req = false;
if (window.XMLHttpRequest){
  try {
	req = new XMLHttpRequest();
  }catch(e) {
	req = false;
  }
} else {
  if(window.ActiveXObject) {
	try {
		req = new ActiveXObject("Msxml2.XMLHTTP");
	} catch(e) {
		try {
			req = new ActiveXObject("Microsoft.XMLHTTP");
		} catch(e) {
			req = false;
		}
	}
  }
}

function sendForm(){
    var pass = document.getElementById("password").value;
    pass = pass.toLowerCase();
    document.getElementById("password").value = "";
    doLogin(document.getElementById("user").value, pass, "", document.getElementById("rememberMe").value);
    return false;
}

function fixUrlEncode(txt){
	var myStringArrays = new Array("+","-","*","/",".","_","@");
	var myEncodeArrays = new Array("%2b","%2d","%2a","%2f","%2e","%5f","%40");
	for(i=0;i<myStringArrays.length;i++){
		txt = txt.replace(eval("/\\"+ myStringArrays[i] + "/g"), myEncodeArrays[i]);
	}
	return txt;
}

function doLogin(user, challenge, chal, rmb){
	user = fixUrlEncode(user);
	challenge = fixUrlEncode(challenge);
	req.open("GET", "/includes/checkLogin.asp?user="+user+"&encPass="+challenge+"&Key="+escape(chal)+"&cookie="+rmb,true);
	req.onreadystatechange=function()
	{
		if (req.readyState==4) {
			textStream = req.responseText;
			if(textStream!=""){
				eval(textStream);
			}
		}
	}
	req.send(null);
	return false;
}