src/org/cacert/gigi/pages/wot/AssuranceForm.java

   1 package org.cacert.gigi.pages.wot;
   2
   3 import java.io.InputStreamReader;
   4 import java.io.PrintWriter;
   5 import java.sql.SQLException;
   6 import java.text.ParseException;
   7 import java.text.SimpleDateFormat;
   8 import java.util.Date;
   9 import java.util.HashMap;
  10 import java.util.Map;
  11
  12 import javax.servlet.http.HttpServletRequest;
  13
  14 import org.cacert.gigi.Language;
  15 import org.cacert.gigi.User;
  16 import org.cacert.gigi.output.Form;
  17 import org.cacert.gigi.output.Template;
  18 import org.cacert.gigi.pages.LoginPage;
  19 import org.cacert.gigi.util.Notary;
  20 import org.cacert.gigi.util.Notary.AssuranceResult;
  21
  22 public class AssuranceForm extends Form {
  23         User assuree;
  24         static final Template templ;
  25         static {
  26                 templ = new Template(new InputStreamReader(AssuranceForm.class.getResourceAsStream("AssuranceForm.templ")));
  27         }
  28
  29         public AssuranceForm(HttpServletRequest hsr, int assuree) {
  30                 super(hsr);
  31                 this.assuree = new User(assuree);
  32         }
  33
  34         SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd");
  35
  36         @Override
  37         public void outputContent(PrintWriter out, Language l, Map<String, Object> vars) {
  38                 HashMap<String, Object> res = new HashMap<String, Object>();
  39                 res.putAll(vars);
  40                 res.put("name", assuree.getName());
  41                 try {
  42                         res.put("maxpoints", assuree.getMaxAssurePoints());
  43                 } catch (SQLException e) {
  44                         e.printStackTrace();
  45                 }
  46                 res.put("dob", sdf.format(assuree.getDob()));
  47                 templ.output(out, l, res);
  48         }
  49
  50         @Override
  51         public boolean submit(PrintWriter out, HttpServletRequest req) {
  52                 checkCSRF(req);
  53
  54                 out.println("<div class='formError'>");
  55                 boolean failed = false;
  56
  57                 if (!"1".equals(req.getParameter("certify")) || !"1".equals(req.getParameter("rules"))
  58                         || !"1".equals(req.getParameter("CCAAgreed")) || !"1".equals(req.getParameter("assertion"))) {
  59                         outputError(out, req, "You failed to check all boxes to validate"
  60                                 + " your adherence to the rules and policies of CAcert");
  61                         failed = true;
  62
  63                 }
  64                 if (req.getParameter("date") == null || req.getParameter("date").equals("")) {
  65                         outputError(out, req, "You must enter the date when you met the assuree.");
  66                         failed = true;
  67                 } else {
  68                         try {
  69                                 Date d = sdf.parse(req.getParameter("date"));
  70                                 if (d.getTime() > System.currentTimeMillis()) {
  71                                         outputError(out, req, "You must not enter a date in the future.");
  72                                         failed = true;
  73                                 }
  74                         } catch (ParseException e) {
  75                                 outputError(out, req, "You must enter the date in this format: YYYY-MM-DD.");
  76                                 failed = true;
  77                         }
  78                 }
  79                 // check location, min 3 characters
  80                 if (req.getParameter("location") == null || req.getParameter("location").equals("")) {
  81                         outputError(out, req, "You failed to enter a location of your meeting.");
  82                         failed = true;
  83                 } else if (req.getParameter("location").length() <= 2) {
  84                         outputError(out, req, "You must enter a location with at least 3 characters eg town and country.");
  85                         failed = true;
  86                 }
  87                 // TODO checkPoints
  88                 String points = req.getParameter("points");
  89                 if (points == null || "".equals(points)) {
  90                         // TODO message
  91                         failed = true;
  92                 }
  93                 if (failed) {
  94                         out.println("</div>");
  95                         return false;
  96                 }
  97                 try {
  98                         AssuranceResult success = Notary.assure(LoginPage.getUser(req), assuree,
  99                                 Integer.parseInt(req.getParameter("points")), req.getParameter("location"), req.getParameter("date"));
 100                         if (success != AssuranceResult.ASSURANCE_SUCCEDED) {
 101                                 outputError(out, req, success.getMessage());
 102                         }
 103                         out.println("</div>");
 104                         return success == AssuranceResult.ASSURANCE_SUCCEDED;
 105                 } catch (SQLException e) {
 106                         e.printStackTrace();
 107                 }
 108
 109                 out.println("</div>");
 110                 return false;
 111         }
 112
 113 }