deepcrayon
/
lila
1
0
Fork 0
Code Releases Activity
lila/app/controllers/Challenge.scala

448 lines
16 KiB
Scala
Raw Blame History

package controllers
import play.api.libs.json.Json
import play.api.mvc.Result
import scala.annotation.nowarn
import scala.concurrent.duration._
import views.html
import lila.api.Context
import lila.app._
import lila.challenge.{ Challenge => ChallengeModel }
import lila.common.{ HTTPRequest, IpAddress }
import lila.game.{ AnonCookie, Pov }
import lila.oauth.{ AccessToken, OAuthScope }
import lila.setup.ApiConfig
import lila.socket.Socket.SocketVersion
import lila.user.{ User => UserModel }
import lila.common.Template
final class Challenge(
env: Env
) extends LilaController(env) {
def api = env.challenge.api
def all =
Auth { implicit ctx => me =>
XhrOrRedirectHome {
api allFor me.id map { all =>
Ok(env.challenge.jsonView(all)) as JSON
}
}
}
def show(id: String, @nowarn("cat=unused") _color: Option[String]) =
Open { implicit ctx =>
showId(id)
}
protected[controllers] def showId(id: String)(implicit
ctx: Context
): Fu[Result] =
OptionFuResult(api byId id)(showChallenge(_))
protected[controllers] def showChallenge(
c: ChallengeModel,
error: Option[String] = None,
justCreated: Boolean = false
)(implicit
ctx: Context
): Fu[Result] =
env.challenge version c.id flatMap { version =>
val mine = justCreated || isMine(c)
import lila.challenge.Direction
val direction: Option[Direction] =
if (mine) Direction.Out.some
else if (isForMe(c)) Direction.In.some
else none
val json = env.challenge.jsonView.show(c, version, direction)
negotiate(
html =
if (mine) fuccess {
error match {
case Some(e) => BadRequest(html.challenge.mine(c, json, e.some))
case None => Ok(html.challenge.mine(c, json, none))
}
}
else
(c.challengerUserId ?? env.user.repo.named) map { user =>
Ok(html.challenge.theirs(c, json, user, get("color") flatMap chess.Color.fromName))
},
api = _ => Ok(json).fuccess
) flatMap withChallengeAnonCookie(mine && c.challengerIsAnon, c, owner = true)
} dmap env.lilaCookie.ensure(ctx.req)
private def isMine(challenge: ChallengeModel)(implicit ctx: Context) =
challenge.challenger match {
case lila.challenge.Challenge.Challenger.Anonymous(secret) => HTTPRequest sid ctx.req contains secret
case lila.challenge.Challenge.Challenger.Registered(userId, _) => ctx.userId contains userId
case lila.challenge.Challenge.Challenger.Open => false
}
private def isForMe(challenge: ChallengeModel)(implicit ctx: Context) =
challenge.destUserId.fold(true)(ctx.userId.contains)
def accept(id: String, color: Option[String]) =
Open { implicit ctx =>
OptionFuResult(api byId id) { c =>
val cc = color flatMap chess.Color.fromName
isForMe(c) ?? api
.accept(c, ctx.me, HTTPRequest sid ctx.req, cc)
.flatMap {
case Some(pov) =>
negotiate(
html = Redirect(routes.Round.watcher(pov.gameId, cc.fold("white")(_.name))).fuccess,
api = apiVersion => env.api.roundApi.player(pov, none, apiVersion) map { Ok(_) }
) flatMap withChallengeAnonCookie(ctx.isAnon, c, owner = false)
case None =>
negotiate(
html = Redirect(routes.Round.watcher(c.id, cc.fold("white")(_.name))).fuccess,
api = _ => notFoundJson("Someone else accepted the challenge")
)
}
}
}
def apiAccept(id: String) =
Scoped(_.Challenge.Write, _.Bot.Play, _.Board.Play) { _ => me =>
api.onlineByIdFor(id, me) flatMap {
_ ?? { api.accept(_, me.some, none) }
} flatMap { res =>
if (res.isDefined) jsonOkResult.fuccess
else
env.bot.player.rematchAccept(id, me) flatMap {
case true => jsonOkResult.fuccess
case _ => notFoundJson()
}
}
}
private def withChallengeAnonCookie(cond: Boolean, c: ChallengeModel, owner: Boolean)(
res: Result
)(implicit ctx: Context): Fu[Result] =
cond ?? {
env.game.gameRepo.game(c.id).map {
_ map { game =>
env.lilaCookie.cookie(
AnonCookie.name,
game.player(if (owner) c.finalColor else !c.finalColor).id,
maxAge = AnonCookie.maxAge.some,
httpOnly = false.some
)
}
}
} map { cookieOption =>
cookieOption.fold(res) { res.withCookies(_) }
}
def decline(id: String) =
AuthBody { implicit ctx => _ =>
OptionFuResult(api byId id) { c =>
implicit val req = ctx.body
isForMe(c) ??
