoneGrid .k-grid-header {
  display: none;
}

#phoneGrid .removeBtn {
  color: #A00;
}

#phoneGrid .addBtn {
  color: #507f50;
}
/* Small devices @screen-sm-min (tablets, 768px and up) */
@media (min-width: 768px) {
  .profile-margin-when-narrow {
    margin-top: 0;
  }
}
.account_cell_desc {
  width: 50%;
  float: left;

  text-align: left;
}

.account_cell_value {
  width: 50%;
  float: left;

  text-align: right;
}

@media only screen and (max-width: 500px) {
  .account_cell_desc {
    width: 100%;
    text-align: left;
  }

  .account_cell_value {
    width: 100%;
    text-align: left;
  }
}

.local-container-margin {
  margin: 15px 0;
}
</style>
<?php // Common outer part for consistency: div, form, div, div, span, span
?>
<div class="k-content container-fluid" id="profile">
  <form method="post" id="formCancel" name="formCancel" action='<?php echo $HB_ENV["loginpath"] . "/{$HB_ENV['currentscript']}?" . $HB_ENV["cuquery"] ?>'>
    <input type='hidden' name='action' value='cancel_profile' />
  </form>
  <form method='post' id='formProfile' name='formProfile' action='<?php echo $HB_ENV["loginpath"] . "/{$HB_ENV['currentscript']}?" . $HB_ENV["cuquery"] ?>'>
    <input type='hidden' name='action' value='submit' />
    <input type='hidden' name='chkSecure' data-bind="value: chksecure" />
    <input type="hidden" name='emailAddress' data-bind="value: email" />
    <input type="hidden" name='emailValid' data-bind="value: emailValid" />
    <input type='hidden' name='profileEgenl' data-bind="value: egenl" />
    <input type='hidden' name='profileEmailAlerts' data-bind="value: emailAlerts" />
    <input type='hidden' name='estatementStart' data-bind="value: estatementStart" />
    <input type='hidden' name='estatementNoticeId' value='<?php echo $esNoticeId ?>' />
    <input type="hidden" name="security_confidence" data-bind="value: confidence" />
    <input type="hidden" name="security_phones" data-bind="value: phones" />
  <?php
    // set up a question "set" for each one configured
    for ( $i = 0; $i < $HB_ENV['cu_chgqst_count']; $i++ )
    {
  ?>
      <input type='hidden' name="challengeQuestion<?php echo $i ?>" data-bind="value: selectedQuestion<?php echo $i; ?>" />
      <input type="hidden" name="response<?php echo $i; ?>" data-bind="value: response<?php echo $i; ?>" />
  <?php
    }
  ?>
    <input type="hidden" name="profileAlias1" data-bind="value: profileAlias1" />
    <input type="hidden" name="profileAlias2" data-bind="value: profileAlias2" />
    <input type="hidden" name="profilePasswordCurr" data-bind="value: profilePasswordCurr" />
    <input type="hidden" name="profilePasswordNew1" data-bind="value: profilePasswordNew1" />
    <input type="hidden" name="profilePasswordNew2" data-bind="value: profilePasswordNew2" />
  </form>
  <div id='publicInfo' style='display:none;'>
    <?php echo $MC->combo_msg('Public Computer Is', HCU_DISPLAY_AS_HTML); ?>
  </div>

