1 package org.cacert.gigi.pages.admin.support;
3 import java.io.IOException;
4 import java.io.PrintWriter;
5 import java.net.URLEncoder;
8 import javax.servlet.http.HttpServletRequest;
10 import org.cacert.gigi.GigiApiException;
11 import org.cacert.gigi.dbObjects.Group;
12 import org.cacert.gigi.dbObjects.Name;
13 import org.cacert.gigi.dbObjects.SupportedUser;
14 import org.cacert.gigi.dbObjects.User;
15 import org.cacert.gigi.email.Sendmail;
16 import org.cacert.gigi.localisation.Language;
17 import org.cacert.gigi.output.DateSelector;
18 import org.cacert.gigi.output.template.Form;
19 import org.cacert.gigi.output.template.Template;
20 import org.cacert.gigi.pages.Page;
21 import org.cacert.gigi.pages.PasswordResetPage;
22 import org.cacert.gigi.util.RandomToken;
23 import org.cacert.gigi.util.ServerConstants;
25 public class SupportUserDetailsForm extends Form {
27 private static Template t;
29 private SupportedUser user;
31 private DateSelector dobSelector;
34 t = new Template(FindDomainForm.class.getResource("SupportUserDetailsForm.templ"));
37 public SupportUserDetailsForm(HttpServletRequest hsr, SupportedUser user) {
40 dobSelector = new DateSelector("dobd", "dobm", "doby", user.getTargetUser().getDoB());
44 public boolean submit(PrintWriter out, HttpServletRequest req) throws GigiApiException {
45 if (user.getTicket() == null) {
48 if (req.getParameter("resetPass") != null) {
49 String aword = req.getParameter("aword");
50 if (aword == null || aword.equals("")) {
51 throw new GigiApiException("An A-Word is required to perform a password reset.");
53 String ptok = RandomToken.generateToken(32);
54 int id = user.getTargetUser().generatePasswordResetTicket(Page.getUser(req), ptok, aword);
56 Language l = Language.getInstance(user.getTargetUser().getPreferredLocale());
57 StringBuffer body = new StringBuffer();
58 body.append(l.getTranslation("Hi,") + "\n\n");
59 body.append(l.getTranslation("A password reset was triggered. Please enter the required text sent to you by support on this page: \nhttps://"));
60 body.append(ServerConstants.getWwwHostNamePortSecure() + PasswordResetPage.PATH);
63 body.append("&token=");
64 body.append(URLEncoder.encode(ptok, "UTF-8"));
67 body.append(l.getTranslation("Best regards"));
69 body.append(l.getTranslation("CAcert.org Support!"));
70 Sendmail.getInstance().sendmail(user.getTargetUser().getEmail(), "[CAcert.org] " + l.getTranslation("Password reset by support."), body.toString(), "support@cacert.org", null, null, null, null, false);
71 out.println(Page.getLanguage(req).getTranslation("Password reset successful."));
72 } catch (IOException e) {
77 dobSelector.update(req);
78 String fname = req.getParameter("fname");
79 String mname = req.getParameter("mname");
80 String lname = req.getParameter("lname");
81 String suffix = req.getParameter("suffix");
82 if (fname == null || mname == null || lname == null | suffix == null) {
83 throw new GigiApiException("Incomplete request!");
85 if ( !dobSelector.isValid()) {
86 throw new GigiApiException("Invalid date of birth!");
88 Name newName = new Name(fname, lname, mname, suffix);
89 if (user.setDob(dobSelector.getDate()) | user.setName(newName)) {
90 user.submitSupportAction();
96 protected void outputContent(PrintWriter out, Language l, Map<String, Object> vars) {
97 User user = this.user.getTargetUser();
98 Name name = user.getName();
99 vars.put("mail", user.getEmail());
100 vars.put("fname", name.getFname());
101 vars.put("mname", name.getMname());
102 vars.put("lname", name.getLname());
103 vars.put("suffix", name.getSuffix());
104 vars.put("assurer", user.canAssure());
105 vars.put("dob", dobSelector);
106 vars.put("blockedassurer", user.isInGroup(Group.BLOCKEDASSURER));
107 vars.put("codesign", user.isInGroup(Group.CODESIGNING));
108 vars.put("orgassurer", user.isInGroup(Group.ORGASSURER));
109 vars.put("assurancepoints", user.getAssurancePoints());
110 vars.put("blockedassuree", user.isInGroup(Group.BLOCKEDASSUREE));
111 vars.put("ttpassurer", user.isInGroup(Group.TTP_ASSURER));
112 vars.put("ttpapplicant", user.isInGroup(Group.TTP_APPLICANT));
113 vars.put("blockedlogin", user.isInGroup(Group.BLOCKEDLOGIN));
114 vars.put("supporter", user.isInGroup(Group.SUPPORTER));
115 vars.put("id", user.getId());
116 t.output(out, l, vars);