Mockup login page that displays if you're not logged in

Enable auto deploy
submissions: submitter cannot accept their own submission
2025-03-24 16:48:49 -04:00 · 2025-03-23 21:50:46 -04:00 · 2025-03-23 21:50:46 -04:00 · 2025-03-23 21:50:46 -04:00 · 2025-03-23 21:50:46 -04:00 · 2025-03-23 21:50:46 -04:00
18 changed files with 1252 additions and 13 deletions
--- a/.drone.yml
+++ b/.drone.yml
@ -67,7 +67,10 @@ steps:
  - name: deploy
    image: argoproj/argocd:latest
    commands:
-      - echo "Deploy!" # Not going to do actually do this until 
+      - argocd login --grpc-web cd.stricity.com --username $USERNAME --password $PASSWORD
      - argocd app --grpc-web set ${DRONE_BRANCH}-maps-service --kustomize-image registry.itzana.me/strafesnet/maptest-api:${DRONE_BRANCH}-${DRONE_BUILD_NUMBER}
      - argocd app --grpc-web set ${DRONE_BRANCH}-maps-service --kustomize-image registry.itzana.me/strafesnet/maptest-frontend:${DRONE_BRANCH}-${DRONE_BUILD_NUMBER}
      - argocd app --grpc-web set ${DRONE_BRANCH}-maps-service --kustomize-image registry.itzana.me/strafesnet/maptest-validator:${DRONE_BRANCH}-${DRONE_BUILD_NUMBER}
    environment:
      USERNAME:
        from_secret: ARGO_USER
@ -83,6 +86,6 @@ steps:
        - staging
 ---
 kind: signature
-hmac: 9958fd5b01af1ebcc75f7277fe71eb5336b899445c359cecf1b14e83b3d05059
+hmac: 1162b329a9cad12b4c5db0ccf8b8998072b0de9279326f76a493fd0af6794095
 ...
--- a/openapi.yaml
+++ b/openapi.yaml
@ -201,6 +201,23 @@ paths:
            application/json:
              schema:
                $ref: "#/components/schemas/Error"
  /submissions/{SubmissionID}/status/reset-validating:
    post:
      summary: Role Reviewer manually resets validating softlock and changes status from Validating -> Accepted
      operationId: actionSubmissionAccepted
      tags:
        - Submissions
      parameters:
        - $ref: '#/components/parameters/SubmissionID'
      responses:
        "204":
          description: Successful response
        default:
          description: General Error
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/Error"
  /submissions/{SubmissionID}/status/reject:
    post:
      summary: Role Reviewer changes status from Submitted -> Rejected
@ -252,6 +269,23 @@ paths:
            application/json:
              schema:
                $ref: "#/components/schemas/Error"
  /submissions/{SubmissionID}/status/reset-uploading:
    post:
      summary: Role Admin manually resets uploading softlock and changes status from Uploading -> Validated
      operationId: actionSubmissionValidated
      tags:
        - Submissions
      parameters:
        - $ref: '#/components/parameters/SubmissionID'
      responses:
        "204":
          description: Successful response
        default:
          description: General Error
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/Error"
  /release-submissions:
    post:
      summary: Release a set of uploaded maps
--- a/pkg/api/oas_client_gen.go
+++ b/pkg/api/oas_client_gen.go
@ -29,6 +29,12 @@ func trimTrailingSlashes(u *url.URL) {
 // Invoker invokes operations described by OpenAPI v3 specification.
 type Invoker interface {
 	// ActionSubmissionAccepted invokes actionSubmissionAccepted operation.
 	//
 	// Role Reviewer manually resets validating softlock and changes status from Validating -> Accepted.
 	//
 	// POST /submissions/{SubmissionID}/status/reset-validating
 	ActionSubmissionAccepted(ctx context.Context, params ActionSubmissionAcceptedParams) error
 	// ActionSubmissionReject invokes actionSubmissionReject operation.
 	//
 	// Role Reviewer changes status from Submitted -> Rejected.
@ -65,6 +71,12 @@ type Invoker interface {
 	//
 	// POST /submissions/{SubmissionID}/status/trigger-validate
 	ActionSubmissionTriggerValidate(ctx context.Context, params ActionSubmissionTriggerValidateParams) error
 	// ActionSubmissionValidated invokes actionSubmissionValidated operation.
 	//
 	// Role Admin manually resets uploading softlock and changes status from Uploading -> Validated.
 	//
 	// POST /submissions/{SubmissionID}/status/reset-uploading
 	ActionSubmissionValidated(ctx context.Context, params ActionSubmissionValidatedParams) error
 	// CreateScript invokes createScript operation.
 	//
 	// Create a new script.
@ -212,6 +224,130 @@ func (c *Client) requestURL(ctx context.Context) *url.URL {
 	return u
 }
 // ActionSubmissionAccepted invokes actionSubmissionAccepted operation.
 //
 // Role Reviewer manually resets validating softlock and changes status from Validating -> Accepted.
 //
 // POST /submissions/{SubmissionID}/status/reset-validating
 func (c *Client) ActionSubmissionAccepted(ctx context.Context, params ActionSubmissionAcceptedParams) error {
 	_, err := c.sendActionSubmissionAccepted(ctx, params)
 	return err
 }
 func (c *Client) sendActionSubmissionAccepted(ctx context.Context, params ActionSubmissionAcceptedParams) (res *ActionSubmissionAcceptedNoContent, err error) {
 	otelAttrs := []attribute.KeyValue{
 		otelogen.OperationID("actionSubmissionAccepted"),
 		semconv.HTTPRequestMethodKey.String("POST"),
 		semconv.HTTPRouteKey.String("/submissions/{SubmissionID}/status/reset-validating"),
 	}
 	// Run stopwatch.
 	startTime := time.Now()
 	defer func() {
 		// Use floating point division here for higher precision (instead of Millisecond method).
 		elapsedDuration := time.Since(startTime)
 		c.duration.Record(ctx, float64(elapsedDuration)/float64(time.Millisecond), metric.WithAttributes(otelAttrs...))
 	}()
 	// Increment request counter.
 	c.requests.Add(ctx, 1, metric.WithAttributes(otelAttrs...))
 	// Start a span for this request.
 	ctx, span := c.cfg.Tracer.Start(ctx, ActionSubmissionAcceptedOperation,
 		trace.WithAttributes(otelAttrs...),
 		clientSpanKind,
 	)
 	// Track stage for error reporting.
 	var stage string
 	defer func() {
 		if err != nil {
 			span.RecordError(err)
 			span.SetStatus(codes.Error, stage)
 			c.errors.Add(ctx, 1, metric.WithAttributes(otelAttrs...))