  <div id="profileEdit" class="k-content">
    <div class='col-xs-12'>
      <div id="profileHolder" style='width:100%;' class="hcuSpacer">
      <div id="progressBar" style='width:100%;'></div>
        <?php
          // Step First - Explain
        ?>
        <div id='progressStart' data-bind="visible: progressStart">
          <form id='formProgressStart'>
          <div class="row">
            <div class="col-xs-12">
              <span style='font-style: italic; font-size: large;'><?php echo $MC->msg('Update account settings.', HCU_DISPLAY_AS_HTML); ?></span>
            </div>
          </div>
          <?php
            // see if a change is being forced
            if ($HB_ENV['Ffchg'] == 'Y'): ?>
              <div class="row">
                <div class="col-xs-12">
                  <span style='font-weight:bold; color:red;'>
                    <?php if ($HB_ENV['Ffremain'] > 1): ?>
                      <?php echo $MC->combo_msg("Login Expiring", HCU_DISPLAY_AS_HTML, "#REMAIN#", $HB_ENV['Ffremain']); ?>
                    <?php else: ?>
                      <?php echo $MC->msg('Login Expired Profile', HCU_DISPLAY_AS_HTML); ?>
                    <?php endif; ?>
                  </span>
                </div>
              </div>
          <?php endif;
            // see if a change is being forced
            if ( ($HB_ENV['Ffreset'] & $MEM_FORCE_RESET) > 0 ): ?>
              <div class="row">
                <div class="col-xs-12">
                  <span style='font-weight:bold; color:red;'>
                    <?php if ($HB_ENV['Ffremain'] > 1): ?>
                      <?php echo $MC->combo_msg("Challenge Update", HCU_DISPLAY_AS_HTML, "#REMAIN#", $HB_ENV['Ffremain']); ?>
                    <?php else: ?>
                      <?php echo $MC->msg('Challenge Expired Profile', HCU_DISPLAY_AS_HTML); ?>
                    <?php endif; ?>
                  </span>
                </div>
              </div>
          <?php endif;
            // don't show the remembering of the device if coming from the apps
            if ( $HB_ENV["platform"] != "APP" && $HB_ENV["platform"] != "ADA" ): ?>
              <div class="row">
                <div class="col-xs-12">
                  <h4 class="h4"><?php echo $MC->msg('Should We Remember This', HCU_DISPLAY_AS_HTML); ?></h4>
                  <div class="radio">
                    <label for="chksecureY">
                      <input type="radio" name="chksecure" id="chksecureY" value="Y" data-bind="checked: chksecure" required data-homecuCustomRadio-msg="<?php echo $MC->msg('Remember Error', HCU_DISPLAY_AS_HTML); ?>">
                      <span><?php echo $MC->msg('Remember Yes', HCU_DISPLAY_AS_HTML); ?></span><br>
                      <span class="hcu-secondary"><span class="hcu-secondary-text"><?php echo $MC->msg('Remember Yes Message', HCU_DISPLAY_AS_HTML); ?></span></span>
                    </label>
                  </div>
                  <div class="radio">
                    <label for="chksecureN">
                      <input type="radio" name="chksecure" id="chksecureN" value="N" data-bind="checked: chksecure" required data-homecuCustomRadio-msg="<?php echo $MC->msg('Remember Error', HCU_DISPLAY_AS_HTML); ?>">
                      <span><?php echo $MC->msg('Remember No', HCU_DISPLAY_AS_HTML); ?></span><br>
                      <span class="hcu-secondary"><span class="hcu-secondary-text"><?php echo $MC->msg('Remember No Message', HCU_DISPLAY_AS_HTML); ?></span></span>
                    </label>
                  </div>
                </div>
              </div>
          <?php endif; ?>
          <script language='javascript'>
          <!--
            function whatpub() {
              infoWindow.data("kendoWindow").center().open();
            }
          // -->
          </script>
          </form>
        </div>
        <?php
          // Step - Enter Email address
        ?>
        <div id='progressEmail' data-bind="visible: progressEmail">
          <form id="formProgressEmail" class='formInputx'>
          <div class="row">
            <div class="col-xs-12 col-sm-6 local-container-margin">

              <label for="emailAddress">
                <?php echo $MC->msg('Email Address', HCU_DISPLAY_AS_HTML); ?>:
              </label>

