import org.cacert.gigi.output.template.Template;
import org.cacert.gigi.pages.LoginPage;
import org.cacert.gigi.pages.Page;
+import org.cacert.gigi.util.AuthorizationContext;
public class ViewOrgPage extends Page {
}
@Override
- public boolean isPermitted(User u) {
- return u != null && (u.isInGroup(CreateOrgPage.ORG_ASSURER) || u.getOrganisations().size() != 0);
+ public boolean isPermitted(AuthorizationContext ac) {
+ return ac != null && (ac.isInGroup(CreateOrgPage.ORG_ASSURER) || ac.getActor().getOrganisations().size() != 0);
}
@Override
public void doPost(HttpServletRequest req, HttpServletResponse resp) throws IOException {
try {
User u = LoginPage.getUser(req);
- if ( !u.isInGroup(CreateOrgPage.ORG_ASSURER)) {
- return;
- }
if (req.getParameter("do_affiliate") != null || req.getParameter("del") != null) {
AffiliationForm form = Form.getForm(req, AffiliationForm.class);
if (form.submit(resp.getWriter(), req)) {
resp.sendRedirect(DEFAULT_PATH + "/" + form.getOrganisation().getId());
}
+ return;
+ } else if (req.getParameter("addDomain") != null) {
+ if (Form.getForm(req, OrgDomainAddForm.class).submit(resp.getWriter(), req)) {
+ // resp.sendRedirect(DEFAULT_PATH + "/" +
+ // form.getOrganisation().getId());
+ }
} else {
+ if ( !u.isInGroup(CreateOrgPage.ORG_ASSURER)) {
+ resp.sendError(403, "Access denied");
+ return;
+ }
Form.getForm(req, CreateOrgForm.class).submit(resp.getWriter(), req);
}
+
} catch (GigiApiException e) {
e.format(resp.getWriter(), getLanguage(req));
}
HashMap<String, Object> vars = new HashMap<>();
vars.put("editForm", new CreateOrgForm(req, o));
vars.put("affForm", new AffiliationForm(req, o));
+ vars.put("addDom", new OrgDomainAddForm(req, o));
mainTempl.output(out, lang, vars);
}
projects / gigi.git / blobdiff