Bugzilla BZ 673609: CC: authorize() call needs to be added to getStats servlet

git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1881 c9f7a03b-bd48-0410-a16d-cbbf54688b0b

1 files changed, 16 insertions, 0 deletions

diff --git a/pki/base/common/src/com/netscape/cms/servlet/base/GetStats.java b/pki/base/common/src/com/netscape/cms/servlet/base/GetStats.java
index d16ce7598..74c6cf445 100644
--- a/pki/base/common/src/com/netscape/cms/servlet/base/GetStats.java
+++ b/pki/base/common/src/com/netscape/cms/servlet/base/GetStats.java
@@ -95,6 +95,22 @@ public class GetStats extends CMSServlet {
         IAuthToken authToken = authenticate(cmsReq);
         AuthzToken authzToken = null;
 
+        try {
+            authzToken = authorize(mAclMethod, authToken,
+                        mAuthzResourceName, "read");
+        } catch (EAuthzAccessDenied e) {
+            log(ILogger.LL_FAILURE,
+                CMS.getLogMessage("ADMIN_SRVLT_AUTH_FAILURE", e.toString()));
+        } catch (Exception e) {
+            log(ILogger.LL_FAILURE,
+                CMS.getLogMessage("ADMIN_SRVLT_AUTH_FAILURE", e.toString()));
+        }
+
+        if (authzToken == null) {
+            cmsReq.setStatus(CMSRequest.UNAUTHORIZED);
+            return;
+        }
+
         // Construct an ArgBlock
         IArgBlock args = cmsReq.getHttpParams();