              <input type="email" name='emailAddress'
                id='emailAddress'
                class="k-textbox hcu-all-100 email_match"
                placeholder="<?php echo $MC->msg('Email Address', HCU_DISPLAY_AS_HTML); ?>"
                data-bind="value: email"
                homecu-match="email"
                data-email-msg="<?php echo $MC->msg('Email appears invalid', HCU_DISPLAY_AS_HTML) ?>"
                data-homecuCustomMatch-msg="<?php echo $MC->msg('Email appears invalid', HCU_DISPLAY_AS_HTML) ?>"
                data-required-msg="<?php echo $MC->msg('EMail Missing', HCU_DISPLAY_AS_HTML) ?>"
                required />
            </div>

            <div class="col-xs-12 col-sm-6 local-container-margin" id="emailConfirmSection">

              <label for="emailAddressConfirm">
                <?php echo $MC->msg('Confirm Email Address', HCU_DISPLAY_AS_HTML); ?>:
              </label>

              <input type="email" name='emailAddressConfirm'
                id='emailAddressConfirm'
                class="k-textbox hcu-all-100 email_match"
                placeholder="<?php echo $MC->msg('Email Address', HCU_DISPLAY_AS_HTML); ?>"
                data-email-msg="<?php echo $MC->msg('Email appears invalid', HCU_DISPLAY_AS_HTML) ?>"
                data-homecuCustomMatch-msg="<?php echo $MC->msg('Email appears invalid', HCU_DISPLAY_AS_HTML) ?>"
                data-homecuCustomEquals-msg="<?php echo $MC->msg('Email Confirm Mismatch', HCU_DISPLAY_AS_HTML); ?>"
                data-required-msg="<?php echo $MC->msg('Please confirm email', HCU_DISPLAY_AS_HTML) ?>"/>
            </div>
          </div>
        <?php
          // Only require the email validation if the member needs to validate email. Email could be asked
          // for as part of the forced security challenge, too.
          if ( $emailRequired ) {
        ?>
            <div class="row">
              <div class="col-xs-12 checkbox">
                <label>
                  <input type='checkbox'
                       name='profileEmailValid'
                       id='profileEmailValid'
                       value='Y'
                       required
                       data-required-msg="<?php echo $MC->msg("Please confirm email", HCU_DISPLAY_AS_HTML); ?>."
                       data-bind="checked: emailValid" />
                  <?php echo $MC->msg('Bad Email Flag 2', HCU_DISPLAY_AS_HTML); ?>
                </label>
              </div>
            </div>
        <?php
          }
        ?>
          <div class="row">
            <div class="col-xs-12 checkbox">
              <label>
                <input type='checkbox' name='profileEgenl' id='profileEgenl' value='Y' data-bind="checked: egenl" />
                <?php echo $MC->msg('Yes Email List', HCU_DISPLAY_AS_HTML); ?>
              </label>
            </div>
          </div>
        </form>

          <div id="updateAlertEmails" style="display: none;">
            <span style='text-align: center; width:100%;'><hr style='width:65%;' /></span>
            <div class="row">
              <div class="col-xs-12">
                <i><?php echo $MC->msg( "Alert email message.", HCU_DISPLAY_AS_HTML ); ?></i>
                <div id="gridAlertEmails"></div>
              </div>
            </div>
          </div>

        <?php
          // only allow the user to start eStatements if the CU supports them and the member isn't signed up yet
          if ( $userNeedsEstatements ) {
        ?>
          <span style='text-align: center; width:100%;'><hr /></span>
          <div class="well">
          <form class='formInputx'>
            <label><?php echo $MC->msg('Start e-Statements', HCU_DISPLAY_AS_HTML); ?>:</label>
            <div class="k-block" style="max-height: 150px;overflow: auto; background-color: white;">
              <?php echo $esTermsText; ?>
            </div>
              <div class="checkbox">
                <label>
                  <input type='checkbox'
                         name='estatementStart'
                         id='estatementStart'
                         value='Y'
                         data-bind="checked: estatementStart" /> <?php echo $esAccept ?>
                </label>
              </div>
          </form>
          </div>
        <?php
          }
        ?>
        </div>
        <?php
          // Step - Enter Confidence Word and Security Challenge Answers
        ?>
        <div id='progressChallenge' data-bind="visible: progressChallenge">
          <form id="formProgressChallenge" class='formInputx'>
            <div class="row">
              <div class="col-xs-12">
                <label for="security_confidence"><?php echo $MC->msg('Set Config Conf Label', HCU_DISPLAY_AS_HTML); ?>: <span class="fa fa-question-circle-o" id="confidenceTip"></span></label>
              </div>
              <div class="col-xs-12">
                <input type="text"
                       id="security_confidence"
                       name="security_confidence"
                       placeholder="<?php echo $MC->msg('Set Config Conf Label', HCU_DISPLAY_AS_HTML); ?>"
                       maxlength=20
                       data-bind="value: confidence"
                       required
                       data-required-msg="<?php echo $MC->msg('Set Config Enter Word', HCU_DISPLAY_AS_HTML); ?>"
                       class="k-textbox hcu-all-100"
                       style="max-width: 400px;"/>
              </div>
            </div>


