package main

import (
	"fmt"
	"strings"
	"net/http"
	"text/template"
	log "github.com/sirupsen/logrus"
	db "sanine.net/git/phlox/db"
)


func LoginUser(username, password string) (bool, db.Session, error) {
	p := &P
	auth, user, err := p.AuthenticateUser(username, password)
	if err != nil {
		return false, db.Session{}, err
	}
	if auth == false {
		return false, db.Session{}, nil
	}
	// auth was successful!
	session, err := p.CreateSession(user)
	if err != nil {
		return false, db.Session{}, err
	}
	return true, session, nil
}


func LoginPostHandler(w http.ResponseWriter, r *http.Request) {
	r.ParseForm()
	username := r.Form.Get("username")
	password := strings.TrimSpace(r.Form.Get("password"))
	log.Infof("username: %v\tpassword: '%v'", username, password)
	redirect := r.Form.Get("redirect")

	auth, session, err := LoginUser(username, password)
	if err != nil {
		// respond with error page
		w.WriteHeader(http.StatusInternalServerError)
		fmt.Fprintf(w, "an error was encountered when processing the request")
		log.Error(err)
		return
	}

	if auth == false {
		// not allowed!
		w.WriteHeader(http.StatusUnauthorized)
		fmt.Fprintf(w, "bad username or password")
		log.Errorf("failed login for %v", username)
		return
	}

	http.SetCookie(w, &http.Cookie{
		Name: "phlox-session-id",
		Value: session.Id,
		SameSite: http.SameSiteLaxMode,
	})

	w.Header().Add("Location", redirect)
	w.WriteHeader(http.StatusTemporaryRedirect)
}


var page *template.Template

type Page struct {
	Title string
	Body string
}


func InitLogin() {
	var err error
	page, err = template.New("").Parse(`
<!doctype html>
<html>
	<head>
		<meta charset="utf-8">
		<meta name="viewport" content="width=device-width, initial-scale=1">
		<title>Login</title>
	</head>
	<body>
		{{ .Body }}
	</body>
</html>
`)

	if err != nil {
		log.Fatal(err)
	}

	http.HandleFunc("/login", func (w http.ResponseWriter, r *http.Request) {
		if r.Method == "POST" {
			LoginPostHandler(w, r)
		} else {
			LoginGetHandler(w, r)
		}
	})
}


func LoginGetHandler(w http.ResponseWriter, r *http.Request) {
	w.WriteHeader(http.StatusOK)
	page.Execute(w, Page{
		Title: "Login",
		Body: `
			<form method="post">
				<label for="user">Username</label>
				<input type="text" id="user" name="username">
				<br>
				<label for="pass">Password</label>
				<input type="text" id="pass" name="password">
				<br>
				<input type="submit" value="Submit">
		`,
	})
}