Index: lams_central/web/login.jsp
===================================================================
RCS file: /usr/local/cvsroot/lams_central/web/login.jsp,v
diff -u -r1.30 -r1.30.2.1
--- lams_central/web/login.jsp	24 May 2007 07:15:55 -0000	1.30
+++ lams_central/web/login.jsp	18 Sep 2007 07:20:58 -0000	1.30.2.1
@@ -19,11 +19,9 @@
 	
 	// for sysadmin to be able to login as someone else
 	String login = (String)session.getAttribute("login");
-	String pass = (String)session.getAttribute("pass");
-	if (login!=null && pass!=null) { 
+	if (login!=null) { 
 		session.removeAttribute("login");
-		session.removeAttribute("pass");
-		response.sendRedirect("j_security_check?j_username="+login+"&j_password="+pass);
+		response.sendRedirect("j_security_check?j_username="+login+"&j_password=dummy");
 	} 
 %>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
@@ -32,6 +30,7 @@
 flash is searching for this string, so leave it!:
 j_security_login_page
 -->
+<c:set var="encrypt"><%= Configuration.getAsBoolean(ConfigurationKeys.LDAP_ENCRYPT_PASSWORD_FROM_BROWSER) %></c:set>
 <head>
 	<title><fmt:message key="title.login.window"/></title>
 	<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
@@ -49,8 +48,10 @@
 	<script language="JavaScript" type="text/javascript" src="includes/javascript/sha1.js"></script>
 	<script>
 		function submitForm(){
-			  var password=document.loginForm.j_password.value;	 
+			  var password=document.loginForm.j_password.value;
+			  <c:if test="${encrypt eq 'true'}">
 			  document.loginForm.j_password.value=hex_sha1(password);
+			  </c:if>
 			  document.loginForm.submit();
 		}