          <!-- if use mfa confidence word flag is set, do not show mfa questions -->
          <?php if (intval($HB_ENV['flagset3'] & GetFlagsetValue("CU3_MFA_AUTHCODE")) === 0) {?>
            <?php
            if ( $HB_ENV['cu_chgqst_count'] > 0 ) {
              echo "<hr style='text-align:left; margin-left:0; width:100%; color:gray; height:1px;'>";

              echo $MC->msg('Set Config Challenge Label', HCU_DISPLAY_AS_HTML);
            }

            // set up a question "set" for each one configured
            for ( $i = 0; $i < $HB_ENV['cu_chgqst_count']; $i++ )
            {
              // TODO: Need to put two new messages in dictionary.
            ?>
              <div class="row">
                <div class="col-xs-12 col-sm-3">
                  <label for="challenge<?php echo $i; ?>"><?php echo $MC->msg('Set Config Question', HCU_DISPLAY_AS_HTML) . " " . ($i+1); ?>:</label>
                </div>
                <div class="col-xs-12 col-sm-8">
                  <select id="challengeQuestion<?php echo $i ?>"
                          name="challengeQuestion<?php echo $i ?>"
                          class="unique_select"
                          data-role="dropdownlist"
                          data-text-field="display"
                          data-value-field="cqid"
                          data-bind="source: questionList<?php echo $i; ?>, value: selectedQuestion<?php echo $i; ?>"
                          homecu-distinct="unique_select"
                          data-homecuCustomDistinct-msg="<?php echo $MC->msg("Challenge questions once", HCU_DISPLAY_AS_HTML); ?>."
                          style='width:100%;'></select><span class="k-invalid-msg" data-for="challengeQuestion<?php echo $i ?>"></span>
                  <div style="height: 5px;"></div>
                  <input type="text"
                         id="challenge<?php echo $i; ?>"
                         name="challenge<?php echo $i; ?>"
                         placeholder="<?php echo $MC->msg('Set Config Response', HCU_DISPLAY_AS_HTML); ?>"
                         data-bind="value: response<?php echo $i; ?>"
                         required
                         data-required-msg="<?php echo $MC->msg("Challenge answer blank", HCU_DISPLAY_AS_HTML); ?>."
                         class="k-textbox"
                         style='width:100%;'/>
                </div>
              </div>
            <?php
            }
            ?>
          <?php } else { ?>
            <div class="row">
              <div class="col-xs-12">
                <label for="security_phone">
                  <span><?php echo $MC->msg('TXT Enabled', HCU_DISPLAY_AS_HTML); ?>:</span>
                  <span class="fa fa-question-circle-o" id="phoneTip"></span>
                </label>

                <div id="phoneGrid" class="hcu-all-100" style="max-width: 400px;"
                  data-role="grid"
                  data-row-template="phoneRow"
                  data-editable="{
                    confirmation: false
                  }"
                  data-columns="[
                    { width: 30 },
                    { title: 'Mobile', field: 'value' }
                  ]"
                  data-bind="
                    source: phoneSource,
                    events: { dataBound: phoneBind }"
                  ></div>
              </div>
            </div>
          <?php } ?>
          </form>
            <br/>
        </div>
        <?php
          // Step - Alias/Nickname
        ?>
        <div id='progressAlias' data-bind="visible: progressAlias">
          <form id="formProgressAlias" class='formInputx'>

