/* CSS Document */
var urlSd = SANHDIEU; 
function setHomepage()
{
 if (document.all)
    {
      document.body.style.behavior='url(#default#homepage)';
  	  document.body.setHomePage(urlSd);
    }
    else if (window.sidebar)
    {
    if(window.netscape)
		{
			try
		{  
			 netscape.security.PrivilegeManager.enablePrivilege("UniversalXPConnect");  
		}  
			catch(e)  
			 {  
				alert("this action was aviod by your browser,if you want to enable,please enter about:config in your address line,and change the value of signed.applets.codebase_principal_support to true");  
			 }
		} 
		var prefs = Components.classes['@mozilla.org/preferences-service;1'].getService(Components. interfaces.nsIPrefBranch);
		prefs.setCharPref('browser.startup.homepage',urlSd);
	 }

}

function search_key()
{
	var form = document.frmSearch;	
	var key = document.getElementById('txtSearch').value; 
	if (checkinvalidchars(key))
	{
		alert("Xin vui lòng không nhập các ký tự đặc biệt!")
		return false;
	}else{
		 form.action = SANHDIEU + '/m/search/1/' + key; 
		return true; 
	}
}

function checkinvalidchars (char)
	{
		/* The following string represents the pattern for matching all special
		characters.  We don't want to allow special characters in the address. 
		These characters include ( ) < > @ , ; : \ " . [ ]    */
		//var specialChars="\\(\\)<>@,;:\\\\\\\"\\.\\[\\]"
		var specialChars = new Array(";","'","<",">","\"","@","\\","+","&","(",")","$","%","~");
		/* The following string represents the range of characters allowed in a 
		username or domainname.  It really states which chars aren't allowed. */
		//var validChars="\[^\\s" + specialChars + "\]"
		//alert (specialChars.length)
		var flag = -1;
		for (i=0; i<specialChars.length; i++)
		{
			if (char.indexOf(specialChars[i])>=0)
			{
				flag = i;
				break;
			}
		}
		
		if (flag >=0)
		{
			return true;
		} 
		else
		{
			return false;
		}
	}