1 package org.cacert.gigi.pages.admin.support;
3 import java.io.IOException;
4 import java.io.PrintWriter;
5 import java.net.URLEncoder;
6 import java.util.Iterator;
10 import javax.servlet.http.HttpServletRequest;
12 import org.cacert.gigi.GigiApiException;
13 import org.cacert.gigi.dbObjects.Group;
14 import org.cacert.gigi.dbObjects.Name;
15 import org.cacert.gigi.dbObjects.SupportedUser;
16 import org.cacert.gigi.dbObjects.User;
17 import org.cacert.gigi.email.Sendmail;
18 import org.cacert.gigi.localisation.Language;
19 import org.cacert.gigi.output.DateSelector;
20 import org.cacert.gigi.output.GroupSelector;
21 import org.cacert.gigi.output.template.Form;
22 import org.cacert.gigi.output.template.IterableDataset;
23 import org.cacert.gigi.output.template.Template;
24 import org.cacert.gigi.pages.Page;
25 import org.cacert.gigi.pages.PasswordResetPage;
26 import org.cacert.gigi.util.RandomToken;
27 import org.cacert.gigi.util.ServerConstants;
29 public class SupportUserDetailsForm extends Form {
31 private static Template t;
33 private SupportedUser user;
35 private DateSelector dobSelector;
37 private GroupSelector value = new GroupSelector("groupToModify");
40 t = new Template(FindDomainForm.class.getResource("SupportUserDetailsForm.templ"));
43 public SupportUserDetailsForm(HttpServletRequest hsr, SupportedUser user) {
46 dobSelector = new DateSelector("dobd", "dobm", "doby", user.getTargetUser().getDoB());
50 public boolean submit(PrintWriter out, HttpServletRequest req) throws GigiApiException {
51 if (user.getTicket() == null) {
54 if ((req.getParameter("detailupdate") != null ? 1 : 0) + (req.getParameter("grant") != null ? 1 : 0) + (req.getParameter("deny") != null ? 1 : 0) + (req.getParameter("resetPass") != null ? 1 : 0) != 1) {
55 throw new GigiApiException("More than one action requested!");
57 if (req.getParameter("grant") != null || req.getParameter("deny") != null) {
59 Group toMod = value.getGroup();
60 if (req.getParameter("grant") != null) {
67 if (req.getParameter("resetPass") != null) {
68 String aword = req.getParameter("aword");
69 if (aword == null || aword.equals("")) {
70 throw new GigiApiException("An A-Word is required to perform a password reset.");
72 String ptok = RandomToken.generateToken(32);
73 int id = user.getTargetUser().generatePasswordResetTicket(Page.getUser(req), ptok, aword);
75 Language l = Language.getInstance(user.getTargetUser().getPreferredLocale());
76 StringBuffer body = new StringBuffer();
77 body.append(l.getTranslation("Hi,") + "\n\n");
78 body.append(l.getTranslation("A password reset was triggered. Please enter the required text sent to you by support on this page:"));
79 body.append("\n\nhttps://");
80 body.append(ServerConstants.getWwwHostNamePortSecure() + PasswordResetPage.PATH);
83 body.append("&token=");
84 body.append(URLEncoder.encode(ptok, "UTF-8"));
87 body.append(l.getTranslation("Best regards"));
89 body.append(l.getTranslation("SomeCA.org Support!"));
90 Sendmail.getInstance().sendmail(user.getTargetUser().getEmail(), "[SomeCA.org] " + l.getTranslation("Password reset by support."), body.toString(), "support@cacert.org", null, null, null, null, false);
91 out.println(Page.getLanguage(req).getTranslation("Password reset successful."));
92 } catch (IOException e) {
97 dobSelector.update(req);
98 String fname = req.getParameter("fname");
99 String mname = req.getParameter("mname");
100 String lname = req.getParameter("lname");
101 String suffix = req.getParameter("suffix");
102 if (fname == null || mname == null || lname == null | suffix == null) {
103 throw new GigiApiException("Incomplete request!");
105 if ( !dobSelector.isValid()) {
106 throw new GigiApiException("Invalid date of birth!");
108 Name newName = new Name(fname, lname, mname, suffix);
109 synchronized (user.getTargetUser()) {
110 if (user.setDob(dobSelector.getDate()) | user.setName(newName)) {
111 user.submitSupportAction();
118 protected void outputContent(PrintWriter out, Language l, Map<String, Object> vars) {
119 User user = this.user.getTargetUser();
120 Name name = user.getName();
121 vars.put("mail", user.getEmail());
122 vars.put("fname", name.getFname());
123 vars.put("mname", name.getMname());
124 vars.put("lname", name.getLname());
125 vars.put("suffix", name.getSuffix());
126 vars.put("assurer", user.canAssure());
127 vars.put("dob", dobSelector);
128 vars.put("assurancepoints", user.getAssurancePoints());
129 vars.put("exppoints", user.getExperiencePoints());
130 vars.put("id", user.getId());
131 final Set<Group> gr = user.getGroups();
132 vars.put("groups", new IterableDataset() {
134 Iterator<Group> i = gr.iterator();
137 public boolean next(Language l, Map<String, Object> vars) {
142 vars.put("group_name", g.getName());
146 vars.put("groupSelector", value);
147 t.output(out, l, vars);