function processGetUsersRequest($request) { $user_row = RequestUtils::testSession($request->sessionID); $prfx = DB_PREFIX; $user_type = $user_row['user_type']; $contest_id = RequestUtils::getRequestedContest($request->contestID, $user_row['contest_id'], $user_type); //make superadmin possible to get users of zero-contest if ($user_type == 'SuperAdmin' && ($request->contestID == 0 || $request->contestID == -1)) { $contest_id = 0; } if ($contest_id < 0 || $user_type === 'Participant') { throwBusinessLogicError(0); } $rows = Data::getRows(sprintf("SELECT * FROM {$prfx}user WHERE contest_id={$contest_id}")); $res = new GetUsersResponse(); $res->users = array(); while ($row = Data::getNextRow($rows)) { $ud = new UserDescription(); $ud->userID = (int) $row['id']; $ud->login = $row['login']; $ud->password = $row['password']; $ud->dataValue = Data::_unserialize($row['user_data'], array()); $ud->userType = $row['user_type']; $res->users[] = $ud; } return $res; }
function processSubmitSolutionRequest($request) { $prfx = DB_PREFIX; //get user_id or die, if session is invalid $userRow = RequestUtils::testSession($request->sessionID); $user_id = $userRow['id']; //authorize user for this operation // get contest ID $user_type = $userRow['user_type']; //get problem row $problem_row = Data::getRow(sprintf("SELECT * FROM {$prfx}problem WHERE id=%s", Data::quote_smart($request->problemID))); if (!$problem_row) { throwBusinessLogicError(4); } //get contest id of a problem $problem_contest_id = $problem_row['contest_id']; //test if we have rights to submit solution for the contest $contest_id = RequestUtils::getRequestedContest($problem_contest_id, $userRow['contest_id'], $user_type); if ($contest_id < 0) { throwBusinessLogicError(0); } //get all settings $contest_settings = Data::_unserialize($userRow['settings']); //test submission time $cur_time = getCurrentContestTime($contest_settings, DateMySQLToPHP($userRow['contest_start']), DateMySQLToPHP($userRow['contest_finish'])); if ($cur_time['interval'] === 'before') { throwBusinessLogicError(19); } if ($cur_time['interval'] === 'after') { throwBusinessLogicError(20); } $problem_settings = Data::_unserialize($problem_row['contest_settings']); //test that not all submission attempts were used $hist = Data::getRow(sprintf("SELECT COUNT(*) AS cnt FROM {$prfx}submission_history WHERE (problem_id=%s) AND (user_id=%s)", Data::quote_smart($request->problemID), Data::quote_smart($user_id))); if ($hist >= getSetting($contest_settings->problemsDefaultSettings->sendCount, $problem_settings->sendCount)) { throwBusinessLogicError(21); } //save submission result in history $cur_php_time = getdate(); $col_value = array(); $col_value['problem_id'] = $request->problemID; $col_value['user_id'] = $user_id; $col_value['submission'] = serialize($request->problemResult); $col_value['result'] = null; //serialize($check_result); $col_value['submission_time'] = DatePHPToMySQL($cur_php_time[0]); //TODO implement asynchronous plugin //get problem and create plugin $problem = new Problem(getProblemFile($request->problemID)); $plugin_alias = $problem->getServerPlugin(); require_once getServerPluginFile(); require_once getServerPluginFile($plugin_alias); $plugin = new $plugin_alias($problem); //check solution $last_result = $plugin->checkSolution(Data::getInsertedID(), $request->problemResult); $col_value['result'] = serialize($last_result); Data::submitModificationQuery(Data::composeInsertQuery('submission_history', $col_value)); //get result for result table and store in user $all_results = Data::_unserialize($userRow['results']); $user_result = ResultUtils::getUserResults($user_id, $request->problemID, getSetting($contest_settings->problemsDefaultSettings->tableResultChoice, $problem_settings->tableResultChoice), getSetting($contest_settings->problemsDefaultSettings->resultTransition, $problem_settings->resultTransition), $plugin, $last_result); //update user result for results table $all_results[$request->problemID] = $user_result; Data::submitModificationQuery(Data::composeUpdateQuery('user', array('results' => serialize($all_results)), 'id=' . Data::quote_smart($user_id))); //return submission result $res = new AcceptedResponse(); return $res; }
