1 package org.cacert.gigi.pages.admin.support;
3 import java.io.IOException;
4 import java.io.PrintWriter;
5 import java.net.URLEncoder;
6 import java.util.Iterator;
10 import javax.servlet.http.HttpServletRequest;
12 import org.cacert.gigi.GigiApiException;
13 import org.cacert.gigi.dbObjects.Group;
14 import org.cacert.gigi.dbObjects.Name;
15 import org.cacert.gigi.dbObjects.SupportedUser;
16 import org.cacert.gigi.dbObjects.User;
17 import org.cacert.gigi.email.Sendmail;
18 import org.cacert.gigi.localisation.Language;
19 import org.cacert.gigi.output.DateSelector;
20 import org.cacert.gigi.output.GroupSelector;
21 import org.cacert.gigi.output.template.Form;
22 import org.cacert.gigi.output.template.IterableDataset;
23 import org.cacert.gigi.output.template.Template;
24 import org.cacert.gigi.pages.Page;
25 import org.cacert.gigi.pages.PasswordResetPage;
26 import org.cacert.gigi.util.RandomToken;
27 import org.cacert.gigi.util.ServerConstants;
29 public class SupportUserDetailsForm extends Form {
31 private static Template t;
33 private SupportedUser user;
35 private DateSelector dobSelector;
37 private GroupSelector value = new GroupSelector("groupToModify");
40 t = new Template(FindDomainForm.class.getResource("SupportUserDetailsForm.templ"));
43 public SupportUserDetailsForm(HttpServletRequest hsr, SupportedUser user) {
46 dobSelector = new DateSelector("dobd", "dobm", "doby", user.getTargetUser().getDoB());
50 public boolean submit(PrintWriter out, HttpServletRequest req) throws GigiApiException {
51 if (user.getTicket() == null) {
54 if ((req.getParameter("detailupdate") != null ? 1 : 0) + (req.getParameter("grant") != null ? 1 : 0) + (req.getParameter("deny") != null ? 1 : 0) + (req.getParameter("resetPass") != null ? 1 : 0) != 1) {
55 throw new GigiApiException("More than one action requested!");
57 if (req.getParameter("grant") != null || req.getParameter("deny") != null) {
59 Group toMod = value.getGroup();
60 if (req.getParameter("grant") != null) {
67 if (req.getParameter("resetPass") != null) {
68 String aword = req.getParameter("aword");
69 if (aword == null || aword.equals("")) {
70 throw new GigiApiException("An A-Word is required to perform a password reset.");
72 String ptok = RandomToken.generateToken(32);
73 int id = user.getTargetUser().generatePasswordResetTicket(Page.getUser(req), ptok, aword);
75 Language l = Language.getInstance(user.getTargetUser().getPreferredLocale());
76 StringBuffer body = new StringBuffer();
77 body.append(l.getTranslation("Hi,") + "\n\n");
78 body.append(l.getTranslation("A password reset was triggered. Please enter the required text sent to you by support on this page: \nhttps://"));
79 body.append(ServerConstants.getWwwHostNamePortSecure() + PasswordResetPage.PATH);
82 body.append("&token=");
83 body.append(URLEncoder.encode(ptok, "UTF-8"));
86 body.append(l.getTranslation("Best regards"));
88 body.append(l.getTranslation("SomeCA.org Support!"));
89 Sendmail.getInstance().sendmail(user.getTargetUser().getEmail(), "[SomeCA.org] " + l.getTranslation("Password reset by support."), body.toString(), "support@cacert.org", null, null, null, null, false);
90 out.println(Page.getLanguage(req).getTranslation("Password reset successful."));
91 } catch (IOException e) {
96 dobSelector.update(req);
97 String fname = req.getParameter("fname");
98 String mname = req.getParameter("mname");
99 String lname = req.getParameter("lname");
100 String suffix = req.getParameter("suffix");
101 if (fname == null || mname == null || lname == null | suffix == null) {
102 throw new GigiApiException("Incomplete request!");
104 if ( !dobSelector.isValid()) {
105 throw new GigiApiException("Invalid date of birth!");
107 Name newName = new Name(fname, lname, mname, suffix);
108 synchronized (user.getTargetUser()) {
109 if (user.setDob(dobSelector.getDate()) | user.setName(newName)) {
110 user.submitSupportAction();
117 protected void outputContent(PrintWriter out, Language l, Map<String, Object> vars) {
118 User user = this.user.getTargetUser();
119 Name name = user.getName();
120 vars.put("mail", user.getEmail());
121 vars.put("fname", name.getFname());
122 vars.put("mname", name.getMname());
123 vars.put("lname", name.getLname());
124 vars.put("suffix", name.getSuffix());
125 vars.put("assurer", user.canAssure());
126 vars.put("dob", dobSelector);
127 vars.put("assurancepoints", user.getAssurancePoints());
128 vars.put("exppoints", user.getExperiencePoints());
129 vars.put("id", user.getId());
130 final Set<Group> gr = user.getGroups();
131 vars.put("groups", new IterableDataset() {
133 Iterator<Group> i = gr.iterator();
136 public boolean next(Language l, Map<String, Object> vars) {
141 vars.put("group_name", g.getName());
145 vars.put("groupSelector", value);
146 t.output(out, l, vars);