X-Git-Url: https://code.wpia.club/?a=blobdiff_plain;f=src%2Forg%2Fcacert%2Fgigi%2FdbObjects%2FCertificateProfile.java;h=87f55f7441bc6eaa9ce000ffd95152585741ea89;hb=bafe96665aa27ee01a09853941fcd7c46573eb5c;hp=5ac1f761ceb8da69ac45757907a7f9ccd56d750f;hpb=8059f2f157a133c5e1073b0b3f5f2eeb9db74e88;p=gigi.git diff --git a/src/org/cacert/gigi/dbObjects/CertificateProfile.java b/src/org/cacert/gigi/dbObjects/CertificateProfile.java index 5ac1f761..87f55f74 100644 --- a/src/org/cacert/gigi/dbObjects/CertificateProfile.java +++ b/src/org/cacert/gigi/dbObjects/CertificateProfile.java @@ -126,7 +126,9 @@ public class CertificateProfile implements IdCachable { private CertificateProfile(File f) throws IOException { Properties p = new Properties(); - p.load(new FileInputStream(f)); + try (FileInputStream inStream = new FileInputStream(f)) { + p.load(inStream); + } String[] parts = f.getName().split("\\.")[0].split("-", 2); id = Integer.parseInt(parts[0]); keyName = parts[1]; @@ -181,14 +183,14 @@ public class CertificateProfile implements IdCachable { for (File f : new File("config/profiles").listFiles()) { Properties p = new Properties(); - try { - p.load(new FileInputStream(f)); + try (FileInputStream inStream = new FileInputStream(f)) { + p.load(inStream); } catch (IOException e) { throw new Error("Unable to load profile from " + f.getName(), e); } String[] parts = f.getName().split("\\.")[0].split("-", 2); - GigiPreparedStatement ps = DatabaseConnection.getInstance().prepare("SELECT keyname, include, requires, name FROM `profiles` WHERE id=?"); + GigiPreparedStatement ps = DatabaseConnection.getInstance().prepare("SELECT `keyname`, `include`, `requires`, `name` FROM `profiles` WHERE `id`=?"); ps.setInt(1, Integer.parseInt(parts[0])); GigiResultSet rs = ps.executeQuery(); @@ -203,7 +205,7 @@ public class CertificateProfile implements IdCachable { throw new Error("Config error. Certificate Profile mismatch"); } } else { - GigiPreparedStatement insert = DatabaseConnection.getInstance().prepare("INSERT INTO `profiles` SET keyname=?, include=?, requires=?, name=?, id=?"); + GigiPreparedStatement insert = DatabaseConnection.getInstance().prepare("INSERT INTO `profiles` SET `keyname`=?, `include`=?, `requires`=?, `name`=?, `id`=?"); insert.setString(1, parts[1]); insert.setString(2, p.getProperty("include")); insert.setString(3, p.getProperty("requires", "")); @@ -213,7 +215,7 @@ public class CertificateProfile implements IdCachable { } } - GigiPreparedStatement ps = DatabaseConnection.getInstance().prepare("SELECT id, keyname, name, requires, include FROM `profiles`"); + GigiPreparedStatement ps = DatabaseConnection.getInstance().prepare("SELECT `id`, `keyname`, `name`, `requires`, `include` FROM `profiles`"); GigiResultSet rs = ps.executeQuery(); while (rs.next()) { CertificateProfile cp = new CertificateProfile(rs.getInt("id"), rs.getString("keyName"), rs.getString("name"), rs.getString("requires"), rs.getString("include")); @@ -237,18 +239,27 @@ public class CertificateProfile implements IdCachable { return byId.values().toArray(new CertificateProfile[byId.size()]); } - public boolean canBeIssuedBy(User u) { + public boolean canBeIssuedBy(CertificateOwner owner, User actor) { + if (pt.containsKey("orga")) { + if ( !(owner instanceof Organisation)) { + return false; + } + } else { + if (owner instanceof Organisation) { + return false; + } + } for (String s : req) { if (s.equals("points>=50")) { - if (u.getAssurancePoints() < 50) { + if (actor.getAssurancePoints() < 50) { return false; } } else if (s.equals("points>=100")) { - if (u.getAssurancePoints() < 100) { + if (actor.getAssurancePoints() < 100) { return false; } } else if (s.equals("codesign")) { - if (u.isInGroup(Group.CODESIGNING)) { + if (actor.isInGroup(Group.CODESIGNING)) { return false; } } else {