Your new password has been stored. " +
"When you access another page in the building " +
"you will be prompted to log in again. You should use your " +
"new password.
" );
}
catch ( Exception ex )
{
out.println( "
There was a problem finding your user name and password data.
" );
return;
}
}
private void userdata( Request req, PrintWriter out, String item )
throws IOException
{
boolean canedit;
User user, currentuser;
UserDetail detail;
try
{
currentuser = (User)BuildingContext.getContext().getUser();
if ( currentuser == null )
{
out.println( "Technical problem - couldn't determine who you are." );
return;
}
user = getUserFromUrl(req, currentuser);
if ( user == null )
{
out.println( "Unspecified user." );
return;
}
// Can edit entry is current user has sysadmin access or if the
// current user has manage access and the target user
// belongs in the same adminsitrative zone or if the current user
// is looking at their own entry and has been given edit level access
// to the tool.
canedit =
isSysadminOrManageZone(req.getResource(), user, currentuser) ||
isUserEditable(req.getResource(), user, currentuser);
if ( item.equalsIgnoreCase( "button" ) && canedit )
{
out.println( "" );
out.println( "" );
return;
}
if ( item.equalsIgnoreCase( "user_id" ) )
{
out.println( user.getUserId().toString() );
return;
}
if ( item.equalsIgnoreCase( "name" ) )
{
if ( canedit )
out.print( "" );
return;
}
if ( item.equalsIgnoreCase( "surname" ) )
{
if ( canedit )
out.print( "" );
return;
}
if ( item.equalsIgnoreCase( "initials" ) )
{
if ( canedit )
out.print( "" );
return;
}
if ( item.equalsIgnoreCase( "user_name" ) )
{
PassPhrase pass = PassPhrase.findPassPhrase( user );
if ( pass==null )
{
out.println( "You don't have a user name" );
return;
}
out.println( pass.getUserName() );
return;
}
if ( item.equalsIgnoreCase( "web_auth" ) )
{
WebAuthUser webAuthUser = WebAuthUser.findWebAuthUser( user );
if ( webAuthUser==null )
{
out.println( "You don't have a WebAuth user name" );
return;
}
out.println( webAuthUser.getUserName() );
return;
}
if ( item.equalsIgnoreCase( "email_address" ) )
{
detail = UserDetail.findUserDetail( "user_id = " + user.getUserId() );
if ( canedit )
out.print( "" );
return;
}
if ( item.equalsIgnoreCase( "htmlfilter") )
{
boolean filtered = HtmlFilterFactory.isFiltered(user);
out.print("");
return;
}
if ( item.equalsIgnoreCase( "status" ) )
{
out.print("");
return;
}
if ( item.equalsIgnoreCase( "status_update" ) )
{
out.print("");
return;
}
out.println( "Unknown data item" );
}
catch ( Exception ex )
{
out.println( "
There was a problem finding your personal data.
\n" );
return;
}
}
/**
* Does the current user have sysadmin permission for the resource or
* is the user beging changed in the same zone as the one doing the change
* and the changer has manage rights.
* @param resource The resource at which the check is happening.
* @param user The user who is being changed.
* @param currentuser The user who is doing the changing.
* @return True if the change is allowed.
*/
private boolean isSysadminOrManageZone(Resource resource, User user, User currentuser)
{
return resource.checkPermission(Permission.SYSADMIN)
||
(resource.checkPermission(Permission.MANAGE) && user.getZoneId()
.equals(currentuser.getZoneId()));
}
private void confirmuserdata( UserManagementSession um_session, Request req, PrintWriter out )
throws IOException
{
String operation = req.getParameter( "op" );
if ( operation==null )
return;
if ( operation.equalsIgnoreCase( "userdata" ) )
saveuserdata( req, out );
if ( operation.equalsIgnoreCase( "resetusername" ) )
resetusername( um_session, req, out );
if ( operation.equalsIgnoreCase( "resetpassword" ) )
resetpassword( um_session, req, out );
if ( operation.equalsIgnoreCase( "usermemo" ) )
usermemo( req, out );
if ( operation.equalsIgnoreCase( "addcertificate" ) )
addcertificate( um_session, req, out );
if ( operation.equalsIgnoreCase( "saveoptions" ) )
saveOptions( um_session, req, out);
}
private void saveOptions(UserManagementSession session, Request req, PrintWriter out)
{
boolean canedit;
User user=null, currentuser;
try
{
currentuser = (User)BuildingContext.getContext().getUser();
if ( currentuser == null )
{
out.println( "Technical problem - couldn't determine who you are." );
return;
}
user = getUserFromUrl(req, currentuser);
if ( user == null )
{
out.println( "Unspecified user." );
return;
}
canedit =
isSysadminOrManageZone(req.getResource(), user, currentuser);
if ( !canedit )
{
out.println( "
You don't have the right to change this user's options.
