Merge pull request #403 from cheuk-fung/round-apis-update

Enable a bunch of round apis for web arena super user

Author: skyhit

actions/srmChallenges.js

@@ -1886,7 +1886,7 @@ exports.setRoundLanguages = {
         async.auto(
             {
                 admin: function (cb) {
-                    cb(helper.checkAdmin(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_MESSAGE));
+                    cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
                 },
                 roundId: [
                     'admin',

actions/srmProblems.js

@@ -22,9 +22,13 @@ var async = require('async');
 var _ = require('underscore');
 var moment = require('moment');
 var IllegalArgumentError = require('../errors/IllegalArgumentError');
-var NotFoundError = require('../errors/NotFoundError');
-var UnauthorizedError = require('../errors/UnauthorizedError');
-var ForbiddenError = require('../errors/ForbiddenError');
+
+/**
+ * Error messages
+ */
+var NON_ADMIN_MESSAGE = "Admin access only.",
+    NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE = "Admin or web Arena super user only.",
+    UNAUTHORIZED_MESSAGE = "Authorized information needed.";
 
 /**
  * Parsed the problem from database query result.
@@ -54,15 +58,15 @@ var listRoundProblems = function (api, connection, dbConnectionMap, next) {
 
     async.waterfall([
         function (cb) {
-            cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             cb(helper.checkIdParameter(roundId, "roundId"));
         }, function (cb) {
             sqlParams.roundId = roundId;
             api.dataAccess.executeQuery("get_srm_assigned_problems", sqlParams, dbConnectionMap, cb);
         }, function (results, cb) {
             if (results.length === 0) {
-                cb(new NotFoundError("Cannot find records by given roundId."));
+                cb();
                 return;
             }
             _.each(results, function (item) {
@@ -105,7 +109,7 @@ var listRoundProblemComponents = function (api, connection, dbConnectionMap, nex
 
     async.waterfall([
         function (cb) {
-            cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             // check parameters
             var error = helper.checkIdParameter(roundId, "roundId");
@@ -135,7 +139,7 @@ var listRoundProblemComponents = function (api, connection, dbConnectionMap, nex
             }
         }, function (results, cb) {
             if (results.length === 0) {
-                cb(new NotFoundError("Cannot find records by given roundId."));
+                cb();
                 return;
             }
             _.each(results, function (item) {
@@ -231,16 +235,7 @@ var listSRMProblems = function (api, connection, dbConnectionMap, next) {
 
     async.waterfall([
         function (cb) {
-            if (!helper.isAdmin(caller) && !caller.isWebArenaSuper) {
-                if (!helper.isMember(caller)) {
-                    cb(new UnauthorizedError("Authorized information needed."));
-                } else {
-                    cb(new ForbiddenError("Admin or web Arena super user only."));
-                }
-            } else {
-                cb();
-            }
-            //cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             if (caller.isWebArenaSuper) {
                 async.waterfall([

actions/srmRoundComponentsAndTerms.js

@@ -14,6 +14,13 @@ var _ = require('underscore');
 var moment = require('moment');
 var IllegalArgumentError = require('../errors/IllegalArgumentError');
 
+/**
+ * Error messages
+ */
+var NON_ADMIN_MESSAGE = "Admin access only.",
+    NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE = "Admin or web Arena super user only.",
+    UNAUTHORIZED_MESSAGE = "Authorized information needed.";
+
 /**
  * Check whether the given value is defined and id parameter.
  * @param value - the given value.
@@ -206,7 +213,7 @@ var setRoundComponents = function (api, connection, dbConnectionMap, next) {
 
     async.waterfall([
         function (cb) {
-            cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             checkRoundId(api, dbConnectionMap, roundId, cb);
         }, function (error, cb) {
@@ -278,7 +285,7 @@ var setRoundTerms = function (api, connection, dbConnectionMap, next) {
 
     async.waterfall([
         function (cb) {
-            cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             checkRoundId(api, dbConnectionMap, roundId, cb);
         }, function (error, cb) {

actions/srmRoundQuestions.js

@@ -19,11 +19,16 @@ var _ = require('underscore');
 var moment = require('moment');
 var IllegalArgumentError = require('../errors/IllegalArgumentError');
 var NotFoundError = require('../errors/NotFoundError');
-var UnauthorizedError = require('../errors/UnauthorizedError');
-var ForbiddenError = require('../errors/ForbiddenError');
 
 var DATE_FORMAT = "YYYY-MM-DD HH:mm";
 