 		}
 		span.End()
 	}()
 	stage = "BuildURL"
 	u := uri.Clone(c.requestURL(ctx))
 	var pathParts [3]string
 	pathParts[0] = "/submissions/"
 	{
 		// Encode "SubmissionID" parameter.
 		e := uri.NewPathEncoder(uri.PathEncoderConfig{
 			Param:   "SubmissionID",
 			Style:   uri.PathStyleSimple,
 			Explode: false,
 		})
 		if err := func() error {
 			return e.EncodeValue(conv.Int64ToString(params.SubmissionID))
 		}(); err != nil {
 			return res, errors.Wrap(err, "encode path")
 		}
 		encoded, err := e.Result()
 		if err != nil {
 			return res, errors.Wrap(err, "encode path")
 		}
 		pathParts[1] = encoded
 	}
 	pathParts[2] = "/status/reset-validating"
 	uri.AddPathParts(u, pathParts[:]...)
 	stage = "EncodeRequest"
 	r, err := ht.NewRequest(ctx, "POST", u)
 	if err != nil {
 		return res, errors.Wrap(err, "create request")
 	}
 	{
 		type bitset = [1]uint8
 		var satisfied bitset
 		{
 			stage = "Security:CookieAuth"
 			switch err := c.securityCookieAuth(ctx, ActionSubmissionAcceptedOperation, r); {
 			case err == nil: // if NO error
 				satisfied[0] |= 1 << 0
 			case errors.Is(err, ogenerrors.ErrSkipClientSecurity):
 				// Skip this security.
 			default:
 				return res, errors.Wrap(err, "security \"CookieAuth\"")
 			}
 		}
 		if ok := func() bool {
 		nextRequirement:
 			for _, requirement := range []bitset{
 				{0b00000001},
 			} {
 				for i, mask := range requirement {
 					if satisfied[i]&mask != mask {
 						continue nextRequirement
 					}
 				}
 				return true
 			}
 			return false
 		}(); !ok {
 			return res, ogenerrors.ErrSecurityRequirementIsNotSatisfied
 		}
 	}
 	stage = "SendRequest"
 	resp, err := c.cfg.Client.Do(r)
 	if err != nil {
 		return res, errors.Wrap(err, "do request")
 	}
 	defer resp.Body.Close()
 	stage = "DecodeResponse"
 	result, err := decodeActionSubmissionAcceptedResponse(resp)
 	if err != nil {
 		return res, errors.Wrap(err, "decode response")
 	}
 	return result, nil
 }
 // ActionSubmissionReject invokes actionSubmissionReject operation.
 //
 // Role Reviewer changes status from Submitted -> Rejected.
@ -956,6 +1092,130 @@ func (c *Client) sendActionSubmissionTriggerValidate(ctx context.Context, params
 	return result, nil
 }
 // ActionSubmissionValidated invokes actionSubmissionValidated operation.
 //
 // Role Admin manually resets uploading softlock and changes status from Uploading -> Validated.
 //
 // POST /submissions/{SubmissionID}/status/reset-uploading
 func (c *Client) ActionSubmissionValidated(ctx context.Context, params ActionSubmissionValidatedParams) error {
 	_, err := c.sendActionSubmissionValidated(ctx, params)
 	return err
 }
 func (c *Client) sendActionSubmissionValidated(ctx context.Context, params ActionSubmissionValidatedParams) (res *ActionSubmissionValidatedNoContent, err error) {
 	otelAttrs := []attribute.KeyValue{
 		otelogen.OperationID("actionSubmissionValidated"),
 		semconv.HTTPRequestMethodKey.String("POST"),
 		semconv.HTTPRouteKey.String("/submissions/{SubmissionID}/status/reset-uploading"),
 	}
 	// Run stopwatch.
 	startTime := time.Now()
 	defer func() {
 		// Use floating point division here for higher precision (instead of Millisecond method).
 		elapsedDuration := time.Since(startTime)
 		c.duration.Record(ctx, float64(elapsedDuration)/float64(time.Millisecond), metric.WithAttributes(otelAttrs...))
 	}()
 	// Increment request counter.
 	c.requests.Add(ctx, 1, metric.WithAttributes(otelAttrs...))
 	// Start a span for this request.
 	ctx, span := c.cfg.Tracer.Start(ctx, ActionSubmissionValidatedOperation,
 		trace.WithAttributes(otelAttrs...),
 		clientSpanKind,
 	)
 	// Track stage for error reporting.
 	var stage string
 	defer func() {
 		if err != nil {
 			span.RecordError(err)
 			span.SetStatus(codes.Error, stage)
 			c.errors.Add(ctx, 1, metric.WithAttributes(otelAttrs...))
 		}
 		span.End()
 	}()
 	stage = "BuildURL"
 	u := uri.Clone(c.requestURL(ctx))
 	var pathParts [3]string
 	pathParts[0] = "/submissions/"
 	{
 		// Encode "SubmissionID" parameter.
 		e := uri.NewPathEncoder(uri.PathEncoderConfig{
 			Param:   "SubmissionID",
 			Style:   uri.PathStyleSimple,
 			Explode: false,
 		})
 		if err := func() error {
 			return e.EncodeValue(conv.Int64ToString(params.SubmissionID))
 		}(); err != nil {
 			return res, errors.Wrap(err, "encode path")
 		}
 		encoded, err := e.Result()
 		if err != nil {
 			return res, errors.Wrap(err, "encode path")
 		}
 		pathParts[1] = encoded
 	}
 	pathParts[2] = "/status/reset-uploading"
 	uri.AddPathParts(u, pathParts[:]...)
 	stage = "EncodeRequest"
 	r, err := ht.NewRequest(ctx, "POST", u)
 	if err != nil {
 		return res, errors.Wrap(err, "create request")
 	}
 	{
 		type bitset = [1]uint8
 		var satisfied bitset
 		{
 			stage = "Security:CookieAuth"
 			switch err := c.securityCookieAuth(ctx, ActionSubmissionValidatedOperation, r); {
 			case err == nil: // if NO error
 				satisfied[0] |= 1 << 0
 			case errors.Is(err, ogenerrors.ErrSkipClientSecurity):
 				// Skip this security.
 			default:
 				return res, errors.Wrap(err, "security \"CookieAuth\"")
 			}
 		}
 		if ok := func() bool {
 		nextRequirement:
 			for _, requirement := range []bitset{
 				{0b00000001},
 			} {
 				for i, mask := range requirement {
 					if satisfied[i]&mask != mask {
 						continue nextRequirement
 					}
 				}
 				return true
 			}
 			return false
 		}(); !ok {
 			return res, ogenerrors.ErrSecurityRequirementIsNotSatisfied
 		}
 	}
 	stage = "SendRequest"
 	resp, err := c.cfg.Client.Do(r)
 	if err != nil {
 		return res, errors.Wrap(err, "do request")
 	}
 	defer resp.Body.Close()
 	stage = "DecodeResponse"
 	result, err := decodeActionSubmissionValidatedResponse(resp)
 	if err != nil {
 		return res, errors.Wrap(err, "decode response")
 	}
 	return result, nil
 }
 // CreateScript invokes createScript operation.
 //
 // Create a new script.
--- a/pkg/api/oas_handlers_gen.go
+++ b/pkg/api/oas_handlers_gen.go
@ -30,6 +30,201 @@ func (c *codeRecorder) WriteHeader(status int) {
 	c.ResponseWriter.WriteHeader(status)
 }
 // handleActionSubmissionAcceptedRequest handles actionSubmissionAccepted operation.
