fix(login): remove cookie fast-path from login subcommand (#344)

## Problem `:CP <platform> login` short-circuited on cached cookies/tokens — if an old session was still valid, the new credentials were never tested. The user got "login successful" even with wrong input. USACO submit also wasted a roundtrip on `_check_usaco_login` every time. ## Solution Always validate credentials in the login path. Remove cookie/token loading from `_login_headless` (AtCoder), `_login_headless_cf` (CF), `_login_headless_codechef` (CodeChef), and `login` (CSES). For USACO submit, replace the `_check_usaco_login` roundtrip with cookie trust + retry-on-auth-failure (the Kattis pattern). Submit paths are unchanged — cookie fast-paths remain for contest speed. Closes #331
2026-03-06 17:53:22 -05:00 · 2026-03-06 17:53:22 -05:00 · 592f977296
commit 592f977296
parent 8465e70772
5 changed files with 97 additions and 140 deletions
--- a/scrapers/usaco.py
+++ b/scrapers/usaco.py
@ -423,11 +423,7 @@ class USACOScraper(BaseScraper):

        async with httpx.AsyncClient(follow_redirects=True) as client:
            await _load_usaco_cookies(client)
-            print(json.dumps({"status": "checking_login"}), flush=True)
-            logged_in = bool(client.cookies) and await _check_usaco_login(
-                client, username
-            )
-            if not logged_in:
+            if not client.cookies:
                print(json.dumps({"status": "logging_in"}), flush=True)
                try:
                    ok = await _do_usaco_login(client, username, password)
@ -437,44 +433,72 @@ class USACOScraper(BaseScraper):
                    return self._submit_error("Login failed (bad credentials?)")
                await _save_usaco_cookies(client)

-            print(json.dumps({"status": "submitting"}), flush=True)
-            try:
-                page_r = await client.get(
-                    f"{_AUTH_BASE}/index.php?page=viewproblem2&cpid={problem_id}",
-                    headers=HEADERS,
-                    timeout=HTTP_TIMEOUT,
-                )
-                form_url, hidden_fields, lang_val = _parse_submit_form(
-                    page_r.text, language_id
-                )
-            except Exception:
-                form_url = _AUTH_BASE + _SUBMIT_PATH
-                hidden_fields = {}
-                lang_val = None
+            result = await self._do_submit(client, problem_id, language_id, source)

-            data: dict[str, str] = {"cpid": problem_id, **hidden_fields}
-            data["language"] = lang_val if lang_val is not None else language_id
-            ext = "py" if "python" in language_id.lower() else "cpp"
+            if result.success or result.error != "auth_failure":
+                return result
+
+            client.cookies.clear()
+            print(json.dumps({"status": "logging_in"}), flush=True)
            try:
-                r = await client.post(
-                    form_url,
-                    data=data,
-                    files={"sourcefile": (f"solution.{ext}", source, "text/plain")},
-                    headers=HEADERS,
-                    timeout=HTTP_TIMEOUT,
-                )
-                r.raise_for_status()
+                ok = await _do_usaco_login(client, username, password)
            except Exception as e:
-                return self._submit_error(f"Submit request failed: {e}")
+                return self._submit_error(f"Login failed: {e}")
+            if not ok:
+                return self._submit_error("Login failed (bad credentials?)")
+            await _save_usaco_cookies(client)

-            try:
-                resp = r.json()
-                sid = str(resp.get("submission_id", resp.get("id", "")))
-            except Exception:
-                sid = ""
-            return SubmitResult(
-                success=True, error="", submission_id=sid, verdict="submitted"
+            return await self._do_submit(client, problem_id, language_id, source)
+
+    async def _do_submit(
+        self,
+        client: httpx.AsyncClient,
+        problem_id: str,
+        language_id: str,
+        source: bytes,
+    ) -> SubmitResult:
+        print(json.dumps({"status": "submitting"}), flush=True)
+        try:
+            page_r = await client.get(
+                f"{_AUTH_BASE}/index.php?page=viewproblem2&cpid={problem_id}",
+                headers=HEADERS,
+                timeout=HTTP_TIMEOUT,
            )
+            if "login" in page_r.url.path.lower() or "Login" in page_r.text[:2000]:
+                return self._submit_error("auth_failure")
+            form_url, hidden_fields, lang_val = _parse_submit_form(
+                page_r.text, language_id
+            )
+        except Exception:
+            form_url = _AUTH_BASE + _SUBMIT_PATH
+            hidden_fields = {}
+            lang_val = None
+
+        data: dict[str, str] = {"cpid": problem_id, **hidden_fields}
+        data["language"] = lang_val if lang_val is not None else language_id
+        ext = "py" if "python" in language_id.lower() else "cpp"
+        try:
+            r = await client.post(
+                form_url,
+                data=data,
+                files={"sourcefile": (f"solution.{ext}", source, "text/plain")},
+                headers=HEADERS,
+                timeout=HTTP_TIMEOUT,
+            )
+            r.raise_for_status()
+        except Exception as e:
+            return self._submit_error(f"Submit request failed: {e}")
+
+        try:
+            resp = r.json()
+            if resp.get("code") == 0 and "login" in resp.get("message", "").lower():
+                return self._submit_error("auth_failure")
+            sid = str(resp.get("submission_id", resp.get("id", "")))
+        except Exception:
+            sid = ""
+        return SubmitResult(
+            success=True, error="", submission_id=sid, verdict="submitted"
+        )

    async def login(self, credentials: dict[str, str]) -> LoginResult:
        username = credentials.get("username", "")