Python validate_user_is_authenticatedの例、uauth.validators.validate_user_is_authenticated Pythonの例

コード例 #1

0

ファイルを表示

ファイル: schema.py プロジェクト: yacf/yacf

 def resolve_challenge(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     if validate_user_is_staff(info.context.user):
         return Challenge.objects.get(pk=kwargs.get('id'))
     else:
         validate_active_event()
         return Challenge.objects.get(pk=kwargs.get('id'), hidden=False)

コード例 #2

0

ファイルを表示

 def resolve_challenges(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     if validate_user_is_staff(info.context.user):
         return Challenge.objects.all().order_by('points')
     else:
         return Challenge.objects.filter(category__hidden=False,
                                         hidden=False).order_by('points')

コード例 #3

0

ファイルを表示

ファイル: schema.py プロジェクト: yacf/yacf

    def mutate(self, info, name):
        validate_user_is_authenticated(info.context.user)

        team = Team.objects.get(name__iexact=name)
        # print(team)
        # print(team.solved.all().order_by('timestamp'))

        graph = [{
            'label': team.name,
            'data': [],
            'backgroundColor': '#FFD700',
            'borderColor': '#FFD700',
            'fill': 'false'
        }]

        for solve in team.solved.all().order_by('timestamp'):
            if graph[0]['data']:
                graph[0]['data'].append(graph[0]['data'][-1] +
                                        solve.challenge.points)
            else:
                graph[0]['data'].append(solve.challenge.points)

        timeline = []
        for solve in team.solved.all().order_by('timestamp'):
            timeline.append(solve.timestamp.strftime("%I:%M:%S"))

        # print(graph, timeline)

        return TeamGraph(json.dumps(timeline), json.dumps(graph))

コード例 #4

0

ファイルを表示

ファイル: schema.py プロジェクト: yacf/yacf

    def mutate(self, info, challenge, flag):
        validate_user_is_authenticated(info.context.user)

        # If user is not staff validate there is an active event.
        if not validate_user_is_staff(info.context.user):
            validate_active_event()
        
        try:
            team = Profile.objects.get(user=info.context.user).team
        except:
            raise Exception('You must be on a team to submit flags')

        try:
            challenge = Challenge.objects.get(pk=challenge)
        except:
            raise Exception('Challenge not found')

        # Check if challenge has been solved by the team 
        if team.solved.filter(challenge=challenge):
            raise Exception('Challenge already solved!')

        solved = False
        if challenge.flag.hashed:
            if challenge.flag.value == hashlib.sha256(flag.encode('utf-8')).hexdigest():
                solved = True
        else:
            if challenge.flag.value == flag:
                solved = True

        if solved:
            solve = SolvedChallenge(team=team, user=info.context.user, challenge=challenge)
            solve.save()

            '''
            Flag tracker
            '''
            # print(info.context.META.get('HTTP_X_FORWARDED_FOR'), info.context.META.get('HTTP_X_REAL_IP'), info.context.META.get('HTTP_USER_AGENT'))
            try:
                flagtracker = FlagTracker(solve=solve, address=info.context.META.get('HTTP_X_REAL_IP'), agent=info.context.META.get('HTTP_USER_AGENT'))
                flagtracker.save()
            except:
                pass

            code=1
        else:
            fail = Failure(team=team, user=info.context.user, challenge=challenge)
            fail.save()
            code=0

        # if code == 1:
        #     try:
        #         # Send signal to scoreboard
        #         channel_layer = channels.layers.get_channel_layer()
        #         async_to_sync(channel_layer.group_send)("scoreboard", {"type": "scoreboard.update", "team": team.name, "points": team.points, "added": get_challenge.points, "time": solve.timestamp.strftime("%I:%M:%S")} )
        #     except:
        #         pass

        return SubmitFlag(code=code)

コード例 #5

0

ファイルを表示

ファイル: schema.py プロジェクト: yacf/yacf

 def resolve_challenges(self, info, first=None, skip=None, **kwargs):
     validate_user_is_authenticated(info.context.user)
     if validate_user_is_staff(info.context.user):
         challenges = Challenge.objects.all().order_by('name')
         if skip is not None : 
             challenges = challenges[skip:]
         if first is not None: 
             challenges = challenges[:first]
         return challenges
     else:
         validate_active_event()
         return Challenge.objects.filter(category__hidden=False, hidden=False).order_by('points')

コード例 #6

0

ファイルを表示

 def resolve_categories(self, info, first=None, skip=None, **kwargs):
     validate_user_is_authenticated(info.context.user)
     if validate_user_is_staff(info.context.user):
         categories = Category.objects.all()
         if skip is not None:
             categories = categories[skip:]
         if first is not None:
             categories = categories[:first]
         return categories
     else:
         validate_active_event()
         return Category.objects.filter(hidden=False)

