package org.cacert.gigi.pages.admin.support;
+import java.io.IOException;
import java.io.PrintWriter;
+import java.net.URLEncoder;
import java.util.Map;
import javax.servlet.http.HttpServletRequest;
import org.cacert.gigi.dbObjects.Name;
import org.cacert.gigi.dbObjects.SupportedUser;
import org.cacert.gigi.dbObjects.User;
+import org.cacert.gigi.email.Sendmail;
import org.cacert.gigi.localisation.Language;
import org.cacert.gigi.output.DateSelector;
import org.cacert.gigi.output.template.Form;
import org.cacert.gigi.output.template.Template;
+import org.cacert.gigi.pages.Page;
+import org.cacert.gigi.pages.PasswordResetPage;
+import org.cacert.gigi.util.RandomToken;
+import org.cacert.gigi.util.ServerConstants;
public class SupportUserDetailsForm extends Form {
private SupportedUser user;
+ private DateSelector dobSelector;
+
static {
t = new Template(FindDomainForm.class.getResource("SupportUserDetailsForm.templ"));
}
public SupportUserDetailsForm(HttpServletRequest hsr, SupportedUser user) {
super(hsr);
this.user = user;
+ dobSelector = new DateSelector("dobd", "dobm", "doby", user.getTargetUser().getDoB());
}
@Override
public boolean submit(PrintWriter out, HttpServletRequest req) throws GigiApiException {
-
- return false;
+ if (user.getTicket() == null) {
+ return false;
+ }
+ if (req.getParameter("resetPass") != null) {
+ String aword = req.getParameter("aword");
+ if (aword == null || aword.equals("")) {
+ throw new GigiApiException("An A-Word is required to perform a password reset.");
+ }
+ String ptok = RandomToken.generateToken(32);
+ int id = user.getTargetUser().generatePasswordResetTicket(Page.getUser(req), ptok, aword);
+ try {
+ Language l = Language.getInstance(user.getTargetUser().getPreferredLocale());
+ StringBuffer body = new StringBuffer();
+ body.append(l.getTranslation("Hi,") + "\n\n");
+ body.append(l.getTranslation("A password reset was triggered. Please enter the required text sent to you by support on this page: \nhttps://"));
+ body.append(ServerConstants.getWwwHostNamePortSecure() + PasswordResetPage.PATH);
+ body.append("?id=");
+ body.append(id);
+ body.append("&token=");
+ body.append(URLEncoder.encode(ptok, "UTF-8"));
+ body.append("\n");
+ body.append("\n");
+ body.append(l.getTranslation("Best regards"));
+ body.append("\n");
+ body.append(l.getTranslation("CAcert.org Support!"));
+ Sendmail.getInstance().sendmail(user.getTargetUser().getEmail(), "[CAcert.org] " + l.getTranslation("Password reset by support."), body.toString(), "support@cacert.org", null, null, null, null, false);
+ out.println(Page.getLanguage(req).getTranslation("Password reset successful."));
+ } catch (IOException e) {
+ e.printStackTrace();
+ }
+ return true;
+ }
+ dobSelector.update(req);
+ String fname = req.getParameter("fname");
+ String mname = req.getParameter("mname");
+ String lname = req.getParameter("lname");
+ String suffix = req.getParameter("suffix");
+ if (fname == null || mname == null || lname == null | suffix == null) {
+ throw new GigiApiException("Incomplete request!");
+ }
+ if ( !dobSelector.isValid()) {
+ throw new GigiApiException("Invalid date of birth!");
+ }
+ Name newName = new Name(fname, lname, mname, suffix);
+ if (user.setDob(dobSelector.getDate()) | user.setName(newName)) {
+ user.submitSupportAction();
+ }
+ return true;
}
@Override
vars.put("lname", name.getLname());
vars.put("suffix", name.getSuffix());
vars.put("assurer", user.canAssure());
- vars.put("dob", new DateSelector("dobd", "dobm", "doby", user.getDoB()));
+ vars.put("dob", dobSelector);
vars.put("blockedassurer", user.isInGroup(Group.BLOCKEDASSURER));
vars.put("codesign", user.isInGroup(Group.CODESIGNING));
vars.put("orgassurer", user.isInGroup(Group.ORGASSURER));
projects / gigi.git / blobdiff