Merge "Update notes about password security"

[gigi.git] / src / org / cacert / gigi / pages / account / certs / CertificateAdd.java

diff --git a/src/org/cacert/gigi/pages/account/certs/CertificateAdd.java b/src/org/cacert/gigi/pages/account/certs/CertificateAdd.java
index 2d55d5651aac155d108074c6d1b049edc154a30a..e37b930cd040a835e7baca178f4d490c4115c7f7 100644 (file)
--- a/src/org/cacert/gigi/pages/account/certs/CertificateAdd.java
+++ b/src/org/cacert/gigi/pages/account/certs/CertificateAdd.java
@@ -9,8 +9,10 @@ import javax.servlet.http.HttpServletResponse;
 
 import org.cacert.gigi.dbObjects.Certificate;
 import org.cacert.gigi.dbObjects.Certificate.CertificateStatus;
+import org.cacert.gigi.dbObjects.Group;
 import org.cacert.gigi.output.template.Form;
 import org.cacert.gigi.pages.Page;
+import org.cacert.gigi.util.AuthorizationContext;
 
 public class CertificateAdd extends Page {
 
@@ -41,8 +43,12 @@ public class CertificateAdd extends Page {
             }
             resp.sendRedirect(Certificates.PATH + "/" + ser);
         }
-        f.output(resp.getWriter(), getLanguage(req), Collections.<String,Object>emptyMap());
+        f.output(resp.getWriter(), getLanguage(req), Collections.<String, Object>emptyMap());
 
     }
 
+    @Override
+    public boolean isPermitted(AuthorizationContext ac) {
+        return super.isPermitted(ac) && !ac.isInGroup(Group.BLOCKEDCERT);
+    }
 }