X-Git-Url: https://code.wpia.club/?a=blobdiff_plain;f=src%2Forg%2Fcacert%2Fgigi%2Fpages%2Fwot%2FAssurePage.java;h=9c29044bbf2b0a18053b76ed0edcce280cfd73c2;hb=45b1bef0919f9115f74b5b232e8fda4c787ba03d;hp=6c5622b7e612613719263cd262e8e5ce555263a9;hpb=0ac17316346e717b61be96c04b68b8a17cb204a5;p=gigi.git

diff --git a/src/org/cacert/gigi/pages/wot/AssurePage.java b/src/org/cacert/gigi/pages/wot/AssurePage.java
index 6c5622b7..9c29044b 100644
--- a/src/org/cacert/gigi/pages/wot/AssurePage.java
+++ b/src/org/cacert/gigi/pages/wot/AssurePage.java
@@ -10,65 +10,122 @@ import java.util.HashMap;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
-
+import org.cacert.gigi.User;
 import org.cacert.gigi.database.DatabaseConnection;
 import org.cacert.gigi.output.DateSelector;
+import org.cacert.gigi.output.Form;
 import org.cacert.gigi.output.Template;
+import org.cacert.gigi.pages.LoginPage;
 import org.cacert.gigi.pages.Page;
+import org.cacert.gigi.util.Notary;
+import org.cacert.gigi.util.Notary.AssuranceResult;
 
 public class AssurePage extends Page {
-	public static final String PATH = "/wot/assure/*";
+	public static final String PATH = "/wot/assure";
 	DateSelector ds = new DateSelector("day", "month", "year");
 	Template t;
 
 	public AssurePage() {
 		super("Assure someone");
-		t = new Template(new InputStreamReader(
-				AssurePage.class.getResourceAsStream("AssureeSearch.templ")));
+		t = new Template(new InputStreamReader(AssuranceForm.class.getResourceAsStream("AssureeSearch.templ")));
+
 	}
 
 	@Override
-	public void doGet(HttpServletRequest req, HttpServletResponse resp)
-			throws IOException {
-		PrintWriter out = resp.getWriter();
+	public void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException {
 
-		String pi = req.getPathInfo().substring(PATH.length() - 2);
+		PrintWriter out = resp.getWriter();
+		String pi = req.getPathInfo().substring(PATH.length());
 		if (pi.length() > 1) {
-			out.println("I am a Placeholder for the Assurance form # ");
-			out.println(pi.substring(1));
+			int mid = Integer.parseInt(pi.substring(1));
+			AssuranceForm form = new AssuranceForm(req, mid);
+			outputForm(req, out, mid, form);
+
 		} else {
 			HashMap<String, Object> vars = new HashMap<String, Object>();
 			vars.put("DoB", ds);
 			t.output(out, getLanguage(req), vars);
 		}
 	}
+
+	private void outputForm(HttpServletRequest req, PrintWriter out, int mid, AssuranceForm form) {
+		User myself = LoginPage.getUser(req);
+		AssuranceResult check = Notary.checkAssuranceIsPossible(myself, new User(mid));
+		if (check != AssuranceResult.ASSURANCE_SUCCEDED) {
+			out.println(translate(req, check.getMessage()));
+			return;
+		}
+		if (form == null || form.assuree.getId() != mid) {
+			form = new AssuranceForm(req, mid);
+		}
+
+		form.output(out, getLanguage(req), new HashMap<String, Object>());
+	}
+
 	@Override
-	public void doPost(HttpServletRequest req, HttpServletResponse resp)
-			throws IOException {
+	public void doPost(HttpServletRequest req, HttpServletResponse resp) throws IOException {
 		PrintWriter out = resp.getWriter();
-		System.out.println("searching for");
+		String pi = req.getPathInfo().substring(PATH.length());
+		if (pi.length() > 1) {
+			User myself = LoginPage.getUser(req);
+			int mid = Integer.parseInt(pi.substring(1));
+			if (mid == myself.getId()) {
+				out.println(translate(req, "Cannot assure myself."));
+				return;
+			}
+
+			AssuranceForm form = Form.getForm(req, AssuranceForm.class);
+			if (mid != form.assuree.getId()) {
+				return;
+			}
+			if (form.submit(out, req)) {
+				out.println(translate(req, "Assurance complete."));
+			} else {
+				outputForm(req, resp.getWriter(), mid, form);
+			}
+
+			return;
+		}
+
+		ResultSet rs = null;
 		try {
 			PreparedStatement ps = DatabaseConnection.getInstance().prepare(
-					"SELECT id FROM users WHERE email=? AND dob=?");
+				"SELECT id, verified FROM users WHERE email=? AND dob=? AND deleted=0");
 			ps.setString(1, req.getParameter("email"));
-			String day = req.getParameter("year") + "-"
-					+ req.getParameter("month") + "-" + req.getParameter("day");
+			String day = req.getParameter("year") + "-" + req.getParameter("month") + "-" + req.getParameter("day");
 			ps.setString(2, day);
-			ResultSet rs = ps.executeQuery();
+			rs = ps.executeQuery();
 			int id = 0;
 			if (rs.next()) {
 				id = rs.getInt(1);
-			}
-			if (rs.next()) {
-				out.println("Error, ambigous user. Please contact support@cacert.org");
+				int verified = rs.getInt(2);
+				if (rs.next()) {
+					out.println("Error, ambigous user. Please contact support@cacert.org.");
+				} else {
+					if (verified == 0) {
+						out.println(translate(req, "User is not yet verified. Please try again in 24 hours!"));
+					}
+					resp.sendRedirect(PATH + "/" + id);
+				}
 			} else {
-				resp.sendRedirect(PATH.substring(0, PATH.length() - 2) + "/"
-						+ id);
+				out.print("<div class='formError'>");
+
+				out.println(translate(req, "I'm sorry, there was no email and date of birth matching"
+					+ " what you entered in the system. Please double check" + " your information."));
+				out.print("</div>");
 			}
 
 			rs.close();
 		} catch (SQLException e) {
 			e.printStackTrace();
+		} finally {
+			try {
+				if (rs != null) {
+					rs.close();
+				}
+			} catch (SQLException e) {
+				e.printStackTrace();
+			}
 		}
 	}
 }