コード例 #7

0

ファイルを表示

ファイル: schema.py プロジェクト: yacf/yacf

    def resolve_team_name(self, info, **kwargs):
        validate_user_is_authenticated(info.context.user)

        if validate_user_is_staff(info.context.user):
            return Team.objects.get(name__iexact=kwargs.get('name'))
        else:
            if Event.objects.first() and Event.objects.first().private is True:
                team = Team.objects.get(name__iexact=kwargs.get('name'))
                if info.context.user.profile.team == team:
                    return team
                else:
                    raise Exception(
                        "This event is being run in privacy mode. You are not allowed to query teams. If you are querying for your team please use the team query"
                    )
            else:
                return Team.objects.get(name__iexact=kwargs.get('name'))

コード例 #8

0

ファイルを表示

ファイル: schema.py プロジェクト: yacf/yacf

    def resolve_searchteam(self, info, **kwargs):
        validate_user_is_authenticated(info.context.user)
        if validate_user_is_staff(info.context.user):
            return Team.objects.filter(
                Q(name__contains=kwargs.get('query'))
                | Q(affiliation__contains=kwargs.get('query'))
                | Q(website__contains=kwargs.get('query')))
        else:
            if Event.objects.first() and Event.objects.first().private is True:
                raise Exception(
                    "This event is being run in privacy mode. You are not allowed to search teams."
                )

            return Team.objects.filter(hidden=False).filter(
                Q(name__contains=kwargs.get('query'))
                | Q(affiliation__contains=kwargs.get('query'))
                | Q(website__contains=kwargs.get('query')))

コード例 #9

0

ファイルを表示

ファイル: schema.py プロジェクト: yacf/yacf

    def resolve_failures(self, info, first=None, skip=None, **kwargs):
        validate_user_is_authenticated(info.context.user)
        if validate_user_is_staff(info.context.user):
            failures = Failure.objects.all().order_by('-timestamp')
        else:
            if Event.objects.first() and Event.objects.first().private is True:
                raise Exception(
                    "This event is being run in privacy mode. You are not allowed to query failures."
                )
            else:
                failures = Failure.objects.all().order_by('-timestamp')

        if skip is not None:
            failures = failures[skip:]
        if first is not None:
            failures = failures[:first]

        return failures

コード例 #10

0

ファイルを表示

ファイル: schema.py プロジェクト: yacf/yacf

    def resolve_solves(self, info, first=None, skip=None, **kwargs):
        validate_user_is_authenticated(info.context.user)
        if validate_user_is_staff(info.context.user):
            solves = SolvedChallenge.objects.all().order_by('-timestamp')
        else:
            if Event.objects.first() and Event.objects.first().private is True:
                raise Exception(
                    "This event is being run in privacy mode. You are not allowed to query solves. If you want to query your team solves please use the teamsolves query."
                )
            else:
                solves = SolvedChallenge.objects.all().order_by('-timestamp')

        if skip is not None:
            solves = solves[skip:]
        if first is not None:
            solves = solves[:first]

        return solves

コード例 #11

0

ファイルを表示

    def mutate(self, info, number=10):
        validate_user_is_authenticated(info.context.user)

        # Sort to get the top 5 by point value
        teams = sorted(list(Team.objects.all()), key=lambda x: x.points, reverse=True)[:5]

        # Get all solved challenges from the top 5 teams.
        solved = SolvedChallenge.objects.filter(team__name__in=[team.name for team in teams]).order_by('timestamp')

        graph = []
        for team in teams:
            graph.append({'label': team.name, 'data': [], 'backgroundColor': '', 'borderColor': '', 'fill': 'false'})

        colors = ['#FFD700', '#909497', '#A46628', '#3232CD', '#93C54B']

        # Build colors
        for i, team in enumerate(graph):
            team['backgroundColor'] = colors[i]
            team['borderColor'] = colors[i]


        # Construct the data for solved timelinw
        for solve in solved:

            for team in graph:
                if team["label"] == solve.team.name:
                    if team['data']:
                        team['data'].append(team['data'][-1]+solve.challenge.points)
                    else:
                        team['data'].append(solve.challenge.points)
                else:
                    if team['data']:
                        team['data'].append(team['data'][-1])
                    else:
                        team['data'].append(0)


        # Construct time for all solved challenges.
        timeline = []
        for solve in solved:
            timeline.append(solve.timestamp.strftime("%I:%M:%S"))


        return Graph(json.dumps(timeline), json.dumps(graph))

