if ( !u.isInGroup(Group.SUPPORTER)) {
try (GigiPreparedStatement ps = new GigiPreparedStatement("INSERT INTO `user_groups` SET `user`=?, `permission`=?::`userGroup`, `grantedby`=?")) {
ps.setInt(1, u.getId());
- ps.setString(2, Group.SUPPORTER.getDatabaseName());
+ ps.setString(2, Group.SUPPORTER.getDBName());
ps.setInt(3, u.getId());
ps.execute();
}
resp.getWriter().println("User not found.");
return;
}
- if (req.getParameter("addpriv") != null) {
- try {
+ try {
+ if (req.getParameter("addpriv") != null) {
u.grantGroup(getSupporter(), Group.getByString(req.getParameter("priv")));
- } catch (GigiApiException e) {
- throw new Error(e);
+ resp.getWriter().println("Privilege granted");
+ } else {
+ u.revokeGroup(getSupporter(), Group.getByString(req.getParameter("priv")));
+ resp.getWriter().println("Privilege revoked");
}
- resp.getWriter().println("Privilege granted");
- } else {
- u.revokeGroup(u, Group.getByString(req.getParameter("priv")));
- resp.getWriter().println("Privilege revoked");
+ } catch (GigiApiException e) {
+ throw new Error(e);
}
} else if (req.getParameter("fetch") != null) {
String mail = req.getParameter("femail");