+/**
+ * Error messages
+ */
+var NON_ADMIN_MESSAGE = "Admin access only.",
+    NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE = "Admin or web Arena super user only.",
+    UNAUTHORIZED_MESSAGE = "Authorized information needed.";
+
 /**
  * Get Round Question Answers.
  *
@@ -40,15 +45,7 @@ var getRoundQuestionAnswers = function (api, connection, dbConnectionMap, next)
 
     async.waterfall([
         function (cb) {
-            if (!helper.isAdmin(caller) && !caller.isWebArenaSuper) {
-                if (!helper.isMember(caller)) {
-                    cb(new UnauthorizedError("Authorized information needed."));
-                } else {
-                    cb(new ForbiddenError("Admin or web Arena super user only."));
-                }
-            } else {
-                cb();
-            }
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             cb(helper.checkIdParameter(questionId, "questionId"));
         }, function (cb) {
@@ -88,7 +85,7 @@ var getRoundQuestions = function (api, connection, dbConnectionMap, next) {
 
     async.waterfall([
         function (cb) {
-            cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             cb(helper.checkIdParameter(roundId, "roundId"));
         }, function (cb) {
@@ -287,28 +284,6 @@ var setRoundSurvey = function (api, connection, dbConnectionMap, next) {
     });
 };
 
-/**
- * Check if user authorized and is admin or web Arena super user
- *
- * @param api the api instance.
- * @param the connection instance
- * @param callback the callback method
- */
-function checkAuthorization(api, connection, callback) {
-    var helper = api.helper,
-        caller = connection.caller;
-
-    if (!helper.isAdmin(caller) && !caller.isWebArenaSuper) {
-        if (!helper.isMember(caller)) {
-            callback(new UnauthorizedError("Authorized information needed."));
-        } else {
-            callback(new ForbiddenError("Admin or web Arena super user only."));
-        }
-    } else {
-        callback();
-    }
-}
-
 /**
  * Check question id.
  *
@@ -403,15 +378,7 @@ var addRoundQuestionAnswer = function (api, connection, dbConnectionMap, next) {
 
     async.waterfall([
         function (cb) {
-            if (!helper.isAdmin(caller) && !caller.isWebArenaSuper) {
-                if (!helper.isMember(caller)) {
-                    cb(new UnauthorizedError("Authorized information needed."));
-                } else {
-                    cb(new ForbiddenError("Admin or web Arena super user only."));
-                }
-            } else {
-                cb();
-            }
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             checkQuestionId(api, dbConnectionMap, questionId, cb);
         }, function (error, cb) {
@@ -556,7 +523,7 @@ var addRoundQuestion = function (api, connection, dbConnectionMap, next) {
 
     async.waterfall([
         function (cb) {
-            checkAuthorization(api, connection, cb);
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             checkRoundId(api, dbConnectionMap, roundId, cb);
         }, function (error, cb) {
@@ -620,7 +587,7 @@ var modifyRoundQuestion = function (api, connection, dbConnectionMap, next) {
 
     async.waterfall([
         function (cb) {
-            cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             checkQuestionId(api, dbConnectionMap, questionId, cb);
         }, function (error, cb) {
@@ -659,7 +626,7 @@ var deleteRoundQuestion = function (api, connection, dbConnectionMap, next) {
 
     async.waterfall([
         function (cb) {
-            cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             checkQuestionId(api, dbConnectionMap, questionId, cb);
         }, function (error, cb) {
@@ -731,7 +698,7 @@ var modifyRoundQuestionAnswer = function (api, connection, dbConnectionMap, next
 
     async.waterfall([
         function (cb) {
-            cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             checkAnswerValues(api, text, sortOrder, correct, cb);
         }, function (error, cb) {
@@ -768,7 +735,7 @@ var deleteRoundQuestionAnswer = function (api, connection, dbConnectionMap, next
 
     async.waterfall([
         function (cb) {
-            cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             cb(helper.checkIdParameter(answerId, 'answerId'));
         }, function (cb) {

actions/srmRoundSegments.js

@@ -20,6 +20,14 @@ var IllegalArgumentError = require('../errors/IllegalArgumentError');
 