コード例 #12

0

ファイルを表示

    def mutate(self, info, challenge, flag):
        validate_user_is_authenticated(info.context.user)

        print("User:"******"Team:", info.context.user.profile.verified)
        team = Profile.objects.get(user=info.context.user).team
        print("Team:", team.name)
        try:
            get_challenge = Challenge.objects.get(pk=challenge)
            if get_challenge.flag.value == hashlib.md5(
                    flag.encode('utf-8')).hexdigest():
                if team:
                    solve = SolvedChallenge(team=team,
                                            user=info.context.user,
                                            challenge=get_challenge)
                    solve.save()
                code = 1
            else:
                if team:
                    fail = Failure(team=team,
                                   user=info.context.user,
                                   challenge=get_challenge)
                    fail.save()
                code = 0
        except:
            code = 9

        if code == 1:
            try:
                # Send signal to scoreboard
                channel_layer = channels.layers.get_channel_layer()
                async_to_sync(channel_layer.group_send)(
                    "scoreboard", {
                        "type": "scoreboard.update",
                        "team": team.name,
                        "points": team.points,
                        "added": get_challenge.points,
                        "time": solve.timestamp.strftime("%I:%M:%S")
                    })
            except:
                pass

        return SubmitFlag(code)

コード例 #13

0

ファイルを表示

 def resolve_pages(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     return Page.objects.all()

コード例 #14

0

ファイルを表示

 def resolve_total_points(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     return sum([challenge.points for challenge in Challenge.objects.all()])

コード例 #15

0

ファイルを表示

 def resolve_statistic(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     get_category = Category.objects.get(
         name__iexact=kwargs.get('category'))
     return Challenge.objects.filter(category=get_category,
                                     points=kwargs.get('points')).first()

コード例 #16

0

ファイルを表示

 def resolve_challenge(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     return Challenge.objects.get(pk=kwargs.get('id'))

コード例 #17

0

ファイルを表示

 def resolve_welcomePage(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     return WelcomePage.objects.all().first()

コード例 #18

0

ファイルを表示

 def resolve_team_sovle(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     profile = Profile.objects.get(user=info.context.user)
     return SolvedChallenge.objects.filter(team=profile.team)

コード例 #19

0

ファイルを表示

 def resolve_me(self, info):
     validate_user_is_authenticated(info.context.user)
     return info.context.user

コード例 #20

0

ファイルを表示

 def resolve_failures(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     return Failure.objects.all().order_by('-timestamp')

コード例 #21

0

ファイルを表示

 def resolve_team(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     return info.context.user.profile.team

コード例 #22

0

ファイルを表示

ファイル: schema.py プロジェクト: yacf/yacf

 def resolve_theme(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     return Theme.objects.first()

コード例 #23

0

ファイルを表示

 def resolve_page(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     return Page.objects.get(url=kwargs.get('url'))

コード例 #24

0

ファイルを表示

ファイル: schema.py プロジェクト: yacf/yacf

    def mutate(self, info, number=10):
        validate_user_is_authenticated(info.context.user)

        if not validate_user_is_staff(info.context.user):
            if Event.objects.first() and Event.objects.first().private is True:
                raise Exception(
                    "This event is being run in privacy mode. You are not allowed to query teams."
                )

        # Sort to get the top 5 by point value
        if validate_user_is_staff(info.context.user):
            teams = sorted(list(Team.objects.all()),
                           key=lambda x: x.points,
                           reverse=True)[:5]
        else:
            teams = sorted(list(Team.objects.filter(hidden=False)),
                           key=lambda x: x.points,
                           reverse=True)[:5]

        # Get all solved challenges from the top 5 teams.
        solved = SolvedChallenge.objects.filter(
            team__name__in=[team.name for team in teams]).order_by('timestamp')

        graph = []
        for team in teams:
            graph.append({
                'label': team.name,
                'data': [0],
                'backgroundColor': '',
                'borderColor': '',
                'fill': 'false'
            })

        colors = ['#FFD700', '#909497', '#A46628', '#3232CD', '#93C54B']

        # Build colors
        for i, team in enumerate(graph):
            team['backgroundColor'] = colors[i]
            team['borderColor'] = colors[i]

        # Construct the data for solved timelinw
        for solve in solved:

            for team in graph:
                if team["label"] == solve.team.name:
                    if team['data']:
                        team['data'].append(team['data'][-1] +
                                            solve.challenge.points)
                    else:
                        team['data'].append(solve.challenge.points)
                else:
                    if team['data']:
                        team['data'].append(team['data'][-1])
                    else:
                        team['data'].append(0)

        # Construct time for all solved challenges.
        timeline = [0]
        for solve in solved:
            utc = solve.timestamp.replace(tzinfo=pytz.UTC)
            localtz = utc.astimezone(timezone.get_current_timezone())
            # "%m/%d %I:%M:%S"
            timeline.append(localtz.strftime("%I:%M:%S"))

        return Graph(json.dumps(timeline), json.dumps(graph))

コード例 #25

0

ファイルを表示

 def resolve_team_name(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     return Team.objects.get(name__iexact=kwargs.get('name'))

コード例 #26

0

ファイルを表示

 def resolve_categories(self, info, **kwargs):
     validate_user_is_authenticated(info.context.user)
     if validate_user_is_staff(info.context.user):
         return Category.objects.all()
     else:
         return Category.objects.filter(hidden=False)