/*
* Copyright 2003 Federal Chancellery Austria
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*     http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
/**
 * 
 */
package at.gv.egovernment.moa.id.util;

import java.io.IOException;
import java.io.OutputStream;

import javax.servlet.http.HttpServletResponse;

import at.gv.egovernment.moa.id.MOAIDException;
import at.gv.egovernment.moa.id.auth.AuthenticationServer;
import at.gv.egovernment.moa.id.auth.builder.DataURLBuilder;
import at.gv.egovernment.moa.id.auth.data.AuthenticationSession;
import at.gv.egovernment.moa.logging.Logger;

/**
 * @author <a href="mailto:peter.danner@egiz.gv.at">Peter Danner</a>
 *
 */
public class ServletUtils {
  
  /**
   * Writes out whether the CreateXMLSignatureRequest or a Redirect for form input processing 
   * depending on the requests starting text.
   * 
   * @param resp The httpServletResponse
   * @param session The current AuthenticationSession
   * @param createXMLSignatureRequestOrRedirect The request
   * @param servletGoal The servlet to which the redirect should happen
   * @param servletName The servlet name for debug purposes
   * @throws MOAIDException
   * @throws IOException
   */
  public static void writeCreateXMLSignatureRequestOrRedirect(HttpServletResponse resp, AuthenticationSession session, String createXMLSignatureRequestOrRedirect, String servletGoal, String servletName) 
  throws MOAIDException,
         IOException
  { 
    if (!createXMLSignatureRequestOrRedirect.startsWith("Redirect")) {
      resp.setStatus(307);
      String dataURL = new DataURLBuilder().buildDataURL(
        session.getAuthURL(), AuthenticationServer.REQ_VERIFY_AUTH_BLOCK, session.getSessionID());
      resp.addHeader("Location", dataURL);
      
      //TODO test impact of explicit setting charset with older versions of BKUs (HotSign)
      resp.setContentType("text/xml;charset=UTF-8");
      
      OutputStream out = resp.getOutputStream();
      out.write(createXMLSignatureRequestOrRedirect.getBytes("UTF-8"));
      out.flush();
      out.close();
      Logger.debug("Finished POST " + servletName);
    } else {
      String redirectURL = new DataURLBuilder().buildDataURL(session.getAuthURL(), servletGoal, session.getSessionID());
      resp.setContentType("text/html");
      resp.setStatus(302);
      resp.addHeader("Location", redirectURL);
      Logger.debug("REDIRECT TO: " + redirectURL);
      
    }
  }

}