#!/usr/bin/env ruby

=begin
るびろぐ 2 ランキング表示 CGI "RubyRogue2Score"

$Revision: 1.6 $

Copyright(C) 2004-2006 Atzm WATANABE, all rights reserved.
Destributed under the GNU General Public License version 2 or later.
=end

require "postgres"
require "kconv"
require "cgi-lib"

### begin パラメータ
# Web サイト関係
$PAGE_TITLE  = "RubyRogue2 Score Ranking"
$SITE_URI    = "http://"
$CSS_URI     = ""
$SCRIPT_NAME = "rubyrogue2score.rb"
$ENCODING    = "EUC-JP" # or Shift_JIS or ISO-2022-JP

$HTML_HEADER = <<-end
    <h1>歴代の戦没者たち</h1>
end

$HTML_FOOTER = <<-end
    <p>死屍累々。</p>
end

# 検索エントリ関係
$SEARCH_DEFAULT = "戦没者の検索"
$SD_FORE_COLOR  = "black"
$SD_HIDE_COLOR  = "gray"

# フォーム名等
$FORM  = "form"
$SORT  = "sort"
$LINES = "lines"
$NAME  = "name"

# PostgreSQL デーモン関係
$PG_HOST   = nil
$PG_PORT   = nil
$PG_OPT    = nil
$PG_TTY    = nil
$PG_DBNAME = "postgres"
$PG_LOGIN  = "postgres"
$PG_PASSWD = nil

# 出力する DB のカラム名とテーブルのカラム名の対応
$COLUMNS = [
    ["score",        "金塊"],
    ["maxcavelevel", "階"],
    ["name",         "名前"],
    ["died_of",      "断末魔"],
    ["maxhp",        "体力"],
    ["weapon",       "武器"],
    ["armor",        "防具"],
    ["left_ring",    "指輪(左)"],
    ["right_ring",   "指輪(右)"],
    ["maxstr",       "強さ"],
    ["level",        "レベル"],
    ["kill",         "倒した敵"],
           ]

# 出力する行数とドロップダウンリスト内文字列の対応 (all は予約語とする)
$LIMITS = [["10",  "トップ10"],
           ["50",  "トップ50"],
           ["100", "トップ100"],
           ["all", "全て"]]

### end パラメータ

if $ENCODING == "EUC-JP"
  $CONV = Kconv.method(:toeuc)
elsif $ENCODING == "Shift_JIS"
  $CONV = Kconv.method(:tosjis)
else
  $CONV = Kconv.method(:tojis)
end

def parse_args
=begin
引数文字列の汚染チェックと整形
=end

  input = CGI.new
  sort  = input[$SORT]
  lines = input[$LINES]
  name  = input[$NAME]

  # ORDER BY の汚染回避
  @sort = $COLUMNS[0][0]
  if $COLUMNS.transpose[0].include?( sort )
    @sort = sort
  end

  # LIMIT の汚染回避
  @limit = "limit 10"
  lims   = $LIMITS.transpose
  index  = lims[0].index( lines )
  if index
    if lines == "all"
      @limit = ""
    else
      @limit = "limit #{lims[0][index]}"
    end
  end

  # WHERE の汚染回避
  begin
    name = name.gsub( /['\\]/, "" )
  rescue
  end

  @name = ""
  if name and name != "" and name != $SEARCH_DEFAULT
    @name = "where name = '#{name}'"
  end
end

def print_header
=begin
共通のドキュメントヘッダを出力
=end

  sort_by = ""
  $COLUMNS.each do | key, name |
    sort_by << "        <option value=\"#{key}\">#{name}</option>\n"
  end
  sort_by.chomp!

  limits = ""
  $LIMITS.each do | key, name |
    limits << "         <option value=\"#{key}\">#{name}</option>\n"
  end
  limits.chomp!

  puts <<-end
Content-type: text/html; charset=#{$ENCODING}

<?xml version="1.0" encoding="#{$ENCODING}"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="ja" lang="ja">
  <head>
    <meta name="generator" content="RubyRogue2Score $Revision: 1.6 $" />
    <meta http-equiv="Content-type" content="text/html; charset=#{$ENCODING}" />
    <meta http-equiv="Content-style-type" content="text/css; charset=#{$ENCODING}" />
    <meta http-equiv="Content-script-type" content="text/javascript; charset=#{$ENCODING}" />
    <title>#{$PAGE_TITLE}</title>
    <link rev="Made" href="#{$SITE_URI}" />
    <link rel="Next" href="#{ENV['HTTP_REFERER']}" />
    <link rel="stylesheet" type="text/css" href="#{$CSS_URI}" />