" );
}
catch ( Exception ex )
{
logException( null, "UserDirectoryFacility", "addcertificate",
"There was a problem adding the certificate.",
ex );
out.println( "
There was a problem adding the certificate. Details may appear in the system error logs.
" );
return;
}
}
/**
* Users can be encoded into a URL and this method attempts to find the user.
* @param req The request containing a user ID in the URL.
* @param currentuser The default user to return.
* @return The found User.
* @throws BuildingServerException If we can't look for the user in the store.
*/
private User getUserFromUrl(Request req, User currentuser) throws BuildingServerException
{
String u;
PrimaryKey uid;
User user = currentuser;
if ( req.getTemplateParameterCount()!= 0)
{
uid = null;
user = null;
u = (String)req.getTemplateParameter( 0 );
try
{
if ( u!=null )
uid = new PrimaryKey( Integer.parseInt( u ) );
}
catch ( NumberFormatException nfex )
{
uid = null;
}
if ( uid!=null )
user = User.findUser( uid );
}
return user;
}
private void resetusername( UserManagementSession um_session, Request req, PrintWriter out )
throws IOException
{
boolean canedit;
String item, user_name=null, message=null;
User user=null, currentuser;
PassPhrase pass=null, currentpass;
try
{
currentuser = (User)BuildingContext.getContext().getUser();
if ( currentuser == null )
{
out.println( "Technical problem - couldn't determine who you are." );
return;
}
user = getUserFromUrl(req, currentuser);
if ( user == null )
{
out.println( "Unspecified user." );
return;
}
// Can edit entry is current user has sysadmin or manage access and
// belongs to same zone
// users can't reset their own user name
canedit =
isSysadminOrManageZone(req.getResource(), user, currentuser);
if ( !canedit )
{
out.println( "
You don't have the right to reset this user's password.
" );
pass = PassPhrase.findPassPhrase( user );
UserManagementEvent event =
new UserManagementEvent(
UserManagementEvent.EVENT_DATA_CHANGE,
req.getResource().getResourceId(),
currentuser.getUserId(),
currentuser.getUserId().equals( user.getUserId() )?null:user.getUserId(),
null,
"user name",
user_name,
pass.getUserName() );
event.save();
}
catch ( Exception ex )
{
logException( null, "UserDirectoryFacility", "resetusername",
"There was a problem saving personal data.",
ex );
return;
}
}
private void resetpassword( UserManagementSession um_session, Request req, PrintWriter out )
throws IOException
{
boolean canedit;
String item, oldpass=null, message=null;
User user=null, currentuser;
PassPhrase pass=null, currentpass;
try
{
currentuser = (User)BuildingContext.getContext().getUser();
if ( currentuser == null )
{
out.println( "Technical problem - couldn't determine who you are." );
return;
}
user = getUserFromUrl(req, currentuser);
if ( user == null )
{
out.println( "Unspecified user." );
return;
}
// Can edit entry is current user has sysadmin access or if the
// current user has manage access and the target user
// belongs in the same adminsitrative zone or if the current user
// is looking at their own entry and has been given edit level access
// to the tool.
canedit =
isSysadminOrManageZone(req.getResource(), user, currentuser) ||
isUserEditable(req.getResource(), user, currentuser);
if ( !canedit )
{
out.println( "
You don't have the right to reset this user's password.
