Users on project can remove encounters

JasonWildMe · JasonWildMe · commit 2ae8b6ec61e0 · 2026-01-04T15:04:16.000-08:00
Users (non-admins, non-owners) assigned to a project can now remove encounters from that project.
diff --git a/src/main/java/org/ecocean/servlet/ProjectUpdate.java b/src/main/java/org/ecocean/servlet/ProjectUpdate.java
@@ -81,6 +81,20 @@ public void doPost(HttpServletRequest request, HttpServletResponse response)
                                 addOrRemoveEncountersFromProject(project, myShepherd,
                                     encountersToAddJSONArr, "add", res, request);
                             }
+                            // Encounter removal uses same authorization as adding (project users can remove)
+                            if (canAddEncounters) {
+                                JSONArray encountersToRemoveJSONArr = projectJSON.optJSONArray(
+                                    "encountersToRemove");
+                                encountersToRemoveJSONArr = removeUnauthorizedEncounters(
+                                    encountersToRemoveJSONArr, myShepherd, request);
+                                if (encountersToRemoveJSONArr != null &&
+                                    encountersToRemoveJSONArr.length() > 0) {
+                                    System.out.println(
+                                        "Removing encounters from project...");
+                                    addOrRemoveEncountersFromProject(project, myShepherd,
+                                        encountersToRemoveJSONArr, "remove", res, request);
+                                }
+                            }
                             boolean canUpdate = isUserAuthorizedToUpdateProject(project, myShepherd,
                                 request);
                             System.out.println("is authorized to update project is " + canUpdate);
@@ -121,17 +135,6 @@ public void doPost(HttpServletRequest request, HttpServletResponse response)
                                     res.put("modified", true);
                                     res.put("success", true);
                                 }
-                                JSONArray encountersToRemoveJSONArr = projectJSON.optJSONArray(
-                                    "encountersToRemove");
-                                encountersToRemoveJSONArr = removeUnauthorizedEncounters(
-                                    encountersToRemoveJSONArr, myShepherd, request);
-                                if (encountersToRemoveJSONArr != null &&
-                                    encountersToRemoveJSONArr.length() > 0) {
-                                    System.out.println(
-                                        "this should not happen for mark encountersToRemoveJSONArr");
-                                    addOrRemoveEncountersFromProject(project, myShepherd,
-                                        encountersToRemoveJSONArr, "remove", res, request);
-                                }
                                 JSONArray usersToAddJSONArr = projectJSON.optJSONArray(
                                     "usersToAdd");
                                 if (usersToAddJSONArr != null && usersToAddJSONArr.length() > 0) {
