add: Allow multiple names, name-schemes, multi-name-assurance, etc.

[gigi.git] / src / org / cacert / gigi / util / AuthorizationContext.java
diff --git a/src/org/cacert/gigi/util/AuthorizationContext.java b/src/org/cacert/gigi/util/AuthorizationContext.java

index 4a329a9fd3f1812f92d69795244c7dea567c8b64..8098eeed5aa742cebd3250554098bcb6ffc75ce6 100644 (file)
--- a/src/org/cacert/gigi/util/AuthorizationContext.java
+++ b/src/org/cacert/gigi/util/AuthorizationContext.java
@@ -1,20 +1,40 @@
  package org.cacert.gigi.util;
  
+import java.io.PrintWriter;
+import java.util.Arrays;
+import java.util.Map;
+
+import org.cacert.gigi.GigiApiException;
  import org.cacert.gigi.dbObjects.CertificateOwner;
  import org.cacert.gigi.dbObjects.Group;
+import org.cacert.gigi.dbObjects.Organisation;
  import org.cacert.gigi.dbObjects.User;
+import org.cacert.gigi.localisation.Language;
+import org.cacert.gigi.output.template.Outputable;
+import org.cacert.gigi.output.template.SprintfCommand;
  
-public class AuthorizationContext {
+public class AuthorizationContext implements Outputable {
  
      CertificateOwner target;
  
      User actor;
  
+    String supporterTicketId;
+
      public AuthorizationContext(CertificateOwner target, User actor) {
          this.target = target;
          this.actor = actor;
      }
  
+    public AuthorizationContext(User actor, String supporterTicket) throws GigiApiException {
+        this.target = actor;
+        this.actor = actor;
+        if ( !isInGroup(Group.SUPPORTER)) {
+            throw new GigiApiException("requires a supporter");
+        }
+        supporterTicketId = supporterTicket;
+    }
+
      public CertificateOwner getTarget() {
          return target;
      }
@@ -23,7 +43,56 @@ public class AuthorizationContext {
          return actor;
      }
  
-    public boolean hasRight(Group g) {
+    public boolean isInGroup(Group g) {
          return actor.isInGroup(g);
      }
+
+    public User getActor(AuthorizationContext ac) {
+        if (ac == null) {
+            return null;
+        }
+        return ac.getActor();
+    }
+
+    public String getSupporterTicketId() {
+        return supporterTicketId;
+    }
+
+    public boolean canSupport() {
+        return getSupporterTicketId() != null && isInGroup(Group.SUPPORTER);
+    }
+
+    private static final SprintfCommand sp = new SprintfCommand("Logged in as {0} via {1}.", Arrays.asList("${username}", "${loginMethod}"));
+
+    private static final SprintfCommand inner = new SprintfCommand("{0} (on behalf of {1})", Arrays.asList("${user}", "${target}"));
+
+    @Override
+    public void output(PrintWriter out, Language l, Map<String, Object> vars) {
+        out.println("<div>");
+        vars.put("username", new Outputable() {
+
+            @Override
+            public void output(PrintWriter out, Language l, Map<String, Object> vars) {
+                if (target != actor) {
+                    vars.put("user", ((Organisation) target).getName().toString());
+                    vars.put("target", actor.getPreferredName().toString());
+                    inner.output(out, l, vars);
+                } else {
+                    out.println(actor.getPreferredName().toString());
+                }
+            }
+        });
+        sp.output(out, l, vars);
+        out.println("</div>");
+        if (supporterTicketId != null) {
+            out.println("<div>");
+            out.println(l.getTranslation("SupportTicket: "));
+            out.println(HTMLEncoder.encodeHTML(supporterTicketId));
+            out.println("</div>");
+        }
+    }
+
+    public boolean canAssure() {
+        return target instanceof User && ((User) target).canAssure();
+    }
  }