 //
 // Role Reviewer manually resets validating softlock and changes status from Validating -> Accepted.
 //
 // POST /submissions/{SubmissionID}/status/reset-validating
 func (s *Server) handleActionSubmissionAcceptedRequest(args [1]string, argsEscaped bool, w http.ResponseWriter, r *http.Request) {
 	statusWriter := &codeRecorder{ResponseWriter: w}
 	w = statusWriter
 	otelAttrs := []attribute.KeyValue{
 		otelogen.OperationID("actionSubmissionAccepted"),
 		semconv.HTTPRequestMethodKey.String("POST"),
 		semconv.HTTPRouteKey.String("/submissions/{SubmissionID}/status/reset-validating"),
 	}
 	// Start a span for this request.
 	ctx, span := s.cfg.Tracer.Start(r.Context(), ActionSubmissionAcceptedOperation,
 		trace.WithAttributes(otelAttrs...),
 		serverSpanKind,
 	)
 	defer span.End()
 	// Add Labeler to context.
 	labeler := &Labeler{attrs: otelAttrs}
 	ctx = contextWithLabeler(ctx, labeler)
 	// Run stopwatch.
 	startTime := time.Now()
 	defer func() {
 		elapsedDuration := time.Since(startTime)
 		attrSet := labeler.AttributeSet()
 		attrs := attrSet.ToSlice()
 		code := statusWriter.status
 		if code != 0 {
 			codeAttr := semconv.HTTPResponseStatusCode(code)
 			attrs = append(attrs, codeAttr)
 			span.SetAttributes(codeAttr)
 		}
 		attrOpt := metric.WithAttributes(attrs...)
 		// Increment request counter.
 		s.requests.Add(ctx, 1, attrOpt)
 		// Use floating point division here for higher precision (instead of Millisecond method).
 		s.duration.Record(ctx, float64(elapsedDuration)/float64(time.Millisecond), attrOpt)
 	}()
 	var (
 		recordError = func(stage string, err error) {
 			span.RecordError(err)
 			// https://opentelemetry.io/docs/specs/semconv/http/http-spans/#status
 			// Span Status MUST be left unset if HTTP status code was in the 1xx, 2xx or 3xx ranges,
 			// unless there was another error (e.g., network error receiving the response body; or 3xx codes with
 			// max redirects exceeded), in which case status MUST be set to Error.
 			code := statusWriter.status
 			if code >= 100 && code < 500 {
 				span.SetStatus(codes.Error, stage)
 			}
 			attrSet := labeler.AttributeSet()
 			attrs := attrSet.ToSlice()
 			if code != 0 {
 				attrs = append(attrs, semconv.HTTPResponseStatusCode(code))
 			}
 			s.errors.Add(ctx, 1, metric.WithAttributes(attrs...))
 		}
 		err          error
 		opErrContext = ogenerrors.OperationContext{
 			Name: ActionSubmissionAcceptedOperation,
 			ID:   "actionSubmissionAccepted",
 		}
 	)
 	{
 		type bitset = [1]uint8
 		var satisfied bitset
 		{
 			sctx, ok, err := s.securityCookieAuth(ctx, ActionSubmissionAcceptedOperation, r)
 			if err != nil {
 				err = &ogenerrors.SecurityError{
 					OperationContext: opErrContext,
 					Security:         "CookieAuth",
 					Err:              err,
 				}
 				if encodeErr := encodeErrorResponse(s.h.NewError(ctx, err), w, span); encodeErr != nil {
 					defer recordError("Security:CookieAuth", err)
 				}
 				return
 			}
 			if ok {
 				satisfied[0] |= 1 << 0
 				ctx = sctx
 			}
 		}
 		if ok := func() bool {
 		nextRequirement:
 			for _, requirement := range []bitset{
 				{0b00000001},
 			} {
 				for i, mask := range requirement {
 					if satisfied[i]&mask != mask {
 						continue nextRequirement
 					}
 				}
 				return true
 			}
 			return false
 		}(); !ok {
 			err = &ogenerrors.SecurityError{
 				OperationContext: opErrContext,
 				Err:              ogenerrors.ErrSecurityRequirementIsNotSatisfied,
 			}
 			if encodeErr := encodeErrorResponse(s.h.NewError(ctx, err), w, span); encodeErr != nil {
 				defer recordError("Security", err)
 			}
 			return
 		}
 	}
 	params, err := decodeActionSubmissionAcceptedParams(args, argsEscaped, r)
 	if err != nil {
 		err = &ogenerrors.DecodeParamsError{
 			OperationContext: opErrContext,
 			Err:              err,
 		}
 		defer recordError("DecodeParams", err)
 		s.cfg.ErrorHandler(ctx, w, r, err)
 		return
 	}
 	var response *ActionSubmissionAcceptedNoContent
 	if m := s.cfg.Middleware; m != nil {
 		mreq := middleware.Request{
 			Context:          ctx,
 			OperationName:    ActionSubmissionAcceptedOperation,
 			OperationSummary: "Role Reviewer manually resets validating softlock and changes status from Validating -> Accepted",
 			OperationID:      "actionSubmissionAccepted",
 			Body:             nil,
 			Params: middleware.Parameters{
 				{
 					Name: "SubmissionID",
 					In:   "path",
 				}: params.SubmissionID,
 			},
 			Raw: r,
 		}
 		type (
 			Request  = struct{}
 			Params   = ActionSubmissionAcceptedParams
 			Response = *ActionSubmissionAcceptedNoContent
 		)
 		response, err = middleware.HookMiddleware[
 			Request,
 			Params,
 			Response,
 		](
 			m,
 			mreq,
 			unpackActionSubmissionAcceptedParams,
 			func(ctx context.Context, request Request, params Params) (response Response, err error) {
 				err = s.h.ActionSubmissionAccepted(ctx, params)
 				return response, err
 			},
 		)
 	} else {
 		err = s.h.ActionSubmissionAccepted(ctx, params)
 	}
 	if err != nil {
 		if errRes, ok := errors.Into[*ErrorStatusCode](err); ok {
 			if err := encodeErrorResponse(errRes, w, span); err != nil {
 				defer recordError("Internal", err)
 			}
 			return
 		}
 		if errors.Is(err, ht.ErrNotImplemented) {
 			s.cfg.ErrorHandler(ctx, w, r, err)
 			return
 		}
 		if err := encodeErrorResponse(s.h.NewError(ctx, err), w, span); err != nil {
 			defer recordError("Internal", err)
 		}
 		return
 	}
 	if err := encodeActionSubmissionAcceptedResponse(response, w, span); err != nil {
 		defer recordError("EncodeResponse", err)
 		if !errors.Is(err, ht.ErrInternalServerErrorResponse) {
 			s.cfg.ErrorHandler(ctx, w, r, err)
 		}
 		return
 	}
 }
 // handleActionSubmissionRejectRequest handles actionSubmissionReject operation.
 //
 // Role Reviewer changes status from Submitted -> Rejected.
@ -1200,6 +1395,201 @@ func (s *Server) handleActionSubmissionTriggerValidateRequest(args [1]string, ar
 	}
 }
 // handleActionSubmissionValidatedRequest handles actionSubmissionValidated operation.
