cafe-grader-web

Commit r301:bdf9a550f783 public

parent | child
Description:
shows warning message when user cannot log in in single user mode
Commit status:
[Not Reviewed]
References:
default
Diff options:
Raw Diff | Patch Diff | Download Diff | Show whitespace | Increase context
Comments:
0 Commit comments 0 Inline Comments
Unresolved TODOs:
There are no unresolved TODOs
Side by Side Unified
Expand All Files Collapse All Files Wide Mode Diff
Add another comment
Browse Files

r301:bdf9a550f783 - - 1 file changed: 1 inserted, 0 deleted

Show file before | Show file after | Raw diff | Download diff | Show whitespace Increase context Show commentsHide comments
@@ -1,83 +1,84
1 1 # Filters added to this controller apply to all controllers in the application.
2 2 # Likewise, all the methods added will be available for all controllers.
3 3
4 4 class ApplicationController < ActionController::Base
5 5
6 6 SINGLE_USER_MODE_CONF_KEY = 'system.single_user_mode'
7 7
8 8 def admin_authorization
9 9 return false unless authenticate
10 10 user = User.find(session[:user_id], :include => ['roles'])
11 11 redirect_to :controller => 'main', :action => 'login' unless user.admin?
12 12 end
13 13
14 14 def authorization_by_roles(allowed_roles)
15 15 return false unless authenticate
16 16 user = User.find(session[:user_id])
17 17 unless user.roles.detect { |role| allowed_roles.member?(role.name) }
18 18 flash[:notice] = 'You are not authorized to view the page you requested'
19 19 redirect_to :controller => 'main', :action => 'login'
20 20 return false
21 21 end
22 22 end
23 23
24 24 protected
25 25
26 26 def authenticate
27 27 unless session[:user_id]
28 28 redirect_to :controller => 'main', :action => 'login'
29 29 return false
30 30 end
31 31
32 32 # check if run in single user mode
33 33 if Configuration[SINGLE_USER_MODE_CONF_KEY]
34 34 user = User.find(session[:user_id])
35 35 if user==nil or (not user.admin?)
36 + flash[:notice] = 'You cannot log in at this time'
36 37 redirect_to :controller => 'main', :action => 'login'
37 38 return false
38 39 end
39 40 return true
40 41 end
41 42
42 43 if Configuration.multicontests?
43 44 user = User.find(session[:user_id])
44 45 return true if user.admin?
45 46 begin
46 47 if user.contest_stat(true).forced_logout
47 48 flash[:notice] = 'You have been automatically logged out.'
48 49 redirect_to :controller => 'main', :action => 'index'
49 50 end
50 51 rescue
51 52 end
52 53 end
53 54 return true
54 55 end
55 56
56 57 def authorization
57 58 return false unless authenticate
58 59 user = User.find(session[:user_id])
59 60 unless user.roles.detect { |role|
60 61 role.rights.detect{ |right|
61 62 right.controller == self.class.controller_name and
62 63 (right.action == 'all' or right.action == action_name)
63 64 }
64 65 }
65 66 flash[:notice] = 'You are not authorized to view the page you requested'
66 67 #request.env['HTTP_REFERER'] ? (redirect_to :back) : (redirect_to :controller => 'login')
67 68 redirect_to :controller => 'main', :action => 'login'
68 69 return false
69 70 end
70 71 end
71 72
72 73 def verify_time_limit
73 74 return true if session[:user_id]==nil
74 75 user = User.find(session[:user_id], :include => :site)
75 76 return true if user==nil or user.site == nil
76 77 if user.contest_finished?
77 78 flash[:notice] = 'Error: the contest you are participating is over.'
78 79 redirect_to :back
79 80 return false
80 81 end
81 82 return true
82 83 end
83 84
You need to be logged in to leave comments. Login now