function processAdjustContestRequest($request) { if (!$request->contest) { throwBusinessLogicError(1, 'contest is null'); } //get user_id or die, if session is invalid $userRow = RequestUtils::testSession($request->sessionID); //authorize user for this operation // get contest ID $user_type = $userRow['user_type']; $contest_id = RequestUtils::getRequestedContest($request->contest->contestID, $userRow['contest_id'], $user_type); if ($user_type === "Participant") { $contest_id = -1; } if ($contest_id < 0) { throwBusinessLogicError(0); } queryForContestDescription($request->contest, $contest_id); //now adjust problems if (!is_null($request->problems)) { $tmp_files = queriesToAdjustProblems($request->problems, $contest_id); } Data::execPendingQueries(); $new_ids = Data::getInsertedIDs(); $id_ind = 0; //rename temporary files and fill responseIDs if (!is_null($request->problems)) { $responseIDs = array(); $probs_cnt = count($request->problems); for ($i = 0; $i < $probs_cnt; $i++) { $p = $request->problems[$i]; $tmp = $tmp_files[$i]; if ($tmp) { $new_id = $p->id; if ($new_id < 0) { $new_id = $new_ids[$id_ind++]; } @rename($tmp, getProblemFile($new_id)); $responseIDs[] = $new_id; } else { $responseIDs[] = $p->id; if ($p->id < 0) { //for new tasks it must have been created a temporary file throwServerProblem(202); } } } } else { $responseIDs = NULL; } $response = new AdjustContestResponse(); $response->problemIDs = $responseIDs; return $response; }
function processGetContestDataRequest($request) { $prfx = DB_PREFIX; $is_anonymous = is_null($request->sessionID); if (!$is_anonymous) { //get user_id or die, if session is invalid $userRow = RequestUtils::testSession($request->sessionID); $user_id = $userRow['id']; //authorize user for this operation // get contest ID $user_type = $userRow['user_type']; //compare requested contest and user contest $contest_id = RequestUtils::getRequestedContest($request->contestID, $userRow['contest_id'], $user_type); } else { $contest_id = $request->contestID; } if ($contest_id <= 0) { throwBusinessLogicError(0); } //create response $res = new GetContestDataResponse(); //fill contest description with data //query db $row = Data::getRow(sprintf("SELECT * FROM {$prfx}contest WHERE id=%s", Data::quote_smart($contest_id))) or throwBusinessLogicError(14); //TODO remove this code duplication, the code is similar to AvailableContests.php $c = Data::_unserialize($row['settings']); $c->contestID = (int) $row['id']; $res->contest = $c; //fill problem data if ($is_anonymous) { return $res; } //query db to find out problems $problems_rows = Data::getRows(sprintf("SELECT * FROM {$prfx}problem WHERE contest_id=%s ORDER BY contest_pos ASC", Data::quote_smart($contest_id))); //fill problems data $res->problems = array(); $info_type = $request->infoType; $extended_data = $request->extendedData; while ($row = Data::getNextRow($problems_rows)) { $pd = new ProblemDescription(); $res->problems[] = $pd; $pd->id = (int) $row['id']; $pd->settings = Data::_unserialize($row['contest_settings']); //do we need any information if ($info_type == 'NoInfo') { continue; } //do we need to return some info for this problem if (!is_null($extended_data) && !in_array($pd->id, $extended_data)) { continue; } $problem = new Problem(getProblemFile($pd->id)); if ($info_type !== 'NoInfo') { //fill extended data: statement or statementData and answerData if ($info_type === "ParticipantInfo") { $pd->problem = $problem->getParticipantVersion($user_id)->getProblemBytes(); } elseif ($info_type === "AdminInfo") { if ($user_type === "Participant") { throwBusinessLogicError(0); } $pd->problem = $problem->getProblemBytes(); } } } return $res; }
