robustness

2017-08-01 23:51:00 +02:00 · 2017-08-01 23:51:00 +02:00 · 5f8d5e776d
commit 5f8d5e776d
parent ac85bdafd7
1 changed files with 11 additions and 8 deletions
--- a/src/zall/Zallery.java
+++ b/src/zall/Zallery.java
@ -92,15 +92,18 @@ public class Zallery extends HttpServlet{
 			
 			// Verify email address
 			if( action.equalsIgnoreCase("verfemail") ){
-				User verfuser = User.load(db, Long.parseLong(request.getParameter("id")));
-				if( verfuser.verifyEmail(request.getParameter("hash")) ){
-					ZalleryEmail.sendNewUserRegistrationToAdmin(verfuser, db);
-					verfuser.save(db);
-					msgs.add(MessageType.INFO, "Your email has been successfully verified.");
-					msgs.add(MessageType.WARNING, "The account is waiting account activation by an admin.");					
+				User verfUser = User.load(db, Long.parseLong(request.getParameter("id")));
+				if (verfUser != null) {
+					if( verfUser.verifyEmail(request.getParameter("hash")) ){
+						ZalleryEmail.sendNewUserRegistrationToAdmin(verfUser, db);
+						verfUser.save(db);
+						msgs.add(MessageType.INFO, "Your email has been successfully verified.");
+						msgs.add(MessageType.WARNING, "The account is waiting account activation by an admin.");
+					}
+					else
+						msgs.add(MessageType.ERROR, "Email verification failed!");
 				}
-				else
-					msgs.add(MessageType.ERROR, "Email verification failed!");
+				else msgs.add(MessageType.ERROR, "Invalid user id: "+request.getParameter("id"));
 			}
 			// auth with cookie
 			if( user == null ){