sub development() { ($ENV{PLACK_ENV} // 'development') eq 'development' }
-my $env;
+my ($env, $privacy);
sub db { $env->{'gruntmaster.dbic'} }
sub redirect { [301, ['X-Forever' => 1, 'Location' => $_[0]], []] }
sub reply { [200, ['Content-Type' => 'text/plain'], \@_] }
sub response {
- my ($template, $title, $params) = @_;
+ my ($template, $title, $params, $maxage) = @_;
unless ($params) {
$params = $title;
$title = 'No title';
}
$params->{time} = time;
- bless {template => $template, title => $title, params => $params}, __PACKAGE__.'::Response'
+ $params->{args} = {%_};
+ bless {template => $template, title => $title, params => $params, maxage => ($maxage // 1)}, __PACKAGE__.'::Response'
}
-sub forbid {
- return if !shift || admin;
+sub forbid {
+ my ($condition) = @_;
+ $privacy = 'private' if $condition;
+ return if !$condition || admin;
unwind FORBIDDEN, SUB UP
}
sub dispatch_request{
$env = $_[PSGI_ENV];
+ $privacy = 'public';
+
sub (GET) {
sub (/css/:theme) {
my $theme = $_{theme};
sub (/src/:job) {
return NOT_FOUND if !job;
- forbid job->private || job->problem->private || job->contest && job->contest->private;
+ my $isowner = remote_user && remote_user->id eq job->rawowner;
+ forbid !$isowner && (job->private || job->problem->private || job->contest && job->contest->is_running);
my @headers = ('X-Forever' => 1, 'Cache-Control' => 'public, max-age=604800', 'Content-Type' => CONTENT_TYPES->{job->format});
[200, \@headers, [job->source]]
},
},
sub (?:format~) {
- my $format = lc $_{format} // '';
+ my $format = lc ($_{format} // '');
response_filter {
my ($r) = @_;
return $r if ref $r ne 'Plack::App::Gruntmaster::Response';
- return [200, ['Content-Type' => 'application/json', 'X-Forever' => 1], [encode_json $r->{params}]] if $format eq 'json';
+ my @hdrs = ('X-Forever' => 1, 'Cache-Control' => "$privacy, max-age=$r->{maxage}");
+ push @hdrs, Vary => 'Authorization' if $privacy eq 'private';
+ return [200, ['Content-Type' => 'application/json', @hdrs], [encode_json $r->{params}]] if $format eq 'json';
my $ret = render $r->{template}, 'en', title => $r->{title}, %{$r->{params}};
- [200, ['Content-Type' => 'text/html'], [encode 'UTF-8', $ret]]
+ [200, ['Content-Type' => 'text/html', @hdrs], [encode 'UTF-8', $ret]]
},
},
sub (/st/:contest) {
response st => 'Standings', {
st => [ contest->standings ],
- problems => [map { $_->problem } contest->contest_problems],
- }
+ problems => [
+ map { [$_->id, $_->name] }
+ sort { $a->value <=> $b->value }
+ map { $_->problem } contest->contest_problems],
+ }, 10
+ },
+
+ sub (/ed/:contest) {
+ forbid contest->is_running;
+ response ed => 'Editorial of ' . contest->name, db->problem_list(contest => $_{contest}, solution => 1);
+ },
+
+ sub (/login) {
+ forbid !remote_user;
+
+ my $return = $env->{HTTP_REFERER} // '/';
+ [303, ['Set-Cookie' => "username=".remote_user->id, Location => $return], []]
},
sub (/ct/:contest/log/st) { redirect "/st/$_{contest}" },
sub (/us/) { response us => 'Users', {us => db->user_list} },
sub (/ct/ + ?:owner~) { response ct => 'Contests', db->contest_list(%_) },
- sub (/log/ + ?:contest~&:owner~&:page~&:problem~) { response log => 'Job list', {%{db->job_list(%_)}, maybe contest => $_{contest}} },
- sub (/pb/ + ?:owner~&:contest~) { response pb => 'Problems', {%{db->problem_list(%_)}, maybe contest => $_{contest}} },
+ sub (/log/ + ?:contest~&:owner~&:page~&:problem~&:private~) {
+ forbid $_{private};
+ response log => 'Job list', {%{db->job_list(%_)}, maybe contest => $_{contest},}
+ },
+ sub (/pb/ + ?:owner~&:contest~&:private~) {
+ forbid $_{private};
+ response pb => 'Problems', {%{db->problem_list(%_)}, maybe contest => $_{contest}}
+ },
sub (/us/:user) { response us_entry => user->name, db->user_entry($_{user}) },
sub (/ct/:contest) { response ct_entry => contest->name, db->contest_entry($_{contest}) },
- sub (/log/:job) { response log_entry => "Job $_{job}", db->job_entry($_{job}) },
+ sub (/log/:job) {