" );
UserManagementEvent event =
new UserManagementEvent(
UserManagementEvent.EVENT_PASSPHRASE_RESET,
req.getResource().getResourceId(),
currentuser.getUserId(),
currentuser.getUserId().equals( user.getUserId() )?null:user.getUserId(),
null,
null,
null,
null );
event.save();
}
catch ( Exception ex )
{
logException( null, "UserDirectoryFacility", "resetpassword",
"There was a problem saving personal data.",
ex );
if ( oldpass!=null && message==null )
{
try
{
// This is ugly but going through the session means an encrypted
// password get re-encrypted.
pass.setPassPhrase( oldpass );
pass.save();
}
catch ( BuildingServerException bsex )
{
logException( null, "UserDirectoryFacility", "resetpassword",
"There was another problem trying to set the password back to its old value.",
bsex );
}
}
return;
}
}
private void saveuserdata( Request req, PrintWriter out )
throws IOException
{
boolean canedit;
int i, j;
char c;
String item, old_item, initials;
User user, currentuser;
UserManagementEvent event;
try
{
currentuser = (User)BuildingContext.getContext().getUser();
if ( currentuser == null )
{
out.println( "Technical problem - couldn't determine who you are." );
return;
}
user = getUserFromUrl(req, currentuser);
if ( user == null )
{
out.println( "Unspecified user." );
return;
}
// Can edit entry is current user has sysadmin access or if the
// current user has manage access and the target user
// belongs in the same adminsitrative zone or if the current user
// is looking at their own entry and has been given edit level access
// to the tool.
canedit =
isSysadminOrManageZone(req.getResource(), user, currentuser) ||
isUserEditable(req.getResource(), user, currentuser);
if ( !canedit )
{
out.println( "
You don't have the right to edit this user's personal data.
" );
return;
}
// Added email address as quick hack; method ideally needs to be re-written:
String[] fields =
{ "name", "surname", "initials", "email_address"};
for ( j=0; j< fields.length; j++ )
{
item = req.getParameter( fields[j] );
if ( item == null )
continue;
item = item.trim();
if ( j==2 )
{
initials = "";
for ( i=0; iThe initials field wasn't saved because it didn't contain any letters." );
continue;
}
item = initials;
}
if ( j!= 3 && item.length()<1 )
{
out.print( "
The " );
out.print( fields[j] );
out.println( " field wasn't saved because you can't leave this field empty.
\n" );
log.error( ex );
return;
}
}
private void usermemo( Request req, PrintWriter out )
throws IOException
{
boolean canedit;
String memo;
User user, currentuser;
UserManagementEvent event;
try
{
currentuser = (User)BuildingContext.getContext().getUser();
if ( currentuser == null )
{
out.println( "Technical problem - couldn't determine who you are." );
return;
}
user = getUserFromUrl(req, currentuser);
if ( user == null )
{
out.println( "Unspecified user." );
return;
}
// Can edit entry is current user has sysadmin access or if the
// current user has manage access and the target user
// belongs in the same adminsitrative zone or if the current user
// is looking at their own entry and has been given edit level access
// to the tool.
canedit =
isSysadminOrManageZone(req.getResource(), user, currentuser);
if ( !canedit )
{
out.println( "
You don't have the right to record memos against this user record.
\n" );
return;
}
}
public void usereventlog( Request req, PrintWriter out )
throws IOException
{
boolean canedit;
int j;
Event event;
StringBuffer where;
User user, currentuser;
if ( out==null )
return;
if ( !BuildingContext.getContext().checkPermission( Permission.MANAGE ) )
{
out.println( "You need manage access to view the log." );
return;
}
try
{
currentuser = (User)BuildingContext.getContext().getUser();
if ( currentuser == null )
{
out.println( "Technical problem - couldn't determine who you are." );
return;
}
user = getUserFromUrl(req, currentuser);
if ( user == null )
{
out.println( "Unspecified user." );
return;
}
// Can edit entry is current user has sysadmin access or if the
// current user has manage access and the target user
// belongs in the same adminsitrative zone or if the current user
// is looking at their own entry and has been given edit level access
// to the tool.
canedit =
isSysadminOrManageZone(req.getResource(), user, currentuser);
if ( !canedit )
{
out.println( "
You don't have the right to record memos against this user record.
