From 5455212f844579b906488b025ea4142ee09aa31d Mon Sep 17 00:00:00 2001 From: Janis Streib Date: Tue, 13 Jan 2015 23:23:04 +0100 Subject: [PATCH] UPD: Restrict admin pages by "suuporter" group --- .../gigi/pages/admin/support/FindDomainPage.java | 10 ++++++++++ .../cacert/gigi/pages/admin/support/FindUserPage.java | 9 +++++++++ .../pages/admin/support/SupportUserDetailsPage.java | 9 +++++++++ 3 files changed, 28 insertions(+) diff --git a/src/org/cacert/gigi/pages/admin/support/FindDomainPage.java b/src/org/cacert/gigi/pages/admin/support/FindDomainPage.java index 5662fa1d..b6921ad3 100644 --- a/src/org/cacert/gigi/pages/admin/support/FindDomainPage.java +++ b/src/org/cacert/gigi/pages/admin/support/FindDomainPage.java @@ -1,5 +1,7 @@ package org.cacert.gigi.pages.admin.support; +import org.cacert.gigi.dbObjects.Group; +import org.cacert.gigi.dbObjects.User; import org.cacert.gigi.output.template.Form; import org.cacert.gigi.pages.OneFormPage; @@ -15,4 +17,12 @@ public class FindDomainPage extends OneFormPage { public String getSuccessPath(Form f) { return SupportUserDetailsPage.PATH + ((FindDomainForm) f).getUserId(); } + + @Override + public boolean isPermitted(User u) { + if (u == null) { + return false; + } + return u.isInGroup(Group.getByString("supporter")); + } } diff --git a/src/org/cacert/gigi/pages/admin/support/FindUserPage.java b/src/org/cacert/gigi/pages/admin/support/FindUserPage.java index 65d164d4..40d28cd5 100644 --- a/src/org/cacert/gigi/pages/admin/support/FindUserPage.java +++ b/src/org/cacert/gigi/pages/admin/support/FindUserPage.java @@ -8,6 +8,7 @@ import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import org.cacert.gigi.GigiApiException; +import org.cacert.gigi.dbObjects.Group; import org.cacert.gigi.dbObjects.User; import org.cacert.gigi.localisation.Language; import org.cacert.gigi.output.template.Form; @@ -63,4 +64,12 @@ public class FindUserPage extends Page { } } + @Override + public boolean isPermitted(User u) { + if (u == null) { + return false; + } + return u.isInGroup(Group.getByString("supporter")); + } + } diff --git a/src/org/cacert/gigi/pages/admin/support/SupportUserDetailsPage.java b/src/org/cacert/gigi/pages/admin/support/SupportUserDetailsPage.java index 46b4aca2..b9368e42 100644 --- a/src/org/cacert/gigi/pages/admin/support/SupportUserDetailsPage.java +++ b/src/org/cacert/gigi/pages/admin/support/SupportUserDetailsPage.java @@ -12,6 +12,7 @@ import javax.servlet.http.HttpServletResponse; import org.cacert.gigi.dbObjects.Certificate; import org.cacert.gigi.dbObjects.CertificateProfile; import org.cacert.gigi.dbObjects.EmailAddress; +import org.cacert.gigi.dbObjects.Group; import org.cacert.gigi.dbObjects.User; import org.cacert.gigi.localisation.Language; import org.cacert.gigi.output.DateSelector; @@ -93,4 +94,12 @@ public class SupportUserDetailsPage extends Page { }); getDefaultTemplate().output(resp.getWriter(), getLanguage(req), vars); } + + @Override + public boolean isPermitted(User u) { + if (u == null) { + return false; + } + return u.isInGroup(Group.getByString("supporter")); + } } -- 2.39.2