function processRegisterToContestRequest($request) { $prfx = DB_PREFIX; //get user_id or die, if session is invalid if (is_null($request->sessionID)) { if (!is_numeric($request->contestID)) { throwBusinessLogicError(14); } $contest_id = (int) $request->contestID; $request_user_type = '__Anonymous'; } else { $userRow = RequestUtils::testSession($request->sessionID); $request_user_id = $userRow['id']; $request_user_type = $userRow['user_type']; $contest_id = RequestUtils::getRequestedContest($request->contestID, $userRow['contest_id'], $request_user_type); //make possible for superadmin to register users of zero-contest if ($request_user_type == 'SuperAdmin' && ($request->contestID == 0 || $request->contestID == -1)) { $contest_id = 0; } if ($contest_id == -1) { throwBusinessLogicError(0); } } //test permissions if ($contest_id != 0) { $contest_row = Data::getRow(sprintf("SELECT * FROM {$prfx}contest WHERE id=%s", Data::quote_smart($contest_id))) or throwBusinessLogicError(14); //test if this contest gets users only by admins $contest_settings = @unserialize($contest_row['settings']); if ($contest_settings->registrationType === 'ByAdmins') { if ($request_user_type !== "ContestAdmin" && $request_user_type !== "SuperAdmin") { throwBusinessLogicError(0); } } } else { if ($request_user_type !== "ContestAdmin") { throwBusinessLogicError(0); } } //get user from request $u = $request->user; //test that superadmins are registered only for 0 contest if ($u->userType === 'SuperAdmin' && $contest_id != 0) { throwBusinessLogicError(18); } //test that there is no user with the same login in this contest if (Data::hasRows(sprintf("SELECT * FROM {$prfx}user WHERE contest_id=%s AND login=%s", Data::quote_smart($contest_id), Data::quote_smart($u->login)))) { throwBusinessLogicError(14); } //not participants may be added only by admins if ($u->userType !== "Participant") { if ($request_user_type !== "ContestAdmin" && $request_user_type !== "SuperAdmin") { throwBusinessLogicError(0); } } //add user finally $col_value = array(); $col_value['login'] = $u->login; $col_value['password'] = $u->password; $col_value['user_data'] = @serialize($u->dataValue); $col_value['contest_id'] = $contest_id; $col_value['user_type'] = $u->userType; $col_value['results'] = @serialize(array()); if (strlen($u->login) == 0) { throwBusinessLogicError(22); } if (week_password($u->password)) { throwBusinessLogicError(23); } Data::submitModificationQuery(Data::composeInsertQuery('user', $col_value)); return new AcceptedResponse(); }
function processGetContestResultsRequest($request) { $prfx = DB_PREFIX; //get $is_anonymous, $contest_id, $user_contest_row, $user_contest_start_time if (!is_null($request->sessionID)) { $is_anonymous = false; $user_contest_row = RequestUtils::testSession($request->sessionID); $contest_id = RequestUtils::getRequestedContest($request->contestID, $user_contest_row['contest_id'], $user_contest_row['user_type']); if ($contest_id < 0) { throwBusinessLogicError(14); } $user_contest_start_time = DateMySQLToPHP($user_contest_row['contest_start']); $user_contest_finish_time = DateMySQLToPHP($user_contest_row['contest_finish']); } else { $is_anonymous = true; $contest_id = $request->contestID; $user_contest_start_time = null; //contest was not started for anonymous $user_contest_finish_time = null; //and was not finished } //get $serialized_contest_settings $need_request_for_contest_data = $is_anonymous || $user_contest_row['user_type'] === 'SuperAdmin'; if ($need_request_for_contest_data) { if ($contest_id === 0) { throwBusinessLogicError(14); } $contest_row = Data::getRow(sprintf("SELECT *\r\n FROM {$prfx}contest\r\n WHERE id=%s\r\n ", Data::quote_smart($contest_id))); if (!