            <div class="row">
              <div class="col-xs-12">
                <label for="profileAlias1"><?php echo $MC->msg('Username', HCU_DISPLAY_AS_HTML); ?>:</label>
              </div>
              <span class="hcu-secondary col-xs-12"><span class="hcu-secondary-text"><?php echo $MC->combo_msg('Username Set',HCU_DISPLAY_AS_HTML,'#MAYMUST#',"must"); ?></span></span>
              <div class="col-xs-12">
                <input type="text"
                       id="profileAlias1"
                       name="profileAlias1"
                       placeholder="<?php echo $MC->msg('Username', HCU_DISPLAY_AS_HTML); ?>"
                       data-bind="value: profileAlias1"
                       <?php echo ( $aliasRequired ? "required" : "") ?>
                       data-required-msg="<?php echo $MC->msg('Username Required', HCU_DISPLAY_AS_HTML) ?>"
                       homecu-minlen="6"
                       data-homecuCustomMinLen-msg="<?php echo $MC->msg('Username too short', HCU_DISPLAY_AS_HTML) ?>"
                       class="k-textbox must_equal_alias"
                       style='width:100%; max-width:400px;'/>
              </div>
            </div>
            <div class="row">
              <div class="col-xs-12 col-sm-6">
                <a id='testAlias' class='k-button'><?php echo $MC->msg("Test Username", HCU_DISPLAY_AS_HTML); ?></a>
              </div>
              <div class="col-xs-12 col-sm-5">
                <span id='testAliasResult'>&nbsp;</span>
              </div>
            </div>

            <div class="row">
              <div class="col-xs-12">
                <label for="profileAlias2"><?php echo $MC->msg('Confirm Username', HCU_DISPLAY_AS_HTML); ?>:</label>
              </div>
              <span class="hcu-secondary col-xs-12"><span class="hcu-secondary-text"><?php echo $MC->msg("Username again to confirm", HCU_DISPLAY_AS_HTML); ?></span></span>
              <div class="col-xs-12">
                <input type="text"
                       id="profileAlias2"
                       name="profileAlias2"
                       placeholder="<?php echo $MC->msg('Confirm Username', HCU_DISPLAY_AS_HTML); ?>"
                       data-bind="value: profileAlias2"
                       <?php echo ( $aliasRequired ? "required" : "") ?>
                       data-required-msg="<?php echo $MC->msg('Username Required', HCU_DISPLAY_AS_HTML) ?>"
                       homecu-minlen="6"
                       data-homecuCustomMinLen-msg="<?php echo $MC->msg('Username too short', HCU_DISPLAY_AS_HTML) ?>"
                       homecu-equals="must_equal_alias"
                       data-homecuCustomEquals-msg="<?php echo $MC->msg('Username nomatch', HCU_DISPLAY_AS_HTML) ?>"
                       class="k-textbox must_equal_alias"
                       style='width:100%; max-width:400px;'/>
              </div>
            </div>
          </form>
        </div>
        <?php
          // Step - Password - always get confirmation, but a new password isn't always required
        ?>
        <div id='progressPassword' data-bind="visible: progressPassword">
          <form id="formProgressPassword" class='formInputx'>