api.decline(
c,
env.challenge.forms.decline
.bindFromRequest()
.fold(_ => ChallengeModel.DeclineReason.default, _.realReason)
)
}
}
def apiDecline(id: String) =
ScopedBody(_.Challenge.Write, _.Bot.Play, _.Board.Play) { implicit req => me =>
implicit val lang = reqLang
api.activeByIdFor(id, me) flatMap {
case None =>
env.bot.player.rematchDecline(id, me) flatMap {
case true => jsonOkResult.fuccess
case _ => notFoundJson()
}
case Some(c) =>
env.challenge.forms.decline
.bindFromRequest()
.fold(
newJsonFormError,
data => api.decline(c, data.realReason) inject jsonOkResult
)
}
}
def cancel(id: String) =
Open { implicit ctx =>
OptionFuResult(api byId id) { c =>
if (isMine(c)) api cancel c
else notFound
}
}
def apiCancel(id: String) =
Scoped(_.Challenge.Write, _.Bot.Play, _.Board.Play) { _ => me =>
api.activeByIdBy(id, me) flatMap {
case Some(c) => api.cancel(c) inject jsonOkResult
case None =>
api.activeByIdFor(id, me) flatMap {
case Some(c) => api.decline(c, ChallengeModel.DeclineReason.default) inject jsonOkResult
case None =>
env.game.gameRepo game id dmap {
_ flatMap { Pov.ofUserId(_, me.id) }
} flatMap {
_ ?? { p => env.round.proxyRepo.upgradeIfPresent(p) dmap some }
} dmap (_.filter(_.game.abortable)) flatMap {
case Some(pov) =>
import lila.hub.actorApi.map.Tell
import lila.hub.actorApi.round.Abort
lila.common.Bus.publish(Tell(id, Abort(pov.playerId)), "roundSocket")
jsonOkResult.fuccess
case None => notFoundJson()
}
}
}
}
def apiStartClocks(id: String) =
Action.async { req =>
import cats.implicits._
val scopes = List(OAuthScope.Challenge.Write)
(get("token1", req) map AccessToken.Id, get("token2", req) map AccessToken.Id).mapN {
env.oAuth.server.authBoth(scopes)
} ?? {
_ flatMap {
case Left(e) => handleScopedFail(scopes, e)
case Right((u1, u2)) =>
env.game.gameRepo game id flatMap {
_ ?? { g =>
env.round.proxyRepo.upgradeIfPresent(g) dmap some dmap
(_.filter(_.hasUserIds(u1.id, u2.id)))
}
} map {
_ ?? { game =>
env.round.tellRound(game.id, lila.round.actorApi.round.StartClock)
jsonOkResult
}
}
}
}
}
private val ChallengeIpRateLimit = new lila.memo.RateLimit[IpAddress](
500,
10.minute,
key = "challenge.create.ip",
enforce = env.net.rateLimit.value
)
private val ChallengeUserRateLimit = lila.memo.RateLimit.composite[lila.user.User.ID](
key = "challenge.create.user",
enforce = env.net.rateLimit.value
)(
("fast", 5, 1.minute),
("slow", 30, 1.day)
)
def toFriend(id: String) =
AuthBody { implicit ctx => _ =>
import play.api.data._
import play.api.data.Forms._
implicit def req = ctx.body
OptionFuResult(api byId id) { c =>
if (isMine(c))
Form(
single(
"username" -> lila.user.UserForm.historicalUsernameField
)
).bindFromRequest()
.fold(
_ => funit,
username =>
ChallengeIpRateLimit(HTTPRequest ipAddress req) {
env.user.repo named username flatMap {
case None => Redirect(routes.Challenge.show(c.id)).fuccess
case Some(dest) =>
env.challenge.granter(ctx.me, dest, c.perfType.some) flatMap {
case Some(denied) =>
showChallenge(c, lila.challenge.ChallengeDenied.translated(denied).some)
case None => api.setDestUser(c, dest) inject Redirect(routes.Challenge.show(c.id))
}
}
}(rateLimitedFu)
)
else notFound
}
}
def apiCreate(userId: String) =
ScopedBody(_.Challenge.Write, _.Bot.Play, _.Board.Play) { implicit req => me =>
implicit val lang = reqLang
env.setup.forms.api
.user(me)
.bindFromRequest()
.fold(
newJsonFormError,
config => {
val cost = if (me.isApiHog) 0 else 1
ChallengeIpRateLimit(HTTPRequest ipAddress req, cost = cost) {
ChallengeUserRateLimit(me.id, cost = cost) {
env.user.repo enabledById userId.toLowerCase flatMap { destUser =>
val challenge = makeOauthChallenge(config, me, destUser)
(destUser, config.acceptByToken) match {
case (Some(dest), Some(strToken)) =>
apiChallengeAccept(dest, challenge, strToken)(me, config.message)
case _ =>
destUser ?? { env.challenge.granter(me.some, _, config.perfType) } flatMap {
case Some(denied) =>
