import org.cacert.gigi.output.GroupIterator;
import org.cacert.gigi.output.GroupSelector;
import org.cacert.gigi.output.template.Form;
-import org.cacert.gigi.output.template.Outputable;
-import org.cacert.gigi.output.template.SprintfCommand;
import org.cacert.gigi.output.template.Template;
-import org.cacert.gigi.output.template.TranslateCommand;
-import org.cacert.gigi.pages.PasswordResetPage;
+import org.cacert.gigi.pages.LoginPage;
public class SupportUserDetailsForm extends Form {
private GroupSelector value = new GroupSelector("groupToModify", true);
+ private boolean wasWithPasswordReset = false;
+
public SupportUserDetailsForm(HttpServletRequest hsr, SupportedUser user) {
super(hsr);
this.user = user;
}
@Override
- public boolean submit(PrintWriter out, HttpServletRequest req) throws GigiApiException {
+ public boolean submit(HttpServletRequest req) throws GigiApiException {
if (user.getTicket() == null) {
- return false;
+ throw new GigiApiException("No ticket number set.");
+ }
+ if (user.getTargetUser() == LoginPage.getUser(req)) {
+ throw new GigiApiException("Supporter may not modify himself.");
}
if ((req.getParameter("detailupdate") != null ? 1 : 0) + (req.getParameter("addGroup") != null ? 1 : 0) + (req.getParameter("removeGroup") != null ? 1 : 0) + (req.getParameter("resetPass") != null ? 1 : 0) != 1) {
throw new GigiApiException("More than one action requested!");
}
if (req.getParameter("addGroup") != null || req.getParameter("removeGroup") != null) {
- String actionType = "granted";
value.update(req);
Group toMod = value.getGroup();
if (req.getParameter("addGroup") != null) {
user.grant(toMod);
} else {
- actionType = "revoked";
user.revoke(toMod);
}
- String subject = "Change Group Permissions";
- Outputable message = SprintfCommand.createSimple("The group permission {0} was {1}.", toMod.getDatabaseName(), actionType);
- user.sendSupportNotification(subject, message);
return true;
}
if (req.getParameter("resetPass") != null) {
if (aword == null || aword.equals("")) {
throw new GigiApiException("An A-Word is required to perform a password reset.");
}
- Language l = Language.getInstance(user.getTargetUser().getPreferredLocale());
- String method = l.getTranslation("A password reset was triggered. Please enter the required text sent to you by support on this page:");
- String subject = l.getTranslation("Password reset by support.");
- PasswordResetPage.initPasswordResetProcess(out, user.getTargetUser(), req, aword, l, method, subject);
- Outputable message = new TranslateCommand("A password reset was triggered and an email was sent to user.");
- user.sendSupportNotification(subject, message);
+ user.triggerPasswordReset(aword, req);
+ wasWithPasswordReset = true;
return true;
}
dobSelector.update(req);
throw new GigiApiException("Invalid date of birth!");
}
user.setDob(dobSelector.getDate());
-
- String subject = "Change Account Data";
- Outputable message = new TranslateCommand("The account data was changed.");
- user.sendSupportNotification(subject, message);
return true;
}
+ public boolean wasWithPasswordReset() {
+ return wasWithPasswordReset;
+ }
+
@Override
protected void outputContent(PrintWriter out, Language l, Map<String, Object> vars) {
User user = this.user.getTargetUser();
projects / gigi.git / blobdiff