#!/usr/bin/env luajit local path = os.getenv("PATH_INFO") local method = os.getenv("REQUEST_METHOD") local query = os.getenv("QUERY_STRING") local function escape(s) return s:gsub("<", "<"):gsub("<", "<") end local function respond(status, title, body) print(string.format("Status: %d", status)) print("Content-Type: text/html") print("") print(string.format([[ %s ]], escape(title))) body() print("") end local function respond_error(message) respond(400, "Error", function() print(string.format("

Error: %s

", escape(message))) end) end local function redirect(path) print("Status: 307") print(string.format("Location: %s", path)) print() end local function form_data() local data = {} for pair in string.gmatch(io.read(), "([^&]+)") do local key, value = string.match(pair, "([^=]+)=([^=]+)") if key == nil or value == nil then goto continue end data[key] = value ::continue:: end return data end local function read_log() local log = io.open("log", "r") if log == nil then return function() return nil end end local lines = log:lines("l") return function() local l = lines() local time, username, amount, comment = string.match(l, "(%d+),([%w_-]+),(-?%d+),([%w_-]*)") return tonumber(time), username, tonumber(amount), comment end end local function balances() local users = {} for _, username, amount, _ in read_log() do users[username] = (users[username] or 0) + amount end return users end local function r_user() if path == nil then return respond_error("no path") end local username = path:sub(2) if username:match("^[%w_-]+$") == nil then return respond_error("username invalid") end if method == "POST" then local data = form_data() local amount = tonumber(data.amount) if amount == nil then return respond_error("amount invalid") end local comment = data.comment or "" if comment:match("^[%w_-]*$") == nil then return respond_error("comment invalid") end local log = io.open("log", "a+") if log == nil then return respond_error("failed to open log") end local time = os.time() log:write(string.format("%d,%s,%s,%s\n", time, username, amount, comment)) log:flush() log:close() end return respond(200, username, function() print(string.format("

%s

", username)) local balance = balances()[username] or 0 print(string.format("Current balance: %.02f", balance / 100)) print([[


]]) for _, type in ipairs({ 1, -1 }) do for _, amount in ipairs({ 50, 100, 150, 200, 500, 1000 }) do print(string.format([[
]], amount * type, ({ [-1] = "-", [1] = "+" })[type], amount / 100)) end end end) end local function r_log() return respond(200, "Log", function() print("") print("") for time, username, amount, comment in read_log() do print(string.format("", time, escape(username), amount / 100, escape(comment))) end print("
TimeUsernameAmountComment
%d%s%.02f€%s
") end) end local function r_index() return respond(200, "Users", function() print([[

]]) print("") end) end local function r_create_user() if query == nil then return respond_error("no query") end local username = query:match("^\\?create_user=([%w_-]+)$") if username == nil then return respond_error("invalid username") end return redirect(string.format("/%s", username)) end if path == "/" then if query == "?log" then return r_log() elseif query ~= nil and query:match("^\\?create_user=") then return r_create_user() else return r_index() end else r_user() end return respond_error("unknown route")