" );
return;
}
where = new StringBuffer();
where.append( "type = 24 AND passive_user_id = " );
where.append( user.getUserId().toString() );
Enumeration enumeration = Event.findEvents( where.toString(), "event_time" );
PrintWriter writer = new PrintWriter( out );
for ( j=0; enumeration.hasMoreElements(); )
{
event=(Event)enumeration.nextElement();
if ( j==0 )
out.println( "
" );
}
catch ( Exception ex )
{
out.println( "There was a technical problem trying to get a list of events." );
out.println( ex.toString() );
return;
}
}
private void usersearchform( Request req, PrintWriter out, String item )
throws IOException
{
try
{
out.println( "" );
}
catch ( Exception ex )
{
out.println( "
There was a problem finding your users.
\n" );
return;
}
}
private boolean ifcanedituser( Request req )
throws IOException
{
boolean canedit;
User user, currentuser;
try
{
currentuser = (User)BuildingContext.getContext().getUser();
if ( currentuser == null )
return false;
user = getUserFromUrl(req, currentuser);
if ( user == null )
{
return false;
}
// Can edit entry is current user has sysadmin access or if the
// current user has manage access and the target user
// belongs in the same adminsitrative zone or if the current user
// is looking at their own entry and has been given edit level access
// to the tool.
canedit =
isSysadminOrManageZone(req.getResource(), user, currentuser) ||
isUserEditable(req.getResource(), user, currentuser);
}
catch ( Exception ex )
{
return false;
}
return canedit;
}
/**
* Check if the User is editable by the supplied user.
* It checks that the user has edit permissions for the resource and the
* two users are the same.
* @param resource The resource in which the edit is happening.
* @param user The user who is being edited.
* @param currentuser The user who is doing the editing.
* @return True if the edit can happen.
*/
private boolean isUserEditable(Resource resource, User user, User currentuser)
{
return ( resource.checkPermission( Permission.EDIT ) &&
user.getUserId().equals(currentuser.getUserId()) );
}
/**
* List all user group memberships, including the special group memberships.
* @throws IOException
*/
public void usergroups( Request req, PrintWriter out )
throws IOException
{
try
{
User user = getUserFromUrl(req, (User)req.getUserPrincipal());
out.println("
");
out.println("
User Group Memberships
");
//list regular groups memberships
Enumeration groups = Group.findGroups("name NOT LIKE 'localgroup%' AND group_id IN (SELECT group_id FROM members WHERE user_id = "+ user.getPrimaryKey()+ ")", "name");
if (!groups.hasMoreElements())
out.println("
No group membership found
");
while(groups.hasMoreElements())
{
Group group = (Group)groups.nextElement();
out.println("
Regular Group Member:
" + group.getName() + "
");
}
Enumeration specialGroups = Group.findGroups("special_group > 0", "name");
while(specialGroups.hasMoreElements())
{
Group group = (Group)specialGroups.nextElement();
if (user.isMember(group))
{
out.println("
Special Group Member:
" + group.getName() + "
");
}
}
out.println("
");
}
catch ( Exception ex )
{
out.println( "There was a technical problem trying to get a list of groups." );
out.println( ex.toString() );
return;
}
}
/**
* Gives user monitoring information.
*/
public void userMonitor(UserManagementSession um_session,Request req, PrintWriter out )
throws BuildingServerException
{
Iterator sessions = HttpSession.getAllSessions();
//filter and sort the sessions by the session creation time.
ArrayList sessionList = new ArrayList();
while(sessions.hasNext())
{
HttpSession session = (HttpSession)sessions.next();
if (session.getUserId() != null)
sessionList.add(session);
}
int activateCount = sessionList.size();
Comparator comp = new Comparator()
{
public int compare(Object o1,Object o2)
{
HttpSession session1 = (HttpSession)o1;
HttpSession session2 = (HttpSession)o2;
if (session1.getCreationTime() > session2.getCreationTime())
return 1;
else
return -1;
}
};
Collections.sort(sessionList,comp);
sessions = sessionList.iterator();
//output the user sessions info.
out.println("Refreshed Time: " +DateFormatter.formatDate(new Date(), DateFormatter.MEDIUM)+ " ");
out.println("Total Activate Session Count: " + activateCount);
out.println("
");
out.println("
" +
"
No
" +
"
User Id
" +
"
Name
" +
"
SessionCreationTime
"+
"
LastAccessedTime
"+
"
Idle Timeout
"+
"
VLE Location
"+
"
RemoteHost
"+
"
");
int n = 1;
BodingtonURL bodingtonUrl = new BodingtonURL(req);
while(sessions.hasNext())
{
out.println("