 //
 // Role Admin manually resets uploading softlock and changes status from Uploading -> Validated.
 //
 // POST /submissions/{SubmissionID}/status/reset-uploading
 func (s *Server) handleActionSubmissionValidatedRequest(args [1]string, argsEscaped bool, w http.ResponseWriter, r *http.Request) {
 	statusWriter := &codeRecorder{ResponseWriter: w}
 	w = statusWriter
 	otelAttrs := []attribute.KeyValue{
 		otelogen.OperationID("actionSubmissionValidated"),
 		semconv.HTTPRequestMethodKey.String("POST"),
 		semconv.HTTPRouteKey.String("/submissions/{SubmissionID}/status/reset-uploading"),
 	}
 	// Start a span for this request.
 	ctx, span := s.cfg.Tracer.Start(r.Context(), ActionSubmissionValidatedOperation,
 		trace.WithAttributes(otelAttrs...),
 		serverSpanKind,
 	)
 	defer span.End()
 	// Add Labeler to context.
 	labeler := &Labeler{attrs: otelAttrs}
 	ctx = contextWithLabeler(ctx, labeler)
 	// Run stopwatch.
 	startTime := time.Now()
 	defer func() {
 		elapsedDuration := time.Since(startTime)
 		attrSet := labeler.AttributeSet()
 		attrs := attrSet.ToSlice()
 		code := statusWriter.status
 		if code != 0 {
 			codeAttr := semconv.HTTPResponseStatusCode(code)
 			attrs = append(attrs, codeAttr)
 			span.SetAttributes(codeAttr)
 		}
 		attrOpt := metric.WithAttributes(attrs...)
 		// Increment request counter.
 		s.requests.Add(ctx, 1, attrOpt)
 		// Use floating point division here for higher precision (instead of Millisecond method).
 		s.duration.Record(ctx, float64(elapsedDuration)/float64(time.Millisecond), attrOpt)
 	}()
 	var (
 		recordError = func(stage string, err error) {
 			span.RecordError(err)
 			// https://opentelemetry.io/docs/specs/semconv/http/http-spans/#status
 			// Span Status MUST be left unset if HTTP status code was in the 1xx, 2xx or 3xx ranges,
 			// unless there was another error (e.g., network error receiving the response body; or 3xx codes with
 			// max redirects exceeded), in which case status MUST be set to Error.
 			code := statusWriter.status
 			if code >= 100 && code < 500 {
 				span.SetStatus(codes.Error, stage)
 			}
 			attrSet := labeler.AttributeSet()
 			attrs := attrSet.ToSlice()
 			if code != 0 {
 				attrs = append(attrs, semconv.HTTPResponseStatusCode(code))
 			}
 			s.errors.Add(ctx, 1, metric.WithAttributes(attrs...))
 		}
 		err          error
 		opErrContext = ogenerrors.OperationContext{
 			Name: ActionSubmissionValidatedOperation,
 			ID:   "actionSubmissionValidated",
 		}
 	)
 	{
 		type bitset = [1]uint8
 		var satisfied bitset
 		{
 			sctx, ok, err := s.securityCookieAuth(ctx, ActionSubmissionValidatedOperation, r)
 			if err != nil {
 				err = &ogenerrors.SecurityError{
 					OperationContext: opErrContext,
 					Security:         "CookieAuth",
 					Err:              err,
 				}
 				if encodeErr := encodeErrorResponse(s.h.NewError(ctx, err), w, span); encodeErr != nil {
 					defer recordError("Security:CookieAuth", err)
 				}
 				return
 			}
 			if ok {
 				satisfied[0] |= 1 << 0
 				ctx = sctx
 			}
 		}
 		if ok := func() bool {
 		nextRequirement:
 			for _, requirement := range []bitset{
 				{0b00000001},
 			} {
 				for i, mask := range requirement {
 					if satisfied[i]&mask != mask {
 						continue nextRequirement
 					}
 				}
 				return true
 			}
 			return false
 		}(); !ok {
 			err = &ogenerrors.SecurityError{
 				OperationContext: opErrContext,
 				Err:              ogenerrors.ErrSecurityRequirementIsNotSatisfied,
 			}
 			if encodeErr := encodeErrorResponse(s.h.NewError(ctx, err), w, span); encodeErr != nil {
 				defer recordError("Security", err)
 			}
 			return
 		}
 	}
 	params, err := decodeActionSubmissionValidatedParams(args, argsEscaped, r)
 	if err != nil {
 		err = &ogenerrors.DecodeParamsError{
 			OperationContext: opErrContext,
 			Err:              err,
 		}
 		defer recordError("DecodeParams", err)
 		s.cfg.ErrorHandler(ctx, w, r, err)
 		return
 	}
 	var response *ActionSubmissionValidatedNoContent
 	if m := s.cfg.Middleware; m != nil {
 		mreq := middleware.Request{
 			Context:          ctx,
 			OperationName:    ActionSubmissionValidatedOperation,
 			OperationSummary: "Role Admin manually resets uploading softlock and changes status from Uploading -> Validated",
 			OperationID:      "actionSubmissionValidated",
 			Body:             nil,
 			Params: middleware.Parameters{
 				{
 					Name: "SubmissionID",
 					In:   "path",
 				}: params.SubmissionID,
 			},
 			Raw: r,
 		}
 		type (
 			Request  = struct{}
 			Params   = ActionSubmissionValidatedParams
 			Response = *ActionSubmissionValidatedNoContent
 		)
 		response, err = middleware.HookMiddleware[
 			Request,
 			Params,
 			Response,
 		](
 			m,
 			mreq,
 			unpackActionSubmissionValidatedParams,
 			func(ctx context.Context, request Request, params Params) (response Response, err error) {
 				err = s.h.ActionSubmissionValidated(ctx, params)
 				return response, err
 			},
 		)
 	} else {
 		err = s.h.ActionSubmissionValidated(ctx, params)
 	}
 	if err != nil {
 		if errRes, ok := errors.Into[*ErrorStatusCode](err); ok {
 			if err := encodeErrorResponse(errRes, w, span); err != nil {
 				defer recordError("Internal", err)
 			}
 			return
 		}
 		if errors.Is(err, ht.ErrNotImplemented) {
 			s.cfg.ErrorHandler(ctx, w, r, err)
 			return
 		}
 		if err := encodeErrorResponse(s.h.NewError(ctx, err), w, span); err != nil {
 			defer recordError("Internal", err)
 		}
 		return
 	}
 	if err := encodeActionSubmissionValidatedResponse(response, w, span); err != nil {
 		defer recordError("EncodeResponse", err)
 		if !errors.Is(err, ht.ErrInternalServerErrorResponse) {
 			s.cfg.ErrorHandler(ctx, w, r, err)
 		}
 		return
 	}
 }
 // handleCreateScriptRequest handles createScript operation.
 //
 // Create a new script.