            <div class="row">
              <div class="col-xs-12">
                <label for="profilePasswordCurr"><?php echo $MC->msg('Re-enter Password', HCU_DISPLAY_AS_HTML); ?>: <span class="fa fa-question-circle-o" id="reenterPassTip"></span></label>
              </div>
              <div class="col-xs-12 col-sm-6">
                <input type="password"
                       id="profilePasswordCurr"
                       name="profilePasswordCurr"
                       placeholder="<?php echo $MC->msg('Re-enter Password', HCU_DISPLAY_AS_HTML); ?>"
                       value=""
                       required
                       data-bind="value: profilePasswordCurr"
                       data-required-msg="<?php echo $MC->msg('Invalid Authentication', HCU_DISPLAY_AS_HTML) ?>"
                       class="k-textbox"
                       style='width:100%; max-width:320px;'/>
              </div>
            </div>
        <?php
          if ( $needPasswordUpdate ) {
            if ( $hasRules ) {
        ?>
            <div class="row">
              <div class="col-xs-12" style='font-size:smaller;'>
                <?php echo $MC->combo_msg('Password Hints Doc', HCU_DISPLAY_AS_HTML, "#link#", "javascript:show_help();"); ?>
              </div>
            </div>
        <?php
            }
        ?>

            <div class="row">
              <div class="col-xs-12">
                <label for="profilePasswordNew1"><?php echo $MC->msg('New Password', HCU_DISPLAY_AS_HTML); ?>: <span class="fa fa-question-circle-o" id="newPassTip1"></span></label>
              </div>
              <div class="col-xs-12 col-sm-6">
                <input type='text' id='showPasswordText' class='k-textbox' value='' style='width: 100%; max-width:320px; display: none;' />
                <input type="password"
                       id="profilePasswordNew1"
                       name="profilePasswordNew1"
                       placeholder="<?php echo $MC->msg('New Password', HCU_DISPLAY_AS_HTML); ?>"
                       value=""
                       required
                       maxlength=20
                       data-bind="value: profilePasswordNew1"
                       homecu-minlen="6"
                       data-required-msg="<?php echo $MC->msg('New password requirements', HCU_DISPLAY_AS_HTML) ?>"
                       data-homecuCustomMinLen-msg="<?php echo $MC->msg('New password must be from 4 to 8 characters long', HCU_DISPLAY_AS_HTML) ?>"
                       homecu-maxlen="20"
                       data-homecuCustomMaxLen-msg="<?php echo $MC->msg('New password must be from 4 to 8 characters long', HCU_DISPLAY_AS_HTML) ?>"
                       class="k-textbox must_equal"
                       style='width: 100%; max-width:320px;'/>
              </div>
              <div class="col-xs-12 col-sm-5">
                <button type='button' id='showPassword' class='k-button'><?php echo $MC->msg( "Show", HCU_DISPLAY_AS_HTML ); ?></button>
              </div>
            </div>
            <div class="row">
              <div class="col-xs-12 col-sm-6" style="padding:0;">
                <div class="col-xs-12">
                  <label for="profilePasswordNew2"><?php echo $MC->msg('Confirm New Password', HCU_DISPLAY_AS_HTML); ?>: <span class="fa fa-question-circle-o" id="newPassTip2"></span></label>
                </div>
                <div class="col-xs-12">
                  <input type="password"
                         id="profilePasswordNew2"
                         name="profilePasswordNew2"
                         placeholder="<?php echo $MC->msg('Confirm New Password', HCU_DISPLAY_AS_HTML); ?>"
                         value=""
                         required
                         maxlength=20
                         data-bind="value: profilePasswordNew2"
                         data-required-msg="<?php echo $MC->msg('New passwords do not match', HCU_DISPLAY_AS_HTML) ?>"
                         homecu-equals="must_equal"
                         data-homecuCustomEquals-msg="<?php echo $MC->msg('New passwords do not match', HCU_DISPLAY_AS_HTML) ?>"
                         class="k-textbox must_equal"
                         style='width: 100%; max-width:320px;'/>
                </div>
              </div>
              <div class="col-xs-12 col-sm-5" style="padding:0;">
              <?php
                if ( $hasPwdRequirements ) {
              ?>
                  <div class="profile-margin-when-narrow">
                    <div class="col-xs-12">
                      <label for="passRequirements"><?php echo $MC->msg("Password Requirements", HCU_DISPLAY_AS_HTML); ?>:</label>
                    </div>
                    <div class="col-xs-12">
                      <div id="passRequirements" style="width: 200px;">
                        <?php
                          for ( $i = 0; $i < count( $pwdRequirements ); $i++ ) {
                            print "
                            <span id='{$pwdRequirements[$i]["which"]}' style='color: red;'>
                              <span class='fa fa-times'></span>
                              <span>{$pwdRequirements[$i]["text"]}</span>
                            </span><br />";
                          }
                        ?>
                      </div>
                    </div>
                  </div>
              <?php
                }
              ?>
              </div>
            </div>

