1 package org.cacert.gigi.pages.wot;
3 import java.io.IOException;
4 import java.io.PrintWriter;
5 import java.net.URLEncoder;
6 import java.text.SimpleDateFormat;
7 import java.util.HashMap;
8 import java.util.Iterator;
9 import java.util.LinkedList;
12 import javax.servlet.http.HttpServletRequest;
14 import org.cacert.gigi.GigiApiException;
15 import org.cacert.gigi.dbObjects.Assurance.AssuranceType;
16 import org.cacert.gigi.dbObjects.Name;
17 import org.cacert.gigi.dbObjects.User;
18 import org.cacert.gigi.email.Sendmail;
19 import org.cacert.gigi.localisation.Language;
20 import org.cacert.gigi.output.template.Form;
21 import org.cacert.gigi.output.template.IterableDataset;
22 import org.cacert.gigi.output.template.Template;
23 import org.cacert.gigi.pages.Page;
24 import org.cacert.gigi.pages.PasswordResetPage;
25 import org.cacert.gigi.util.DayDate;
26 import org.cacert.gigi.util.Notary;
27 import org.cacert.gigi.util.RandomToken;
28 import org.cacert.gigi.util.ServerConstants;
30 public class AssuranceForm extends Form {
34 private Name assureeName;
38 private String location = "";
40 private String date = "";
46 private AssuranceType type = AssuranceType.FACE_TO_FACE;
48 private static final Template templ;
50 templ = new Template(AssuranceForm.class.getResource("AssuranceForm.templ"));
53 public AssuranceForm(HttpServletRequest hsr, User assuree) {
55 assurer = Page.getUser(hsr);
56 this.assuree = assuree;
57 assureeName = this.assuree.getName();
58 dob = this.assuree.getDoB();
61 SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd");
63 SimpleDateFormat sdf2 = new SimpleDateFormat("dd. MMM yyyy");
66 public void outputContent(PrintWriter out, Language l, Map<String, Object> vars) {
67 HashMap<String, Object> res = new HashMap<String, Object>();
69 res.put("nameExplicit", assuree.getName());
70 res.put("name", assuree.getName().toString());
71 res.put("maxpoints", assurer.getMaxAssurePoints());
72 res.put("dob", sdf.format(assuree.getDoB().toDate()));
73 res.put("dobFmt2", sdf2.format(assuree.getDoB().toDate()));
74 res.put("location", location);
75 res.put("date", date);
76 res.put("aword", aword);
77 final LinkedList<AssuranceType> ats = new LinkedList<>();
78 for (AssuranceType at : AssuranceType.values()) {
80 Notary.may(assurer, assuree, at);
82 } catch (GigiApiException e) {
85 res.put("ats", new IterableDataset() {
87 Iterator<AssuranceType> t = ats.iterator();
90 public boolean next(Language l, Map<String, Object> vars) {
94 AssuranceType t1 = t.next();
95 vars.put("type", t1.getDescription());
96 vars.put("id", t1.toString());
97 vars.put("sel", t1 == type ? " selected" : "");
101 templ.output(out, l, res);
105 public boolean submit(PrintWriter out, HttpServletRequest req) {
106 location = req.getParameter("location");
107 date = req.getParameter("date");
108 if (date == null || location == null) {
109 outputError(out, req, "You need to enter location and date!");
112 if ( !"1".equals(req.getParameter("certify")) || !"1".equals(req.getParameter("rules")) || !"1".equals(req.getParameter("CCAAgreed")) || !"1".equals(req.getParameter("assertion"))) {
113 outputError(out, req, "You failed to check all boxes to validate" + " your adherence to the rules and policies of SomeCA");
116 if ("1".equals(req.getParameter("passwordReset"))) {
117 aword = req.getParameter("passwordResetValue");
118 if ("".equals(aword)) {
124 String val = req.getParameter("assuranceType");
127 type = AssuranceType.valueOf(val);
128 } catch (IllegalArgumentException e) {
129 outputError(out, req, "Assurance Type wrong.");
134 String points = req.getParameter("points");
135 if (points == null || "".equals(points)) {
136 outputError(out, req, "For an assurance, you need to enter points.");
139 pointsI = Integer.parseInt(points);
140 } catch (NumberFormatException e) {
141 outputError(out, req, "The points entered were not a number.");
149 Notary.assure(assurer, assuree, assureeName, dob, pointsI, location, req.getParameter("date"), type);
150 if (aword != null && !aword.equals("")) {
151 String systemToken = RandomToken.generateToken(32);
152 int id = assuree.generatePasswordResetTicket(Page.getUser(req), systemToken, aword);
154 Language l = Language.getInstance(assuree.getPreferredLocale());
155 StringBuffer body = new StringBuffer();
156 body.append(l.getTranslation("Hi,") + "\n\n");
157 body.append(l.getTranslation("A password reset was triggered. If you did a password reset by assurance, please enter your secret password using this form: \nhttps://"));
158 body.append(ServerConstants.getWwwHostNamePortSecure() + PasswordResetPage.PATH);
161 body.append("&token=");
162 body.append(URLEncoder.encode(systemToken, "UTF-8"));
165 body.append(l.getTranslation("Best regards"));
167 body.append(l.getTranslation("SomeCA.org Support!"));
168 Sendmail.getInstance().sendmail(assuree.getEmail(), "[SomeCA.org] " + l.getTranslation("Password reset by assurance"), body.toString(), "support@cacert.org", null, null, null, null, false);
169 } catch (IOException e) {
174 } catch (GigiApiException e) {
175 e.format(out, Page.getLanguage(req));
181 public User getAssuree() {