--- a/pkg/api/oas_operations_gen.go
+++ b/pkg/api/oas_operations_gen.go
@ -6,12 +6,14 @@ package api
 type OperationName = string
 const (
 	ActionSubmissionAcceptedOperation        OperationName = "ActionSubmissionAccepted"
 	ActionSubmissionRejectOperation          OperationName = "ActionSubmissionReject"
 	ActionSubmissionRequestChangesOperation  OperationName = "ActionSubmissionRequestChanges"
 	ActionSubmissionRevokeOperation          OperationName = "ActionSubmissionRevoke"
 	ActionSubmissionSubmitOperation          OperationName = "ActionSubmissionSubmit"
 	ActionSubmissionTriggerUploadOperation   OperationName = "ActionSubmissionTriggerUpload"
 	ActionSubmissionTriggerValidateOperation OperationName = "ActionSubmissionTriggerValidate"
 	ActionSubmissionValidatedOperation       OperationName = "ActionSubmissionValidated"
 	CreateScriptOperation                    OperationName = "CreateScript"
 	CreateScriptPolicyOperation              OperationName = "CreateScriptPolicy"
 	CreateSubmissionOperation                OperationName = "CreateSubmission"
--- a/pkg/api/oas_parameters_gen.go
+++ b/pkg/api/oas_parameters_gen.go
@ -15,6 +15,72 @@ import (
 	"github.com/ogen-go/ogen/validate"
 )
 // ActionSubmissionAcceptedParams is parameters of actionSubmissionAccepted operation.
 type ActionSubmissionAcceptedParams struct {
 	// The unique identifier for a submission.
 	SubmissionID int64
 }
 func unpackActionSubmissionAcceptedParams(packed middleware.Parameters) (params ActionSubmissionAcceptedParams) {
 	{
 		key := middleware.ParameterKey{
 			Name: "SubmissionID",
 			In:   "path",
 		}
 		params.SubmissionID = packed[key].(int64)
 	}
 	return params
 }
 func decodeActionSubmissionAcceptedParams(args [1]string, argsEscaped bool, r *http.Request) (params ActionSubmissionAcceptedParams, _ error) {
 	// Decode path: SubmissionID.
 	if err := func() error {
 		param := args[0]
 		if argsEscaped {
 			unescaped, err := url.PathUnescape(args[0])
 			if err != nil {
 				return errors.Wrap(err, "unescape path")
 			}
 			param = unescaped
 		}
 		if len(param) > 0 {
 			d := uri.NewPathDecoder(uri.PathDecoderConfig{
 				Param:   "SubmissionID",
 				Value:   param,
 				Style:   uri.PathStyleSimple,
 				Explode: false,
 			})
 			if err := func() error {
 				val, err := d.DecodeValue()
 				if err != nil {
 					return err
 				}
 				c, err := conv.ToInt64(val)
 				if err != nil {
 					return err
 				}
 				params.SubmissionID = c
 				return nil
 			}(); err != nil {
 				return err
 			}
 		} else {
 			return validate.ErrFieldRequired
 		}
 		return nil
 	}(); err != nil {
 		return params, &ogenerrors.DecodeParamError{
 			Name: "SubmissionID",
 			In:   "path",
 			Err:  err,
 		}
 	}
 	return params, nil
 }
 // ActionSubmissionRejectParams is parameters of actionSubmissionReject operation.
 type ActionSubmissionRejectParams struct {
 	// The unique identifier for a submission.
@ -411,6 +477,72 @@ func decodeActionSubmissionTriggerValidateParams(args [1]string, argsEscaped boo
 	return params, nil
 }
 // ActionSubmissionValidatedParams is parameters of actionSubmissionValidated operation.
 type ActionSubmissionValidatedParams struct {
 	// The unique identifier for a submission.
 	SubmissionID int64
 }
 func unpackActionSubmissionValidatedParams(packed middleware.Parameters) (params ActionSubmissionValidatedParams) {
 	{
 		key := middleware.ParameterKey{
 			Name: "SubmissionID",
 			In:   "path",
 		}
 		params.SubmissionID = packed[key].(int64)
 	}
 	return params
 }
 func decodeActionSubmissionValidatedParams(args [1]string, argsEscaped bool, r *http.Request) (params ActionSubmissionValidatedParams, _ error) {
 	// Decode path: SubmissionID.
 	if err := func() error {
 		param := args[0]
 		if argsEscaped {
 			unescaped, err := url.PathUnescape(args[0])
 			if err != nil {
 				return errors.Wrap(err, "unescape path")
 			}
 			param = unescaped
 		}
 		if len(param) > 0 {
 			d := uri.NewPathDecoder(uri.PathDecoderConfig{
 				Param:   "SubmissionID",
 				Value:   param,
 				Style:   uri.PathStyleSimple,
 				Explode: false,
 			})
 			if err := func() error {
 				val, err := d.DecodeValue()
 				if err != nil {
 					return err
 				}
 				c, err := conv.ToInt64(val)
 				if err != nil {
 					return err
 				}
 				params.SubmissionID = c
 				return nil
 			}(); err != nil {
 				return err
 			}
 		} else {
 			return validate.ErrFieldRequired
 		}
 		return nil
 	}(); err != nil {
 		return params, &ogenerrors.DecodeParamError{
 			Name: "SubmissionID",
 			In:   "path",
 			Err:  err,
 		}
 	}
 	return params, nil
 }
 // DeleteScriptParams is parameters of deleteScript operation.
 type DeleteScriptParams struct {
 	// The unique identifier for a script.
--- a/pkg/api/oas_response_decoders_gen.go
+++ b/pkg/api/oas_response_decoders_gen.go
@ -15,6 +15,57 @@ import (
 	"github.com/ogen-go/ogen/validate"
 )
 func decodeActionSubmissionAcceptedResponse(resp *http.Response) (res *ActionSubmissionAcceptedNoContent, _ error) {
 	switch resp.StatusCode {
 	case 204:
 		// Code 204.
 		return &ActionSubmissionAcceptedNoContent{}, nil
 	}
 	// Convenient error response.
 	defRes, err := func() (res *ErrorStatusCode, err error) {
 		ct, _, err := mime.ParseMediaType(resp.Header.Get("Content-Type"))
 		if err != nil {
 			return res, errors.Wrap(err, "parse media type")
 		}
 		switch {
 		case ct == "application/json":
 			buf, err := io.ReadAll(resp.Body)
 			if err != nil {
 				return res, err
 			}
 			d := jx.DecodeBytes(buf)
 			var response Error
 			if err := func() error {
 				if err := response.Decode(d); err != nil {
 					return err
 				}
 				if err := d.Skip(); err != io.EOF {
 					return errors.New("unexpected trailing data")
 				}
 				return nil
 			}(); err != nil {
 				err = &ogenerrors.DecodeBodyError{
 					ContentType: ct,
 					Body:        buf,
 					Err:         err,
 				}
 				return res, err
 			}
 			return &ErrorStatusCode{
 				StatusCode: resp.StatusCode,
 				Response:   response,
 			}, nil
 		default:
 			return res, validate.InvalidContentType(ct)
 		}
 	}()
 	if err != nil {
 		return res, errors.Wrapf(err, "default (code %d)", resp.StatusCode)
 	}
 	return res, errors.Wrap(defRes, "error")
 }
 func decodeActionSubmissionRejectResponse(resp *http.Response) (res *ActionSubmissionRejectNoContent, _ error) {
 	switch resp.StatusCode {
 	case 204:
@ -321,6 +372,57 @@ func decodeActionSubmissionTriggerValidateResponse(resp *http.Response) (res *Ac
 	return res, errors.Wrap(defRes, "error")
 }
 func decodeActionSubmissionValidatedResponse(resp *http.Response) (res *ActionSubmissionValidatedNoContent, _ error) {
 	switch resp.StatusCode {
 	case 204:
 		// Code 204.
