X-Git-Url: https://code.wpia.club/?a=blobdiff_plain;f=src%2Forg%2Fcacert%2Fgigi%2Fpages%2Fadmin%2Fsupport%2FSupportUserDetailsPage.java;h=b1ec3abf7bf041af50bad7260444130903075850;hb=4d9b0e8bdf122324cec9f3dd387c02d14c30877e;hp=234448088d91f5bcaa82b1eb357f8f81c25995db;hpb=117feb522905ad14aeacea42742c77035f2dd6cb;p=gigi.git diff --git a/src/org/cacert/gigi/pages/admin/support/SupportUserDetailsPage.java b/src/org/cacert/gigi/pages/admin/support/SupportUserDetailsPage.java index 23444808..b1ec3abf 100644 --- a/src/org/cacert/gigi/pages/admin/support/SupportUserDetailsPage.java +++ b/src/org/cacert/gigi/pages/admin/support/SupportUserDetailsPage.java @@ -16,6 +16,7 @@ import org.cacert.gigi.localisation.Language; import org.cacert.gigi.output.template.Form; import org.cacert.gigi.output.template.IterableDataset; import org.cacert.gigi.pages.Page; +import org.cacert.gigi.util.AuthorizationContext; public class SupportUserDetailsPage extends Page { @@ -27,9 +28,13 @@ public class SupportUserDetailsPage extends Page { @Override public void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException { - int id; + int id = -1; String[] idP = req.getPathInfo().split("/"); - id = Integer.parseInt(idP[idP.length - 1]); + try { + id = Integer.parseInt(idP[idP.length - 1]); + } catch (NumberFormatException e) { + resp.sendError(404); + } final User user = User.getById(id); String ticket = (String) req.getSession().getAttribute("ticketNo" + user.getId()); SupportUserDetailsForm f = new SupportUserDetailsForm(req, new SupportedUser(user, getUser(req), ticket)); @@ -84,10 +89,7 @@ public class SupportUserDetailsPage extends Page { } @Override - public boolean isPermitted(User u) { - if (u == null) { - return false; - } - return u.isInGroup(Group.SUPPORTER); + public boolean isPermitted(AuthorizationContext ac) { + return ac != null && ac.isInGroup(Group.SUPPORTER); } }