 var DATE_FORMAT = "YYYY-MM-DD HH:mm:ssZZ";
 var DB_DATE_FORMAT = "YYYY-MM-DD HH:mm:ss";
+
+/**
+ * Error messages
+ */
+var NON_ADMIN_MESSAGE = "Admin access only.",
+    NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE = "Admin or web Arena super user only.",
+    UNAUTHORIZED_MESSAGE = "Authorized information needed.";
+
 /**
  * Check round id.
  *
@@ -155,7 +163,7 @@ var setRoundSegments = function (api, connection, dbConnectionMap, next) {
 
     async.waterfall([
         function (cb) {
-            cb(helper.checkAdmin(connection, 'Authorized information needed.', 'Admin access only.'));
+            cb(helper.checkAdminOrWebArenaSuper(connection, UNAUTHORIZED_MESSAGE, NON_ADMIN_OR_WEB_ARENA_SUPER_MESSAGE));
         }, function (cb) {
             checkRoundId(api, dbConnectionMap, roundId, cb);
         }, function (error, cb) {

test/test.srmProblems.js

@@ -172,14 +172,18 @@ describe('SRM Round Problem APIs', function () {
             assertError("/v2/data/srm/rounds/13672/problems", null, 401, "Authorized information needed.", done);
         });
 
-        it("Admin access only.", function (done) {
-            assertError("/v2/data/srm/rounds/13672/problems", 'user', 403, "Admin access only.", done);
+        it("Admin or web Arena super user only.", function (done) {
+            assertError("/v2/data/srm/rounds/13672/problems", 'user', 403, "Admin or web Arena super user only.", done);
         });
 
         it("roundId should be number.", function (done) {
             assertError("/v2/data/srm/rounds/aaa/problems", 'heffan', 400, "roundId should be number.", done);
         });
 
+        it("roundId should be number (with web Arena super user).", function (done) {
+            assertError("/v2/data/srm/rounds/aaa/problems", 'ksmith', 400, "roundId should be number.", done);
+        });
+
         it("roundId should be Integer.", function (done) {
             assertError("/v2/data/srm/rounds/1.01/problems", 'heffan', 400, "roundId should be Integer.", done);
         });
@@ -193,8 +197,9 @@ describe('SRM Round Problem APIs', function () {
                 'heffan', 400, "roundId should be less or equal to 2147483647.", done);
         });
 
-        it("Cannot find records by given roundId.", function (done) {
-            assertError("/v2/data/srm/rounds/100/problems", 'heffan', 404, "Cannot find records by given roundId.", done);
+        it("Valid empty SRM round problems.", function (done) {
+            validateResult("/v2/data/srm/rounds/100/problems", 'heffan',
+                "./test_files/srm_problems/list_round_problems_empty.json", done);
         });
 
         it("Valid request.", function (done) {
@@ -210,14 +215,18 @@ describe('SRM Round Problem APIs', function () {
             assertError("/v2/data/srm/rounds/13672/components", null, 401, "Authorized information needed.", done);
         });
 
-        it("Admin access only.", function (done) {
-            assertError("/v2/data/srm/rounds/13672/components", 'user', 403, "Admin access only.", done);
+        it("Admin or web Arena super user only.", function (done) {
+            assertError("/v2/data/srm/rounds/13672/components", 'user', 403, "Admin or web Arena super user only.", done);
         });
 
         it("roundId should be number.", function (done) {
             assertError("/v2/data/srm/rounds/aaa/components", 'heffan', 400, "roundId should be number.", done);
         });
 
+        it("roundId should be number (with web Arena super user).", function (done) {
+            assertError("/v2/data/srm/rounds/aaa/components", 'ksmith', 400, "roundId should be number.", done);
+        });
+
         it("roundId should be Integer.", function (done) {
             assertError("/v2/data/srm/rounds/1.01/components", 'heffan', 400, "roundId should be Integer.", done);
         });
@@ -287,5 +296,11 @@ describe('SRM Round Problem APIs', function () {
             validateResult("/v2/data/srm/rounds/13672/components", 'heffan',
                 "./test_files/srm_problems/list_round_problem_components_global.json", done);
         });
+
+        it("Valid empty SRM round components.", function (done) {
+            validateResult("/v2/data/srm/rounds/1000000/components", 'heffan',
+                "./test_files/srm_problems/list_round_problem_components_empty.json", done);
+        });
+
     });
 });