private boolean validate(HttpServletRequest request) throws DaoException { String cancerStudyID = request.getParameter(ID); if (cancerStudyID == null) { cancerStudyID = request.getParameter(QueryBuilder.CANCER_STUDY_ID); } CancerStudy cancerStudy = DaoCancerStudy.getCancerStudyByStableId(cancerStudyID); if (cancerStudy == null) { try { cancerStudy = DaoCancerStudy.getCancerStudyByInternalId(Integer.parseInt(cancerStudyID)); } catch (NumberFormatException ex) { } } if (cancerStudy == null) { request.setAttribute(ERROR, "No such cancer study"); return false; } String cancerStudyIdentifier = cancerStudy.getCancerStudyStableId(); if (accessControl.isAccessibleCancerStudy(cancerStudyIdentifier).size() != 1) { request.setAttribute( ERROR, "You are not authorized to view the cancer study with id: '" + cancerStudyIdentifier + "'. "); return false; } else { UserDetails ud = accessControl.getUserDetails(); if (ud != null) { logger.info("CancerStudyView.validate: Query initiated by user: "******"_all"; request.setAttribute(QueryBuilder.CASE_SET_ID, sampleListId); } SampleList sampleList = daoSampleList.getSampleListByStableId(sampleListId); if (sampleList == null) { request.setAttribute(ERROR, "Could not find sample list of '" + sampleListId + "'. "); return false; } request.setAttribute(QueryBuilder.CASE_IDS, sampleList.getSampleList()); request.setAttribute(CANCER_STUDY, cancerStudy); request.setAttribute(QueryBuilder.HTML_TITLE, cancerStudy.getName()); return true; }