 		return &ActionSubmissionValidatedNoContent{}, nil
 	}
 	// Convenient error response.
 	defRes, err := func() (res *ErrorStatusCode, err error) {
 		ct, _, err := mime.ParseMediaType(resp.Header.Get("Content-Type"))
 		if err != nil {
 			return res, errors.Wrap(err, "parse media type")
 		}
 		switch {
 		case ct == "application/json":
 			buf, err := io.ReadAll(resp.Body)
 			if err != nil {
 				return res, err
 			}
 			d := jx.DecodeBytes(buf)
 			var response Error
 			if err := func() error {
 				if err := response.Decode(d); err != nil {
 					return err
 				}
 				if err := d.Skip(); err != io.EOF {
 					return errors.New("unexpected trailing data")
 				}
 				return nil
 			}(); err != nil {
 				err = &ogenerrors.DecodeBodyError{
 					ContentType: ct,
 					Body:        buf,
 					Err:         err,
 				}
 				return res, err
 			}
 			return &ErrorStatusCode{
 				StatusCode: resp.StatusCode,
 				Response:   response,
 			}, nil
 		default:
 			return res, validate.InvalidContentType(ct)
 		}
 	}()
 	if err != nil {
 		return res, errors.Wrapf(err, "default (code %d)", resp.StatusCode)
 	}
 	return res, errors.Wrap(defRes, "error")
 }
 func decodeCreateScriptResponse(resp *http.Response) (res *ID, _ error) {
 	switch resp.StatusCode {
 	case 201:
--- a/pkg/api/oas_response_encoders_gen.go
+++ b/pkg/api/oas_response_encoders_gen.go
@ -13,6 +13,13 @@ import (
 	ht "github.com/ogen-go/ogen/http"
 )
 func encodeActionSubmissionAcceptedResponse(response *ActionSubmissionAcceptedNoContent, w http.ResponseWriter, span trace.Span) error {
 	w.WriteHeader(204)
 	span.SetStatus(codes.Ok, http.StatusText(204))
 	return nil
 }
 func encodeActionSubmissionRejectResponse(response *ActionSubmissionRejectNoContent, w http.ResponseWriter, span trace.Span) error {
 	w.WriteHeader(204)
 	span.SetStatus(codes.Ok, http.StatusText(204))
@ -55,6 +62,13 @@ func encodeActionSubmissionTriggerValidateResponse(response *ActionSubmissionTri
 	return nil
 }
 func encodeActionSubmissionValidatedResponse(response *ActionSubmissionValidatedNoContent, w http.ResponseWriter, span trace.Span) error {
 	w.WriteHeader(204)
 	span.SetStatus(codes.Ok, http.StatusText(204))
 	return nil
 }
 func encodeCreateScriptResponse(response *ID, w http.ResponseWriter, span trace.Span) error {
 	w.Header().Set("Content-Type", "application/json; charset=utf-8")
 	w.WriteHeader(201)
--- a/pkg/api/oas_router_gen.go
+++ b/pkg/api/oas_router_gen.go
@ -406,6 +406,64 @@ func (s *Server) ServeHTTP(w http.ResponseWriter, r *http.Request) {
 											return
 										}
 									case 's': // Prefix: "set-"
 										if l := len("set-"); len(elem) >= l && elem[0:l] == "set-" {
 											elem = elem[l:]
 										} else {
 											break
 										}
 										if len(elem) == 0 {
 											break
 										}
 										switch elem[0] {
 										case 'u': // Prefix: "uploading"
 											if l := len("uploading"); len(elem) >= l && elem[0:l] == "uploading" {
 												elem = elem[l:]
 											} else {
 												break
 											}
 											if len(elem) == 0 {
 												// Leaf node.
 												switch r.Method {
 												case "POST":
 													s.handleActionSubmissionValidatedRequest([1]string{
 														args[0],
 													}, elemIsEscaped, w, r)
 												default:
 													s.notAllowed(w, r, "POST")
 												}
 												return
 											}
 										case 'v': // Prefix: "validating"
 											if l := len("validating"); len(elem) >= l && elem[0:l] == "validating" {
 												elem = elem[l:]
 											} else {
 												break
 											}
 											if len(elem) == 0 {
 												// Leaf node.
 												switch r.Method {
 												case "POST":
 													s.handleActionSubmissionAcceptedRequest([1]string{
 														args[0],
 													}, elemIsEscaped, w, r)
 												default:
 													s.notAllowed(w, r, "POST")
 												}
 												return
 											}
 										}
 									case 'v': // Prefix: "voke"
 										if l := len("voke"); len(elem) >= l && elem[0:l] == "voke" {
@ -1023,6 +1081,68 @@ func (s *Server) FindPath(method string, u *url.URL) (r Route, _ bool) {
 											}
 										}
 									case 's': // Prefix: "set-"
 										if l := len("set-"); len(elem) >= l && elem[0:l] == "set-" {
 											elem = elem[l:]
 										} else {
 											break
 										}
 										if len(elem) == 0 {
 											break
 										}
 										switch elem[0] {
 										case 'u': // Prefix: "uploading"
 											if l := len("uploading"); len(elem) >= l && elem[0:l] == "uploading" {
 												elem = elem[l:]
 											} else {
 												break
 											}
 											if len(elem) == 0 {
 												// Leaf node.
 												switch method {
 												case "POST":
 													r.name = ActionSubmissionValidatedOperation
 													r.summary = "Role Admin manually resets uploading softlock and changes status from Uploading -> Validated"
 													r.operationID = "actionSubmissionValidated"
 													r.pathPattern = "/submissions/{SubmissionID}/status/reset-uploading"
 													r.args = args
 													r.count = 1
 													return r, true
 												default:
 													return
 												}
 											}
 										case 'v': // Prefix: "validating"
 											if l := len("validating"); len(elem) >= l && elem[0:l] == "validating" {
 												elem = elem[l:]
 											} else {
 												break
 											}
 											if len(elem) == 0 {
 												// Leaf node.
 												switch method {
 												case "POST":
 													r.name = ActionSubmissionAcceptedOperation
 													r.summary = "Role Reviewer manually resets validating softlock and changes status from Validating -> Accepted"
 													r.operationID = "actionSubmissionAccepted"
 													r.pathPattern = "/submissions/{SubmissionID}/status/reset-validating"
 													r.args = args
 													r.count = 1
 													return r, true
 												default:
 													return
 												}
 											}
 										}
 									case 'v': // Prefix: "voke"
 										if l := len("voke"); len(elem) >= l && elem[0:l] == "voke" {
--- a/pkg/api/oas_schemas_gen.go
+++ b/pkg/api/oas_schemas_gen.go
@ -11,6 +11,9 @@ func (s *ErrorStatusCode) Error() string {
 	return fmt.Sprintf("code %d: %+v", s.StatusCode, s.Response)
 }
 // ActionSubmissionAcceptedNoContent is response for ActionSubmissionAccepted operation.
