/*
 * Copyright 2014 Federal Chancellery Austria
 * MOA-ID has been developed in a cooperation between BRZ, the Federal
 * Chancellery Austria - ICT staff unit, and Graz University of Technology.
 *
 * Licensed under the EUPL, Version 1.1 or - as soon they will be approved by
 * the European Commission - subsequent versions of the EUPL (the "Licence");
 * You may not use this work except in compliance with the Licence.
 * You may obtain a copy of the Licence at:
 * http://www.osor.eu/eupl/
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the Licence is distributed on an "AS IS" basis,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the Licence for the specific language governing permissions and
 * limitations under the Licence.
 *
 * This product combines work with different licenses. See the "NOTICE" text
 * file for details on the various modules and licenses.
 * The "NOTICE" text file is part of the distribution. Any derivative works
 * that you distribute must include a readable copy of the "NOTICE" text file.
 */
package at.gv.egovernment.moa.id.config.webgui.validation.task.impl;

import java.util.ArrayList;
import java.util.Arrays;
import java.util.Collections;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
import java.util.UUID;
import java.util.regex.Pattern;

import org.apache.commons.lang.StringUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import at.gv.egiz.components.configuration.api.Configuration;
import at.gv.egovernment.moa.id.commons.config.MOAIDConfigurationConstants;
import at.gv.egovernment.moa.id.commons.validation.ValidationHelper;
import at.gv.egovernment.moa.id.config.webgui.exception.ConfigurationTaskValidationException;
import at.gv.egovernment.moa.id.config.webgui.exception.ValidationObjectIdentifier;
import at.gv.egovernment.moa.id.config.webgui.helper.LanguageHelper;
import at.gv.egovernment.moa.id.config.webgui.validation.task.AbstractTaskValidator;
import at.gv.egovernment.moa.id.config.webgui.validation.task.IDynamicLoadableTaskValidator;
import at.gv.egovernment.moa.util.MiscUtil;

/**
 * @author tlenz
 *
 */
public class ServicesProtocolOpenIDTask extends AbstractTaskValidator implements IDynamicLoadableTaskValidator {
	private static final Logger log = LoggerFactory.getLogger(ServicesProtocolOpenIDTask.class);
	private static final List<String> KEYWHITELIST;
		
	static {
		ArrayList<String> temp = new ArrayList<String>();		
		KEYWHITELIST = Collections.unmodifiableList(temp);
	}
	
	/* (non-Javadoc)
	 * @see at.gv.egovernment.moa.id.config.webgui.validation.task.ITaskValidator#getKeyPrefix()
	 */
	@Override
	public String getKeyPrefix() {
		return "";
	}

	/* (non-Javadoc)
	 * @see at.gv.egovernment.moa.id.config.webgui.validation.task.ITaskValidator#getName()
	 */
	@Override
	public String getName() {
		return "Service - Protocol OpenID-Connect Task";
	}

	/* (non-Javadoc)
	 * @see at.gv.egovernment.moa.id.config.webgui.validation.task.ITaskValidator#postProcessing(java.util.Map, java.util.List, at.gv.egiz.components.configuration.api.Configuration)
	 */
	@Override
	public Map<String, String> postProcessing(Map<String, String> input,
			List<String> keysToDelete, Configuration dbconfig) {
		Map<String, String> newConfigValues = new HashMap<String, String>();
		
		//TODO: check secret 
		String guiClientID = input.get(MOAIDConfigurationConstants.SERVICE_PROTOCOLS_OPENID_CLIENTID);
		String guiClientSecret = input.get(MOAIDConfigurationConstants.SERVICE_PROTOCOLS_OPENID_CLIENTSECRET);
		
		if (MiscUtil.isEmpty(guiClientSecret)) {
			log.info("OpenID Connect client-secret is empty --> generate a new secrete.");
			guiClientSecret = UUID.randomUUID().toString();
			newConfigValues.put(
					MOAIDConfigurationConstants.SERVICE_PROTOCOLS_OPENID_CLIENTSECRET, 
					guiClientSecret);
			
		}
		
		if (MiscUtil.isEmpty(guiClientID)) {
			log.info("OpenID Connect ClientID is empty --> Set ClientID to unique identifier.");
			newConfigValues.put(
					MOAIDConfigurationConstants.SERVICE_PROTOCOLS_OPENID_CLIENTID, 
					input.get(MOAIDConfigurationConstants.SERVICE_UNIQUEIDENTIFIER));
			
		}
		
		if (newConfigValues.isEmpty())
			return null;
		else
			return newConfigValues;
	}

	/* (non-Javadoc)
	 * @see at.gv.egovernment.moa.id.config.webgui.validation.task.AbstractTaskValidator#tastValidate(java.util.Map)
	 */
	@Override
	protected void taskValidate(Map<String, String> input)
			throws ConfigurationTaskValidationException {				
		List<ValidationObjectIdentifier> errors = new ArrayList<ValidationObjectIdentifier>();
		
		String redirectURL = input.get(MOAIDConfigurationConstants.SERVICE_PROTOCOLS_OPENID_REDIRECTURL);
		// validate redirectUri
		if (StringUtils.isNotEmpty(redirectURL) && !ValidationHelper.validateURL(redirectURL)) {
			errors.add(new ValidationObjectIdentifier(
					MOAIDConfigurationConstants.SERVICE_PROTOCOLS_OPENID_REDIRECTURL, 
					"OpenID - Redirect URL",
					LanguageHelper.getErrorString("error.oa.oauth.redirecturi")));
		}
		
		if (!errors.isEmpty())
			throw new ConfigurationTaskValidationException(errors);
				
	}

	/* (non-Javadoc)
	 * @see at.gv.egovernment.moa.id.config.webgui.validation.task.AbstractTaskValidator#getAllAllowedKeys()
	 */
	@Override
	public List<Pattern> getAllAllowedPatterns() {
		return generatePatternsFromKeys(KEYWHITELIST);
	}

	/* (non-Javadoc)
	 * @see at.gv.egovernment.moa.id.config.webgui.validation.task.IDynamicLoadableTaskValidator#getModulValidatorPrefix()
	 */
	@Override
	public List<String> getModulValidatorPrefix() {
		return Arrays.asList(
				MOAIDConfigurationConstants.PREFIX_MOAID_SERVICES_OA
				);
	}

}