        <?php
          }
        ?>
          </form>
        </div>
        <?php
          // Step Last - Done!
        ?>
        <div id='progressDone' data-bind="visible: progressDone">
          <div id='progressDoneMessage'>
            <p style='margin: 20px;'>
            <?php
              // only show "back" and "cancel" during authentication
              if ( $act == "done" ) {
                print $MC->msg('Update Completed', HCU_DISPLAY_AS_HTML)
                 . warningMessages($es_warnings);

              }
            ?>
            </p>
          </div>
        </div>
    </div>

  <?php // buttons to go Back, Cancel, or Next/Submit as needed
  ?>

    <div class="homecuForm hcu-template">
      <div class="hcu-edit-buttons k-state-default">
      <?php if ( $act == "auth" ) { ?>
      <span class="hcu-icon-delete" style="visibility: hidden;">
        <a href="##" id="backBtn" data-bind="events:{ click: backClick }">
          <?php echo $MC->msg('Back', HCU_DISPLAY_AS_HTML) ?>
        </a>
      </span>
        <?php if ( $HB_ENV['Ffremain'] > 1 ) { ?>
        <a href="##" id="lnkCancel" data-bind="events:{ click: cancel }">
          <?php echo $MC->msg("Cancel", HCU_DISPLAY_AS_HTML); ?>
        </a>
        <?php } ?>
      &nbsp;
      <a href="##" id="continueBtn" class="k-button k-primary" data-bind="events:{ click: continueClick }">
        <i class="fa fa-arrow-right fa-lg"></i><?php echo $MC->msg("Continue", HCU_DISPLAY_AS_HTML); ?>
      </a>
      <?php } else { ?>
      &nbsp;
      <a href="##" id="continueBtn" class="k-button k-primary" data-bind="events:{ click: continueClick }">
        <i class="fa fa-arrow-right fa-lg"></i><?php echo $MC->msg("Continue", HCU_DISPLAY_AS_HTML); ?>
      </a>
      <?php } ?>
      </div>
    </div>
  </div>
  </div>
</div>

<script type="text/x-kendo-template" id="phoneRow">
  # if (id === -1) { #
  <tr data-uid="#: uid #" class="addRow">
    <td class="addBtn"><span class="fa fa-plus-circle"></span></td>
    <td>Add Phone</td>
  </tr>
  # } else { #
  <tr data-uid="#: uid #">
    <td class="removeBtn"><span class="fa fa-minus-circle"></span></td>
    <td>#: value #</td>
  </tr>
  # } #
</script>
<?php
  /*
   * ** END CONTENT
   */

  // ** INCLUDE POST CONTENT SCRIPT
  require_once(dirname(__FILE__) . '/../includes/hcuPostContent.i');

// Set the give alert email for the correct email type.
function SetAlertEmail( $dbh, $id, $type, $newEmail ) {
  $sql = "UPDATE cualert{$type} SET notifyto = '$newEmail' WHERE id = {$id}";
  db_query( $sql, $dbh );
} // end SetAlertEmail


function warningMessages($warnings) {

  if (count($warnings) == 0) {
    return '';
  }

  $msgs = '<ul class="hcu-warning-color" style=" max-width: 500px;
    padding: 20px; -webkit-border-radius: 5px;  -moz-border-radius: 5px; border-radius: 5px;">';
  foreach ($warnings as $warn) {
    $msgs .= "<li>$warn</li>\n";
  }
  $msgs .= '</ul>';

  return $msgs;
}