From ef5adce6630cdf52af12067555604c44b72ac19f Mon Sep 17 00:00:00 2001
From: Jaan Janno <jaan911@ut.ee>
Date: Sun, 4 Dec 2016 20:35:48 +0200
Subject: [PATCH] Added authentication for statistics. Fix #140

---
 .../ee/avok/consultation/controller/StatisticsController.java | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/main/java/ee/avok/consultation/controller/StatisticsController.java b/src/main/java/ee/avok/consultation/controller/StatisticsController.java
index 3399926..6547521 100644
--- a/src/main/java/ee/avok/consultation/controller/StatisticsController.java
+++ b/src/main/java/ee/avok/consultation/controller/StatisticsController.java
@@ -52,8 +52,8 @@ public String statisticsPage(Model model, @CookieValue(value = "session", defaul
 
 	@RequestMapping("/statistics/{period}")
 	public String getStatistics(Model model,@PathVariable("period") String period,
-			@CookieValue(value = "session", defaultValue = "none") String session){
-		
+			@CookieValue(value = "session", defaultValue = "none") String session) throws UnauthorizedException{
+		authServ.authenticateRequestForRole(session, Role.ADMINISTRATOR);
 		StatisticsDTO stats = statServ.getStatistics(period);
 		model.addAttribute("stats", stats);