X-Git-Url: https://git.mdrn.pl/edumed.git/blobdiff_plain/06a981042354beffa32620e52f2c7b1971549c17..cc3642cc8629e6568c75e15283b4cfcc60e02a53:/wtem/views.py?ds=sidebyside diff --git a/wtem/views.py b/wtem/views.py index bfce3c9..fbef888 100644 --- a/wtem/views.py +++ b/wtem/views.py @@ -3,31 +3,38 @@ import os from django.shortcuts import render from django.utils import simplejson from django.conf import settings -from django.http import Http404 +from django.http import Http404, HttpResponseForbidden +from django.views.decorators.cache import never_cache +from django.views.decorators.csrf import csrf_exempt -from .models import Submission, DEBUG_KEY +from .models import Submission, DEBUG_KEY, exercises from .forms import WTEMForm WTEM_CONTEST_STAGE = getattr(settings, 'WTEM_CONTEST_STAGE', 'before') -def main(request): - pass - +@csrf_exempt def form(request, key): return globals()['form_' + WTEM_CONTEST_STAGE](request, key) def form_before(request, key): - return render(request, 'wtem/main_before.html') + try: + submission = Submission.objects.get(key = key) + except: + return render(request, 'wtem/key_not_found_before.html') + else: + return render(request, 'wtem/main_before.html') def form_after(request, key): return render(request, 'wtem/main_after.html') +@never_cache +@csrf_exempt def form_during(request, key): if WTEM_CONTEST_STAGE != 'during': - if request.META['REMOTE_ADDR'] != getattr(settings, 'WTEM_CONTEST_IP_ALLOW', 'xxx'): - raise Http404 + if request.META['REMOTE_ADDR'] not in getattr(settings, 'WTEM_CONTEST_IP_ALLOW', []): + return HttpResponseForbidden('Not allowed') try: submission = Submission.objects.get(key = key) @@ -35,19 +42,13 @@ def form_during(request, key): if settings.DEBUG and key == DEBUG_KEY: submission = Submission.create(first_name = 'Debug', last_name = 'Debug', email = 'debug@debug.com', key = DEBUG_KEY) else: - raise Http404 - - ## @@ move this out of the view - f = file(os.path.dirname(__file__) + '/fixtures/exercises.json') - exercises = simplejson.loads(f.read()) - f.close() - + return render(request, 'wtem/key_not_found.html') if request.method == 'GET': - return render(request, 'wtem/main.html', dict(exercises = exercises)) + return render(request, 'wtem/main.html', dict(exercises = exercises, end_time = submission.end_time)) elif request.method == 'POST': form = WTEMForm(request.POST, request.FILES, instance = submission) if form.is_valid(): form.save() - return render(request, 'wtem/thanks.html') + return render(request, 'wtem/thanks.html', dict(end_time = submission.end_time)) else: raise Exception