/*
* Copyright 2003 Federal Chancellery Austria
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*     http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package at.gv.egovernment.moa.id.auth.servlet;

import java.io.IOException;
import java.util.Map;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.apache.commons.fileupload.FileUploadException;

import at.gv.egovernment.moa.id.MOAIDException;
import at.gv.egovernment.moa.id.auth.AuthenticationServer;
import at.gv.egovernment.moa.id.auth.data.AuthenticationSession;
import at.gv.egovernment.moa.id.util.ServletUtils;
import at.gv.egovernment.moa.logging.Logger;

/**
 * Servlet requested for verifying the identity link
 * provided by the security layer implementation.
 * Utilizes the {@link AuthenticationServer}.
 *
 * @author Paul Ivancsics
 * @version $Id$
 */
public class VerifyIdentityLinkServlet extends AuthServlet {

  /**
   * Constructor for VerifyIdentityLinkServlet.
   */
  public VerifyIdentityLinkServlet() {
    super();
  }

  /**
   * GET requested by security layer implementation to verify
   * that data URL resource is available.
   * @see javax.servlet.http.HttpServlet#doGet(HttpServletRequest, HttpServletResponse)
   */
  protected void doGet(HttpServletRequest req, HttpServletResponse resp)
    throws ServletException, IOException { 
    	
		Logger.debug("GET VerifyIdentityLink");
  }

  /**
   * Verifies the identity link and responds with a new 
   * <code>CreateXMLSignatureRequest</code>.
   * <br>
   * Request parameters:
   * <ul>
   * <li>MOASessionID: ID of associated authentication session</li>
   * <li>XMLResponse: <code>&lt;InfoboxReadResponse&gt;</code></li>
   * </ul>
   * Response:
   * <ul>
   * <li>Content type: <code>"text/xml"</code></li>
   * <li>Content: see return value of {@link AuthenticationServer#verifyIdentityLink}</li>
   * <li>Error status: <code>500</code>
   * </ul>
   * @see javax.servlet.http.HttpServlet#doPost(HttpServletRequest, HttpServletResponse)
   */
  protected void doPost(HttpServletRequest req, HttpServletResponse resp)
    throws ServletException, IOException {

		Logger.debug("POST VerifyIdentityLink");
    Map parameters;
    try 
    {
      parameters = getParameters(req);
    } catch (FileUploadException e) 
    {
      Logger.error("Parsing mulitpart/form-data request parameters failed: " + e.getMessage());
      throw new IOException(e.getMessage());
    }
    String sessionID = req.getParameter(PARAM_SESSIONID);
    
    try {
      AuthenticationSession session = AuthenticationServer.getSession(sessionID);
      String createXMLSignatureRequestOrRedirect = AuthenticationServer.getInstance().verifyIdentityLink(sessionID, parameters);
      ServletUtils.writeCreateXMLSignatureRequestOrRedirect(resp, session, createXMLSignatureRequestOrRedirect, AuthenticationServer.REQ_PROCESS_VALIDATOR_INPUT, "VerifyIdentityLink"); 
    }
    catch (MOAIDException ex) {
      handleError(null, ex, req, resp);
    }
  }

}