$contest_row) { throwBusinessLogicError(14); } $serialized_contest_settings = $contest_row['settings']; } else { $serialized_contest_settings = $user_contest_row['settings']; } //get $contest_settings $contest_settings = Data::_unserialize($serialized_contest_settings); //get $is_admin $is_admin = !$is_anonymous && ($user_contest_row['user_type'] === 'SuperAdmin' || $user_contest_row['user_type'] === 'ContestAdmin'); //get $permission $ctime = getCurrentContestTime($contest_settings, $user_contest_start_time, $user_contest_finish_time); if (!$is_admin) { if ($ctime['interval'] === 'before') { throwBusinessLogicError(19); } if ($ctime['interval'] === 'contest' && !$ctime['is_ending']) { $permission = $contest_settings->resultsAccessPolicy->contestPermission; } else { if ($ctime['is_ending']) { $permission = $contest_settings->resultsAccessPolicy->contestEndingPermission; } else { if ($ctime['interval'] === 'after' && !$ctime['is_ending']) { $permission = $contest_settings->resultsAccessPolicy->afterContestPermission; } } } } else { $permission = 'FullAccess'; } //test rights if ($permission === 'NoAccess') { throwBusinessLogicError(0); } if ($is_anonymous && $permission === "OnlySelfResults") { throwBusinessLogicError(0); } //get problem rows $all_problems_rows = Data::getRows(sprintf("SELECT *\r\n FROM {$prfx}problem\r\n WHERE {$prfx}problem.contest_id=%s\r\n ORDER BY {$prfx}problem.contest_pos ASC", Data::quote_smart($contest_id))); //get users rows if ($permission === 'FullAccess') { $all_users_rows = Data::getRows(sprintf("SELECT *\r\n FROM {$prfx}user\r\n WHERE contest_id=%s", Data::quote_smart($contest_id))); } else { /* if $permission === 'OnlySelfResults'*/ $all_users_rows = $user_contest_row; } //create result $result = new GetContestResultsResponse(); //fill columns ids $result->headers = array(); $result->minorHeaders = array(); //the first column with 'user_id' and 'login' if ($is_admin) { $result->headers[] = 'admin info'; $result->minorHeaders[] = array('id', 'login'); } //column with participant data $result->headers[] = 'participant'; //get participant subcolumns $data_subs = array(); $contest_user_data = $contest_settings->data; if ($contest_user_data) { foreach ($contest_settings->data as $df) { if ($is_admin || $df->showInResult) { $data_subs[] = $df->data; } } } $result->minorHeaders[] = $data_subs; //columns with problems $problem_ids = array(); $problem_cols = array(); while ($problem_row = Data::getNextRow($all_problems_rows)) { $problem_ids[] = $problem_row['id']; $result->headers[] = $problem_row['name']; $col_names = Data::_unserialize($problem_row['column_names']); $result->minorHeaders[] = $col_names; $problem_cols[] = $col_names; } //fill results table $result->table = array(); if ($permission === 'OnlySelfResults') { $result->table[] = getTableRow($user_contest_row, $is_admin, $problem_ids, $problem_cols, $contest_settings->data); $result->userLine = 0; } else { $ind = 0; $result->userLine = -1; while ($user_row = Data::getNextRow($all_users_rows)) { $result->table[] = getTableRow($user_row, $is_admin, $problem_ids, $problem_cols, $contest_settings->data); if ($user_row['id'] == $user_contest_row['id']) { $result->userLine = $ind; } $ind++; } } return $result; }