 type ActionSubmissionAcceptedNoContent struct{}
 // ActionSubmissionRejectNoContent is response for ActionSubmissionReject operation.
 type ActionSubmissionRejectNoContent struct{}
@ -29,6 +32,9 @@ type ActionSubmissionTriggerUploadNoContent struct{}
 // ActionSubmissionTriggerValidateNoContent is response for ActionSubmissionTriggerValidate operation.
 type ActionSubmissionTriggerValidateNoContent struct{}
 // ActionSubmissionValidatedNoContent is response for ActionSubmissionValidated operation.
 type ActionSubmissionValidatedNoContent struct{}
 type CookieAuth struct {
 	APIKey string
 }
--- a/pkg/api/oas_server_gen.go
+++ b/pkg/api/oas_server_gen.go
@ -8,6 +8,12 @@ import (
 // Handler handles operations described by OpenAPI v3 specification.
 type Handler interface {
 	// ActionSubmissionAccepted implements actionSubmissionAccepted operation.
 	//
 	// Role Reviewer manually resets validating softlock and changes status from Validating -> Accepted.
 	//
 	// POST /submissions/{SubmissionID}/status/reset-validating
 	ActionSubmissionAccepted(ctx context.Context, params ActionSubmissionAcceptedParams) error
 	// ActionSubmissionReject implements actionSubmissionReject operation.
 	//
 	// Role Reviewer changes status from Submitted -> Rejected.
@ -44,6 +50,12 @@ type Handler interface {
 	//
 	// POST /submissions/{SubmissionID}/status/trigger-validate
 	ActionSubmissionTriggerValidate(ctx context.Context, params ActionSubmissionTriggerValidateParams) error
 	// ActionSubmissionValidated implements actionSubmissionValidated operation.
 	//
 	// Role Admin manually resets uploading softlock and changes status from Uploading -> Validated.
 	//
 	// POST /submissions/{SubmissionID}/status/reset-uploading
 	ActionSubmissionValidated(ctx context.Context, params ActionSubmissionValidatedParams) error
 	// CreateScript implements createScript operation.
 	//
 	// Create a new script.
--- a/pkg/api/oas_unimplemented_gen.go
+++ b/pkg/api/oas_unimplemented_gen.go
@ -13,6 +13,15 @@ type UnimplementedHandler struct{}
 var _ Handler = UnimplementedHandler{}
 // ActionSubmissionAccepted implements actionSubmissionAccepted operation.
 //
 // Role Reviewer manually resets validating softlock and changes status from Validating -> Accepted.
 //
 // POST /submissions/{SubmissionID}/status/reset-validating
 func (UnimplementedHandler) ActionSubmissionAccepted(ctx context.Context, params ActionSubmissionAcceptedParams) error {
 	return ht.ErrNotImplemented
 }
 // ActionSubmissionReject implements actionSubmissionReject operation.
 //
 // Role Reviewer changes status from Submitted -> Rejected.
@ -67,6 +76,15 @@ func (UnimplementedHandler) ActionSubmissionTriggerValidate(ctx context.Context,
 	return ht.ErrNotImplemented
 }
 // ActionSubmissionValidated implements actionSubmissionValidated operation.
 //
 // Role Admin manually resets uploading softlock and changes status from Uploading -> Validated.
 //
 // POST /submissions/{SubmissionID}/status/reset-uploading
 func (UnimplementedHandler) ActionSubmissionValidated(ctx context.Context, params ActionSubmissionValidatedParams) error {
 	return ht.ErrNotImplemented
 }
 // CreateScript implements createScript operation.
 //
 // Create a new script.
--- a/pkg/service/submissions.go
+++ b/pkg/service/submissions.go
@ -4,6 +4,7 @@ import (
 	"context"
 	"encoding/json"
 	"errors"
 	"time"
 	"git.itzana.me/strafesnet/go-grpc/maps"
 	"git.itzana.me/strafesnet/maps-service/pkg/api"
@ -439,6 +440,42 @@ func (svc *Service) ActionSubmissionTriggerUpload(ctx context.Context, params ap
 	return nil
 }
 // ActionSubmissionValidate invokes actionSubmissionValidate operation.
 //
 // Role SubmissionRelease changes status from Uploading -> Validated.
 //
 // POST /submissions/{SubmissionID}/status/reset-uploading
 func (svc *Service) ActionSubmissionValidated(ctx context.Context, params api.ActionSubmissionValidatedParams) error {
 	userInfo, ok := ctx.Value("UserInfo").(UserInfo)
 	if !ok {
 		return ErrUserInfo
 	}
 	has_role, err := userInfo.HasRoleSubmissionRelease()
 	if err != nil {
 		return err
 	}
 	// check if caller has required role
 	if !has_role {
 		return ErrPermissionDenied
 	}
 	// check when submission was updated
 	submission, err := svc.DB.Submissions().Get(ctx, params.SubmissionID)
 	if err != nil {
 		return err
 	}
 	if time.Now().Before(submission.UpdatedAt.Add(time.Second*10)) {
 		// the last time the submission was updated must be longer than 10 seconds ago
 		return ErrPermissionDenied
 	}
 	// transaction
 	smap := datastore.Optional()
 	smap.Add("status_id", model.StatusValidated)
 	return svc.DB.Submissions().IfStatusThenUpdate(ctx, params.SubmissionID, []model.Status{model.StatusUploading}, smap)
 }
 // ActionSubmissionTriggerValidate invokes actionSubmissionTriggerValidate operation.
 //
 // Role Reviewer triggers validation and changes status from Submitted|Accepted -> Validating.
@ -459,10 +496,25 @@ func (svc *Service) ActionSubmissionTriggerValidate(ctx context.Context, params
 		return ErrPermissionDenied
 	}
 	// read submission (this could be done with a transaction WHERE clause)
 	submission, err := svc.DB.Submissions().Get(ctx, params.SubmissionID)
 	if err != nil {
 		return err
 	}
 	has_role, err = userInfo.IsSubmitter(uint64(submission.Submitter))
 	if err != nil {
 		return err
 	}
 	// check if caller is NOT the submitter
 	if has_role {
 		return ErrPermissionDenied
 	}
 	// transaction
 	smap := datastore.Optional()
 	smap.Add("status_id", model.StatusValidating)
-	submission, err := svc.DB.Submissions().IfStatusThenUpdateAndGet(ctx, params.SubmissionID, []model.Status{model.StatusSubmitted, model.StatusAccepted}, smap)
+	submission, err = svc.DB.Submissions().IfStatusThenUpdateAndGet(ctx, params.SubmissionID, []model.Status{model.StatusSubmitted, model.StatusAccepted}, smap)
 	if err != nil {
 		return err
 	}
@ -484,6 +536,43 @@ func (svc *Service) ActionSubmissionTriggerValidate(ctx context.Context, params
 	return nil
 }
 // ActionSubmissionAccepted implements actionSubmissionAccepted operation.
