/ctf-scoreserver forked from yoggy/ctf-scoreserver

Permalink
Switch branches/tags
Nothing to show
Find file Copy path
Fetching contributors…
Cannot retrieve contributors at this time
Raw Blame History
169 lines (147 sloc) 3.09 KB
#!/usr/bin/ruby
require 'rubygems'
require 'sinatra'
require 'digest/sha1'
require './config.rb'
require 'json'
require 'time'
require 'pp'
helpers do
def admin_session_clear
session.delete('admin')
end
def admin_block
if !session.key?('admin') || session['admin'] != true
redirect '/admin'
else
yield
end
end
end
get '/admin' do
admin_session_clear
erb :admin_login
end
post '/admin/login' do
p = params['password']
if !p.nil? && Digest::SHA1.hexdigest(p) == ADMIN_PASS_SHA1
session['admin'] = true
redirect '/admin/main'
else
redirect '/admin'
end
end
get '/admin/logout' do
admin_session_clear
redirect '/admin'
end
get '/admin/main' do
admin_block do
@challenges = Challenge.all
erb :admin_main
end
end
# for ajax
post '/admin/load' do
admin_block do
content_type :json
begin
c = Challenge.find(params['id'])
rescue Exception => e
pp e
end
if c != nil
j = {
:id => c.id,
:point => c.point,
:status => c.status,
:abstract => c.abstract,
:detail => c.detail,
:answer => c.answer,
:result => true
}
JSON.unparse(j)
else
JSON.unparse({:result => false, :err_msg => "challenge id=#{id} is not found.."})
end
end
end
#
post '/admin/save' do
c = Challenge.find_by_id(params['id'])
c ||= Challenge.new
admin_block do
c.id = params['id']
c.point = params['point']
c.status = params['status']
c.abstract = params['abstract']
c.detail = params['detail']
c.answer = params['answer']
c.save
redirect '/admin/main'
end
end
post '/admin/delete' do
admin_block do
begin
c = Challenge.find(params['id'])
c.delete
rescue Exception => e
pp e
end
redirect '/admin/main'
end
end
get '/admin/announcements' do
admin_block do
@announcements = Announcement.find(:all, :order => "time DESC")
erb :admin_announcements
end
end
post '/admin/load_announcement' do
admin_block do
content_type :json
begin
a = Announcement.find_by_id(params['id'], :first)
rescue Exception => e
pp e
end
if a != nil
j = {
:id => a.id,
:time => a.time.strftime("%Y-%m-%d %H:%M"),
:show => a.show.to_s,
:subject => a.subject,
:html => a.html,
:result => true
}
JSON.unparse(j)
else
JSON.unparse({:result => false, :err_msg => "announce id=#{id} is not found.."})
end
end
end
post '/admin/save_announcement' do
a = Announcement.find_by_id(params['id'])
a ||= Announcement.new
admin_block do
a.id = params['id']
a.time = Time.parse(params['time'])
a.show = params['show']
a.subject = params['subject']
a.html = params['html']
a.save
redirect '/admin/announcements'
end
end
post '/admin/delete_announcement' do
admin_block do
begin
a = Announcement.find(params['id'])
a.delete
rescue Exception => e
pp e
end
redirect '/admin/announcements'
end
end