BadRequest(jsonError(lila.challenge.ChallengeDenied.translated(denied))).fuccess
case _ =>
(env.challenge.api create challenge) map {
case true =>
JsonOk(
env.challenge.jsonView
.show(challenge, SocketVersion(0), lila.challenge.Direction.Out.some)
)
case false =>
BadRequest(jsonError("Challenge not created"))
}
} map (_ as JSON)
}
}
}(rateLimitedFu)
}(rateLimitedFu)
}
)
}
def apiCreateAdmin(origName: String, destName: String) =
ScopedBody(_.Challenge.Write) { implicit req => admin =>
IfGranted(_.ApiChallengeAdmin, req, admin) {
env.user.repo.namePair(origName, destName) flatMap {
_ ?? { case (orig, dest) =>
env.setup.forms.api.admin
.bindFromRequest()
.fold(
err => BadRequest(apiFormError(err)).fuccess,
config =>
acceptOauthChallenge(dest, makeOauthChallenge(config, orig, dest.some))(
admin,
config.message
)
)
}
}
}
}
private def makeOauthChallenge(config: ApiConfig, orig: UserModel, dest: Option[UserModel]) = {
import lila.challenge.Challenge._
val timeControl = config.clock map {
TimeControl.Clock.apply
} orElse config.days.map {
TimeControl.Correspondence.apply
} getOrElse TimeControl.Unlimited
lila.challenge.Challenge
.make(
variant = config.variant,
initialFen = config.position,
timeControl = timeControl,
mode = config.mode,
color = config.color.name,
challenger = ChallengeModel.toRegistered(config.variant, timeControl)(orig),
destUser = dest,
rematchOf = none
)
}
private def acceptOauthChallenge(
dest: UserModel,
challenge: ChallengeModel
)(managedBy: lila.user.User, template: Option[Template]) =
env.challenge.api.oauthAccept(dest, challenge) flatMap {
case None => BadRequest(jsonError("Couldn't create game")).fuccess
case Some(g) =>
env.challenge.msg.onApiPair(challenge)(managedBy, template) inject Ok(
Json.obj(
"game" -> {
env.game.jsonView(g, challenge.initialFen) ++ Json.obj(
"url" -> s"${env.net.baseUrl}${routes.Round.watcher(g.id, "white")}"
)
}
)
)
}
private def apiChallengeAccept(
dest: UserModel,
challenge: lila.challenge.Challenge,
strToken: String
)(managedBy: lila.user.User, message: Option[Template]) =
env.security.api.oauthScoped(
lila.oauth.AccessToken.Id(strToken),
List(lila.oauth.OAuthScope.Challenge.Write)
) flatMap {
_.fold(
err => BadRequest(jsonError(err.message)).fuccess,
scoped =>
if (scoped.user is dest) acceptOauthChallenge(dest, challenge)(managedBy, message)
else BadRequest(jsonError("dest and accept user don't match")).fuccess
)
}
def openCreate =
Action.async { implicit req =>
implicit val lang = reqLang
env.setup.forms.api.open
.bindFromRequest()
.fold(
err => BadRequest(apiFormError(err)).fuccess,
config =>
ChallengeIpRateLimit(HTTPRequest ipAddress req) {
import lila.challenge.Challenge._
val challenge = lila.challenge.Challenge
.make(
variant = config.variant,
initialFen = config.position,
timeControl = config.clock.fold[TimeControl](TimeControl.Unlimited) {
TimeControl.Clock.apply
},
mode = chess.Mode.Casual,
color = "random",
challenger = Challenger.Open,
destUser = none,
rematchOf = none
)
(env.challenge.api create challenge) map {
case true =>
JsonOk(
env.challenge.jsonView.show(challenge, SocketVersion(0), none) ++ Json.obj(
"urlWhite" -> s"${env.net.baseUrl}/${challenge.id}?color=white",
"urlBlack" -> s"${env.net.baseUrl}/${challenge.id}?color=black"
)
)
case false =>
BadRequest(jsonError("Challenge not created"))
}
}(rateLimitedFu) dmap (_ as JSON)
)
}
def rematchOf(gameId: String) =
Auth { implicit ctx => me =>
OptionFuResult(env.game.gameRepo game gameId) { g =>
Pov.opponentOfUserId(g, me.id).flatMap(_.userId) ?? env.user.repo.byId flatMap {
_ ?? { opponent =>
env.challenge.granter(me.some, opponent, g.perfType) flatMap {
case Some(d) =>
BadRequest(jsonError {
lila.challenge.ChallengeDenied translated d
}).fuccess
case _ =>
api.sendRematchOf(g, me) map {
case true => jsonOkResult
case _ => BadRequest(jsonError("Sorry, couldn't create the rematch."))
}
}
}
}
}
}
}
View Git Blame Copy Permalink