 //
 // Role SubmissionReview changes status from Validating -> Accepted.
 //
 // POST /submissions/{SubmissionID}/status/reset-validating
 func (svc *Service) ActionSubmissionAccepted(ctx context.Context, params api.ActionSubmissionAcceptedParams) error {
 	userInfo, ok := ctx.Value("UserInfo").(UserInfo)
 	if !ok {
 		return ErrUserInfo
 	}
 	has_role, err := userInfo.HasRoleSubmissionReview()
 	if err != nil {
 		return err
 	}
 	// check if caller has required role
 	if !has_role {
 		return ErrPermissionDenied
 	}
 	// check when submission was updated
 	submission, err := svc.DB.Submissions().Get(ctx, params.SubmissionID)
 	if err != nil {
 		return err
 	}
 	if time.Now().Before(submission.UpdatedAt.Add(time.Second*10)) {
 		// the last time the submission was updated must be longer than 10 seconds ago
 		return ErrPermissionDenied
 	}
 	// transaction
 	smap := datastore.Optional()
 	smap.Add("status_id", model.StatusAccepted)
 	smap.Add("status_message", "Manually forced reset")
 	return svc.DB.Submissions().IfStatusThenUpdate(ctx, params.SubmissionID, []model.Status{model.StatusValidating}, smap)
 }
 // ReleaseSubmissions invokes releaseSubmissions operation.
 //
 // Release a set of uploaded maps.
--- a/web/package.json
+++ b/web/package.json
@ -20,11 +20,11 @@
  },
  "devDependencies": {
    "typescript": "^5.8.2",
-    "@types/node": "^20.17.24",
+    "@types/node": "^20.17.27",
-    "@types/react": "^19.0.11",
+    "@types/react": "^19.0.12",
    "@types/react-dom": "^19.0.4",
-    "eslint": "^9.22.0",
+    "eslint": "^9.23.0",
    "eslint-config-next": "15.1.0",
-    "@eslint/eslintrc": "^3.3.0"
+    "@eslint/eslintrc": "^3.3.1"
  }
 }
--- a/web/src/app/_components/loginpage.tsx
+++ b/web/src/app/_components/loginpage.tsx
@ -0,0 +1,24 @@
 "use client"
 import { Button } from "@mui/material"
 import "./styles/loginpage.scss"
 let logged_in: boolean = false
 function login() {
 	//This would instead send you to the auth page
 	window.location.reload()
 }
 export default function LoginPage() {
 	return <main className="login-page">
 		<section>
 			<h1>Login to continue</h1>
 			<Button variant="outlined" className="login-button" onClick={login}>Login</Button>
 		</section>
 	</main>
 }
 export {
 	logged_in
 }
--- a/web/src/app/_components/styles/loginpage.scss
+++ b/web/src/app/_components/styles/loginpage.scss
@ -0,0 +1,21 @@
 .login-page {
 	width: 100vw;
 	height: 100vh;
 	display: flex;
 	justify-content: center;
 	align-items: center;
 	.login-button {
 		margin-inline: auto;
 		width: 70%;
 		height: 40px;
 	}
 	h1 {
 		font-size: 2.3rem;
 	}
 	section {
 		display: grid;
 	}
 }
--- a/web/src/app/_components/webpage.tsx
+++ b/web/src/app/_components/webpage.tsx
@ -1,8 +1,16 @@
 "use client"
 import Header from "./header";
 import LoginPage from "./loginpage"
 import { logged_in } from "./loginpage";
 export default function Webpage({children}: Readonly<{children?: React.ReactNode}>) {
-    return (<>
+	if (logged_in) {
-        <Header/>
+		return <>
-        {children}
+			<Header/>
-    </>)
+			{children}
 		</>
 	}
 	return <LoginPage/>
 }
--- a/web/src/app/submissions/[submissionId]/_reviewButtons.tsx
+++ b/web/src/app/submissions/[submissionId]/_reviewButtons.tsx
@ -1,8 +1,8 @@
 import { Button, ButtonOwnProps } from "@mui/material";
-type Actions = "Completed" | "Submit" | "Reject" | "Revoke"
+type Actions = "Completed" | "Submit" | "Reject" | "Revoke" | "Reset Uploading (fix softlocked status)" | "Reset Validating (fix softlocked status)"
 type Review  = Actions | "Accept" | "Validate" | "Upload"
-type Action  = Lowercase<Actions> | "trigger-validate" | "trigger-upload"
+type Action  = Lowercase<Actions> | "trigger-validate" | "trigger-upload" | "reset-uploading" | "reset-validating"
 interface ReviewButton {
 	name: Review,
@ -41,9 +41,11 @@ export default function ReviewButtons(props: ReviewId) {
 	// Revoke         | Submitter | Submitted, ChangesRequested
 	// Accept         | Reviewer  | Submitted
 	// Validate       | Reviewer  | Accepted
 	// ResetValidating| Reviewer  | Validating
 	// Reject         | Reviewer  | Submitted
 	// RequestChanges | Reviewer  | Validated, Accepted, Submitted
 	// Upload         | MapAdmin  | Validated
 	// ResetUploading | MapAdmin  | Uploading
 	return (
 		<section className="review-set">
 			<ReviewButton color="info"  name="Submit"    action="submit"           submissionId={submissionId}/>
@ -52,6 +54,8 @@ export default function ReviewButtons(props: ReviewId) {
 			<ReviewButton color="info"  name="Validate"  action="trigger-validate" submissionId={submissionId}/>
 			<ReviewButton color="error" name="Reject"    action="reject"           submissionId={submissionId}/>
 			<ReviewButton color="info"  name="Upload"    action="trigger-upload"   submissionId={submissionId}/>
 			<ReviewButton color="error" name="Reset Uploading (fix softlocked status)"    action="reset-uploading"   submissionId={submissionId}/>
 			<ReviewButton color="error" name="Reset Validating (fix softlocked status)"   action="reset-validating"  submissionId={submissionId}/>
 		</section>
 	)
 }
Author	SHA1	Message	Date
rhpidfyre	68a9555724	Mockup login page that displays if you're not logged in	2025-03-24 16:48:49 -04:00
itzaname	c757850bd3	Enable auto deploy	2025-03-23 21:50:46 -04:00
Quaternions	eb1b0ecb15	submissions: submitter cannot accept their own submission	2025-03-23 21:50:46 -04:00
Quaternions	8ec9333f34	submissions: reject reset unless validator is stale	2025-03-23 21:50:46 -04:00
Quaternions	cabbb4d85f	web: implement reset from softlock	2025-03-23 21:50:46 -04:00
Quaternions	b2fa96904a	openapi: generate	2025-03-23 21:50:46 -04:00
Quaternions	81aaf8a9f0	openapi: implement reset from softlock	2025-03-23 21:50:46 -04:00
Quaternions	3c1228a43d	submissions: implement reset from softlock	2025-03-23 21:50:46 -04:00