    <style type="text/css">
      input##{$NAME}{
        color: #{$SD_HIDE_COLOR};
      }
    </style>

    <script language="javascript" type="text/javascript">
      function focusIn(){
          if(document.#{$FORM}.#{$NAME}.value == '#{$SEARCH_DEFAULT}'){
              document.#{$FORM}.#{$NAME}.value = '';

              if(document.all || document.getElementById)
                  document.getElementById('#{$NAME}').style.color = "#{$SD_FORE_COLOR}";
              else if(document.layers)
                  document['#{$NAME}'].color = "#{$SD_FORE_COLOR}";
          }
      }

      function focusOut(){
          if(document.#{$FORM}.#{$NAME}.value == ''){
              document.#{$FORM}.#{$NAME}.value = '#{$SEARCH_DEFAULT}';

              if(document.all || document.getElementById)
                  document.getElementById('#{$NAME}').style.color = "#{$SD_HIDE_COLOR}";
              else if(document.layers)
                  document['#{$NAME}'].color = "#{$SD_HIDE_COLOR}";
          }
      }
    </script>
  </head>
  <body>
#{$HTML_HEADER}
    <form action="#{$SCRIPT_NAME}" method="post" name="#{$FORM}" id="#{$FORM}" style="text-align: right; font-size:small;">
      <input type="text" name="#{$NAME}" id="#{$NAME}" size="12" tabindex="0" accesskey="s" value="#{$SEARCH_DEFAULT}" onfocus="focusIn();" onblur="focusOut();" />
      <select name="#{$SORT}" tabindex="1">
#{sort_by}
      </select>
      <select name="#{$LINES}" tabindex="2">
#{limits}
      </select>
      <input type="submit" name="submit" value="OK" tabindex="2" accesskey="o" />
    </form>
  end
end

def print_footer
=begin
共通のドキュメントフッタを出力
=end

  puts <<-end
    <hr />
#{$HTML_FOOTER}
    <p style="text-align: right; font-size: small;">
      Generated by RubyRogue2Score: $Revision: 1.6 $<br />
      Distributed under the GNU Genetal Public License version 2 or later.
    </p>
  </body>
</html>
  end
end

def get_rows
=begin
PostgreSQL へクエリを送り，結果を返す
=end

  conn = PGconn.connect( $PG_HOST, $PG_PORT, $PG_OPT, $PG_TTY, $PG_DBNAME, $PG_LOGIN, $PG_PASSWD )
  result = nil

  begin
    res = conn.exec( "select * from rubyrogue2_ranking #{@name} order by #{@sort} desc #{@limit};" )
    result = res.result
    res.clear
  ensure
    conn.close
  end

  result
end

def print_table
=begin
PostgreSQL へクエリを送り，結果をテーブルに起こす
=end

  table_th = ""
  $COLUMNS.each do | key, title |
    table_th << "        <th abbr=\"#{key}\">#{title}</th>\n"
  end
  table_th.chomp!

  puts <<-end
    <table summary="Score">
      <tr>
#{table_th}
      </tr>
  end

  # メモリ圧迫が怖いのでバッファしない
  get_rows.each do | score, name, died_of, hp, maxhp, str, maxstr, level,
                     exp, kill, weapon, armor, left_ring, right_ring,
                     maxcavelevel, date |
    name       = $CONV.call( name )
    died_of    = $CONV.call( died_of )
    weapon     = $CONV.call( weapon )
    armor      = $CONV.call( armor )
    left_ring  = $CONV.call( left_ring )
    right_ring = $CONV.call( right_ring )

    puts "      <tr>"
    $COLUMNS.each do | key, _ |
      begin
        val = eval( key )
        puts "        <td>#{val}</td>"
      rescue NameError
        puts "        <td>NameError: DBカラム名を確認して下さい</td>"
      end
    end
    puts "      </tr>"
  end

  puts "    </table>"
end

parse_args
print_header
print_table
print_footer