@RequestMapping(value = IMAGES, method = POST) public String addImage( @RequestParam("image") MultipartFile file, DefaultMultipartHttpServletRequest request, Locale locale) throws IOException { // NOTE: Checking user rights and CSRF-Token needs to be done here because HttpUserService gains // NOTE org.eclipse.jetty.server.Request which is not able to handle parameters at // multipartrequests User currentUser = userService.getCurrentUser(false); if (!currentUser.isOm()) { throw new AccessDeniedException("Om rights required"); } userService.verifyCSRFToken(request); imageFinder.validateAndSaveFile(file); return redirectWithMessage( request.getHeader("Referer"), RequestMessage.EDITOR_UPLOAD_IMAGE, request); }