+ forbid job->private;
+ response log_entry => "Job $_{job}", db->job_entry($_{job})
+ },
sub (/pb/:problem + ?contest~) {
my (undef, undef, $contest) = @_;
$_{contest} = $contest;
return NOT_FOUND if !contest && !problem->is_in_archive || contest && !db->contest_problems->find($_{contest}, $_{problem});
forbid problem->is_private;
- response pb_entry => problem->name, db->problem_entry($_{problem}, $_{contest}, remote_user && remote_user->id);
+ if (contest && contest->is_running) {
+ forbid !remote_user;
+ $privacy = 'private';
+ }
+ response pb_entry => problem->name, {%{db->problem_entry($_{problem}, $_{contest}, remote_user && remote_user->id)}, maybe contest => $_{contest}};
},
sub (/sol/:problem) {
forbid !problem->is_in_archive;
},
sub (/) { redispatch_to '/index' },
- sub (/:article) { [200, ['Content-Type' => 'text/html'], [render_article $_{article}, 'en']] }
+ sub (/favicon.ico) { redirect '/static/favicon.ico' },
+ sub (/:article) { [200, ['Content-Type' => 'text/html', 'Cache-Control' => 'public, max-age=60', 'X-Forever' => 1], [render_article $_{article}, 'en']] }
},
sub (POST) {
- sub (/action/register + %:username=&:password=&:confirm_password=&:name=&:email=&:phone=&:town=&:university=&:level=) {
+ sub (/action/register + %:username=&:password=&:confirm_password=&:name=&:email=&:phone=&:town=&:university=&:country=&:level=) {
return reply 'Parameter too long' if grep { length > 200 } values %_;
return reply 'Bad username. Allowed characters are letters, digits and underscores, and the username must be between 2 and 20 characters long.' unless $_{username} =~ USER_REGEX;
return reply 'Username already in use' if db->user($_{username});
return reply 'The two passwords do not match' unless $_{password} eq $_{confirm_password};
- db->users->create({id => $_{username}, name => $_{name}, email => $_{email}, phone => $_{phone}, town => $_{town}, university => $_{university}, level => $_{level}});
+ db->users->create({id => $_{username}, name => $_{name}, email => $_{email}, phone => $_{phone}, town => $_{town}, university => $_{university}, country => $_{country}, level => $_{level}});
db->user($_{username})->set_passphrase($_{password});
+ purge '/us/';
reply 'Registered successfully';
},
reply 'Password changed successfully';
},
- sub (/action/submit + %:problem=&:contest~&:prog_format=&:private~&:source_code~ + *:prog~) {
+ sub (/action/submit + %:problem=&:contest~&:prog_format=&:source_code~ + *prog~) {
+ my (undef, undef, $prog) = @_;
forbid !remote_user;
return reply 'This contest has finished' if contest && contest->is_finished;
return reply 'This contest has not yet started' if !admin && contest && contest->is_pending;
- return reply 'Maximum source size is 10KB' if ($_{prog} ? $_{prog}->size : length $_{source_code}) > 10 * 1024;
+ return reply 'This problem does not belong to this contest' if !contest && !problem->is_in_archive || contest && !db->contest_problems->find($_{contest}, $_{problem});
+ return reply 'Maximum source size is 10KB' if ($prog ? $prog->size : length $_{source_code}) > 10 * 1024;
return reply 'You must wait 30 seconds between jobs' if !admin && time <= remote_user->lastjob + 30;
remote_user->update({lastjob => time});
- my $prog = $_{prog} ? read_file $_{prog}->path : $_{source_code};
- unlink $_{prog}->path if $_{prog};
- db->jobs->create({
+ my $source = $prog ? read_file $prog->path : $_{source_code};
+ unlink $prog->path if $prog;
+ my $private = (problem->private && !$_{contest}) ? 1 : 0;
+ my $newjob = db->jobs->create({
maybe contest => $_{contest},
- maybe private => $_{private},
+ private => $private,
date => time,
extension => FORMAT_EXTENSION->{$_{prog_format}},
format => $_{prog_format},
problem => $_{problem},
- source => $prog,
+ source => $source,
owner => remote_user->id,
});
- redirect $_{contest} ? "/log/?contest=$_{contest}" : '/log/';
+ purge '/log/';
+ [303, [Location => '/log/' . $newjob->id], []]
}
}
}