src/org/cacert/gigi/pages/wot/AssurePage.java

   1 package org.cacert.gigi.pages.wot;
   2
   3 import java.io.IOException;
   4 import java.io.InputStreamReader;
   5 import java.io.PrintWriter;
   6 import java.sql.PreparedStatement;
   7 import java.sql.ResultSet;
   8 import java.sql.SQLException;
   9 import java.util.HashMap;
  10
  11 import javax.servlet.http.HttpServletRequest;
  12 import javax.servlet.http.HttpServletResponse;
  13
  14 import org.cacert.gigi.User;
  15 import org.cacert.gigi.database.DatabaseConnection;
  16 import org.cacert.gigi.output.DateSelector;
  17 import org.cacert.gigi.output.Template;
  18 import org.cacert.gigi.pages.LoginPage;
  19 import org.cacert.gigi.pages.Page;
  20
  21 public class AssurePage extends Page {
  22         public static final String PATH = "/wot/assure/*";
  23         DateSelector ds = new DateSelector("day", "month", "year");
  24         Template t;
  25
  26         public AssurePage() {
  27                 super("Assure someone");
  28                 t = new Template(new InputStreamReader(
  29                                 AssurePage.class.getResourceAsStream("AssureeSearch.templ")));
  30         }
  31
  32         @Override
  33         public void doGet(HttpServletRequest req, HttpServletResponse resp)
  34                         throws IOException {
  35                 PrintWriter out = resp.getWriter();
  36
  37                 String pi = req.getPathInfo().substring(PATH.length() - 2);
  38                 if (pi.length() > 1) {
  39                         User myself = LoginPage.getUser(req);
  40                         int mid = Integer.parseInt(pi.substring(1));
  41                         if (mid == myself.getId()) {
  42                                 out.println("Cannot assure myself.");
  43                                 return;
  44                         }
  45
  46                         new AssuranceForm(mid).output(out, getLanguage(req),
  47                                         new HashMap<String, Object>());;
  48                 } else {
  49                         HashMap<String, Object> vars = new HashMap<String, Object>();
  50                         vars.put("DoB", ds);
  51                         t.output(out, getLanguage(req), vars);
  52                 }
  53         }
  54         @Override
  55         public void doPost(HttpServletRequest req, HttpServletResponse resp)
  56                         throws IOException {
  57                 PrintWriter out = resp.getWriter();
  58                 System.out.println("searching for");
  59                 try {
  60                         PreparedStatement ps = DatabaseConnection.getInstance().prepare(
  61                                         "SELECT id FROM users WHERE email=? AND dob=?");
  62                         ps.setString(1, req.getParameter("email"));
  63                         String day = req.getParameter("year") + "-"
  64                                         + req.getParameter("month") + "-" + req.getParameter("day");
  65                         ps.setString(2, day);
  66                         ResultSet rs = ps.executeQuery();
  67                         int id = 0;
  68                         if (rs.next()) {
  69                                 id = rs.getInt(1);
  70                         }
  71                         if (rs.next()) {
  72                                 out.println("Error, ambigous user. Please contact support@cacert.org");
  73                         } else {
  74                                 resp.sendRedirect(PATH.substring(0, PATH.length() - 2) + "/"
  75                                                 + id);
  76                         }
  77
  78                         rs.close();
  79                 } catch (SQLException e) {
  80                         e.printStackTrace();
  81                 }
  82         }
  83 }