From 6f866a06ca1566d73fa4899d685364fd7375d909 Mon Sep 17 00:00:00 2001 From: Maxime Dagnicourt Date: Mon, 25 Feb 2008 10:25:16 +0000 Subject: [PATCH] --- .../controller/EvaluationController.java | 19 ++++++++++++++++++- 1 file changed, 18 insertions(+), 1 deletion(-) diff --git a/YACOSWeb/src/org/yacos/web/PCmember/controller/EvaluationController.java b/YACOSWeb/src/org/yacos/web/PCmember/controller/EvaluationController.java index 08f66e0..2598f6b 100644 --- a/YACOSWeb/src/org/yacos/web/PCmember/controller/EvaluationController.java +++ b/YACOSWeb/src/org/yacos/web/PCmember/controller/EvaluationController.java @@ -75,16 +75,33 @@ public class EvaluationController extends SimpleFormController { protected Object formBackingObject(HttpServletRequest request) throws Exception { + Conference conf = SessionService.getInstance().getCurrentConference(); + String memberId = SessionService.getInstance().getCurrentUserLogin(); + + List criterionList = evaluationManager.getCriterions(conf.getId()); String articleId = request.getParameter("id"); String action = request.getParameter("action"); + boolean haveArticle = false; + List
listarticles = articleManager.getArticlesOfMember(conf.getId(), memberId); + for (Article article : listarticles) { + if(article.getId() == Integer.parseInt(articleId)){ + haveArticle = true; + } + } + if(!haveArticle){ + throw new ModelAndViewDefiningException(new ModelAndView("denied")); + } // TODO : verifier que le gars a le droit d'evaluer cette article // TODO : s'il existe deja une al, mais que l'action est pas modify, virer le gars if (action == null || action.equals("")) { - + Report report = evaluationManager.getReportforArticleAndReferee(Integer.parseInt(articleId), memberId); + if(report != null){ + throw new ModelAndViewDefiningException(new ModelAndView("denied")); + } try { Integer id = new Integer(articleId); Article a = articleManager.getArticle(id);