add restrictions
Fox Wilson
parent
446ca0887d
commit
a37137f709
12
app.py
12
app.py
|
|
@ -22,6 +22,7 @@ logging.basicConfig(level=logging.DEBUG)
|
|||
def make_info_available():
|
||||
if "team_id" in session:
|
||||
g.team = Team.get(Team.id == session["team_id"])
|
||||
g.team_restricts = g.team.restricts.split(",")
|
||||
|
||||
@app.context_processor
|
||||
def scoreboard_variables():
|
||||
|
|
@ -192,6 +193,7 @@ def dashboard():
|
|||
return redirect(url_for('dashboard'))
|
||||
|
||||
@app.route('/challenges/')
|
||||
@decorators.must_be_allowed_to("view challenges")
|
||||
@decorators.competition_running_required
|
||||
@decorators.confirmed_email_required
|
||||
def challenges():
|
||||
|
|
@ -202,6 +204,8 @@ def challenges():
|
|||
return render_template("challenges.html", challenges=chals, solved=solved, categories=categories, solves=solves)
|
||||
|
||||
@app.route('/challenges/<int:challenge>/solves/')
|
||||
@decorators.must_be_allowed_to("view challenge solves")
|
||||
@decorators.must_be_allowed_to("view challenges")
|
||||
@decorators.competition_running_required
|
||||
@decorators.confirmed_email_required
|
||||
def challenge_show_solves(challenge):
|
||||
|
|
@ -210,6 +214,8 @@ def challenge_show_solves(challenge):
|
|||
return render_template("challenge_solves.html", challenge=chal, solves=solves)
|
||||
|
||||
@app.route('/submit/<int:challenge>/', methods=["POST"])
|
||||
@decorators.must_be_allowed_to("solve challenges")
|
||||
@decorators.must_be_allowed_to("view challenges")
|
||||
@decorators.competition_running_required
|
||||
@decorators.confirmed_email_required
|
||||
def submit(challenge):
|
||||
|
|
@ -223,11 +229,14 @@ def submit(challenge):
|
|||
# Trouble tickets
|
||||
|
||||
@app.route('/tickets/')
|
||||
@decorators.must_be_allowed_to("view tickets")
|
||||
@decorators.login_required
|
||||
def team_tickets():
|
||||
return render_template("tickets.html", tickets=list(g.team.tickets))
|
||||
|
||||
@app.route('/tickets/new/', methods=["GET", "POST"])
|
||||
@decorators.must_be_allowed_to("submit tickets")
|
||||
@decorators.must_be_allowed_to("view tickets")
|
||||
@decorators.login_required
|
||||
def open_ticket():
|
||||
if request.method == "GET":
|
||||
|
|
@ -241,6 +250,7 @@ def open_ticket():
|
|||
return redirect(url_for("team_ticket_detail", ticket=ticket.id))
|
||||
|
||||
@app.route('/tickets/<int:ticket>/')
|
||||
@decorators.must_be_allowed_to("view tickets")
|
||||
@decorators.login_required
|
||||
def team_ticket_detail(ticket):
|
||||
try:
|
||||
|
|
@ -257,6 +267,8 @@ def team_ticket_detail(ticket):
|
|||
return render_template("ticket_detail.html", ticket=ticket, comments=comments)
|
||||
|
||||
@app.route('/tickets/<int:ticket>/comment/', methods=["POST"])
|
||||
@decorators.must_be_allowed_to("comment on tickets")
|
||||
@decorators.must_be_allowed_to("view tickets")
|
||||
def team_ticket_comment(ticket):
|
||||
try:
|
||||
ticket = TroubleTicket.get(TroubleTicket.id == ticket)
|
||||
|
|
|
|||
|
|
@ -4,7 +4,7 @@ ctf_name = "TJCTF"
|
|||
eligibility = "In order to be eligible for prizes, all members of your team must be in high school, and you must not have more than four team members."
|
||||
tagline = "a cybersecurity competition created by TJHSST students"
|
||||
|
||||
cdn = True
|
||||
cdn = False
|
||||
apisubmit = True
|
||||
|
||||
proxied_ip_header = "X-Forwarded-For"
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ class Team(BaseModel):
|
|||
first_login = BooleanField(default=True)
|
||||
email_confirmed = BooleanField(default=False)
|
||||
email_confirmation_key = CharField()
|
||||
restricts = TextField(default="")
|
||||
key = CharField()
|
||||
|
||||
def solved(self, challenge):
|
||||
|
|
|
|||
|
|
@ -5,6 +5,8 @@ from ctferror import *
|
|||
|
||||
api = Blueprint("api", "api", url_prefix="/api")
|
||||
@api.route("/submit/<int:challenge>.json", methods=["POST"])
|
||||
@decorators.must_be_allowed_to("solve challenges")
|
||||
@decorators.must_be_allowed_to("view challenges")
|
||||
@decorators.competition_running_required
|
||||
@decorators.confirmed_email_required
|
||||
def submit_api(challenge):
|
||||
|
|
|
|||
|
|
@ -44,6 +44,14 @@
|
|||
</nav>
|
||||
</div>
|
||||
<div class="container">
|
||||
{% if session.admin %}
|
||||
<div class="card red darken-3">
|
||||
<div class="card-content white-text">
|
||||
<span class="card-title">You are an admin.</span>
|
||||
Please note that team restrictions do not currently apply.
|
||||
</div>
|
||||
</div>
|
||||
{% endif %}
|
||||
{% for notification in notifications %}
|
||||
<div class="card yellow darken-2" id="notification{{ notification.id }}" onclick="dismissNotification({{ notification.id }});" style="cursor: hand;">
|
||||
<div class="card-content">
|
||||
|
|
|
|||
|
|
@ -11,6 +11,17 @@ def login_required(f):
|
|||
return f(*args, **kwargs)
|
||||
return decorated
|
||||
|
||||
def must_be_allowed_to(thing):
|
||||
def _must_be_allowed_to(f):
|
||||
@wraps(f)
|
||||
def decorated(*args, **kwargs):
|
||||
if thing in g.team_restricts:
|
||||
return "You are restricted from performing the {} action. Contact an organizer.".format(thing)
|
||||
|
||||
return f(*args, **kwargs)
|
||||
return decorated
|
||||
return _must_be_allowed_to
|
||||
|
||||
def confirmed_email_required(f):
|
||||
@wraps(f)
|
||||
def decorated(*args, **kwargs):
|
||||
|
|
|
|||
Loading…
Reference in New Issue