Fix admin access

Change-Id: I6e7494da43c9da0ae4c7e16828ea23b783534961

Fix admin access
3b3cd4db · Larbi Gharib · 4046c28a · 3b3cd4db · 3b3cd4db
Commit 3b3cd4db authored 4 years ago by Larbi Gharib
--- a/jams-common/src/main/java/net/jami/jams/common/objects/user/User.java
+++ b/jams-common/src/main/java/net/jami/jams/common/objects/user/User.java
@@ -88,6 +88,10 @@ public class User extends X509Entity implements BlockchainEntity, DatabaseObject
        return ethKey;
    }

+    public String getAccessLevelName() {
+        return this.accessLevel.name();
+    }
+
    @Override
    public void setKey(String key) {
        this.ethKey = key;

--- a/jams-server/src/main/java/net/jami/jams/server/servlets/LoginServlet.java
+++ b/jams-server/src/main/java/net/jami/jams/server/servlets/LoginServlet.java
@@ -85,7 +85,7 @@ public class LoginServlet extends HttpServlet {
                statementList.addStatement(statementElement);
                User user =  dataStore.getUserDao().getObjects(statementList).get(0);
                if(certificateAuthority.getLatestCRL().get() != null) {
-                    if(certificateAuthority.getLatestCRL().get().getRevokedCertificate(user.getCertificate().getSerialNumber()) != null)
+                    if(!user.getAccessLevelName().equals("ADMIN") && certificateAuthority.getLatestCRL().get().getRevokedCertificate(user.getCertificate().getSerialNumber()) != null)
                        TomcatCustomErrorHandler.sendCustomError(resp, 401, "Invalid credentials provided!");
                }
            }