package at.gv.egovernment.moa.id.auth.modules.internal.tasks;

import static at.gv.egovernment.moa.id.commons.MOAIDAuthConstants.GET_MIS_SESSIONID;

import java.security.GeneralSecurityException;
import java.util.List;

import javax.net.ssl.SSLSocketFactory;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.xml.parsers.ParserConfigurationException;

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Qualifier;
import org.springframework.stereotype.Component;
import org.xml.sax.SAXException;

import at.gv.egovernment.moa.id.advancedlogging.MOAIDEventConstants;
import at.gv.egovernment.moa.id.auth.AuthenticationServer;
import at.gv.egovernment.moa.id.auth.exception.AuthenticationException;
import at.gv.egovernment.moa.id.auth.modules.AbstractAuthServletTask;
import at.gv.egovernment.moa.id.auth.modules.TaskExecutionException;
import at.gv.egovernment.moa.id.commons.api.ConnectionParameterInterface;
import at.gv.egovernment.moa.id.commons.api.data.IMISMandate;
import at.gv.egovernment.moa.id.commons.api.exceptions.MOAIDException;
import at.gv.egovernment.moa.id.data.MISMandate;
import at.gv.egovernment.moa.id.process.api.ExecutionContext;
import at.gv.egovernment.moa.id.util.SSLUtils;
import at.gv.egovernment.moa.id.util.client.mis.simple.MISSimpleClient;
import at.gv.egovernment.moa.logging.Logger;
import at.gv.egovernment.moa.util.DOMUtils;
import iaik.pki.PKIException;

/**
 * Retrieves a mandate from the online mandate issuing service.<p/>
 * In detail:
 * <ul>
 * <li>Renames the moa session id.</li>
 * <li>Retrieves the mandate referenced within the moa session from the online (external) mandate issuing service.</li>
 * <li>Verifies the mandate.</li>
 * <li>Puts mandate into moa session.</li>
 * <li>Redirects back to {@code /dispatcher} in order to finalize the authentication.</li>
 * </ul>
 * Expects:
 * <ul>
 * <li>HttpServletRequest parameter {@linkplain at.gv.egovernment.moa.id.commons.MOAIDAuthConstants#PARAM_SESSIONID PARAM_SESSIONID}</li>
 * </ul>
 * Result:
 * <ul>
 * <li>Mandate put into moa session.</li>
 * <li>Redirect to {@code /dispatcher}.</li>
 * </ul>
 * Code taken from {@link at.gv.egovernment.moa.id.auth.servlet.GetMISSessionIDServlet}.
 * @see #execute(ExecutionContext, HttpServletRequest, HttpServletResponse)
 *
 */
@Component("GetMISSessionIDTask")
public class GetMISSessionIDTask extends AbstractAuthServletTask {

	@Autowired @Qualifier("CitizenCardAuthenticationServer") private AuthenticationServer authServer;
	
	@Override
	public void execute(ExecutionContext executionContext, HttpServletRequest req, HttpServletResponse resp)
			throws TaskExecutionException {
		
		Logger.debug("POST GetMISSessionIDServlet");

		try {
			//execute default task initialization
			defaultTaskInitialization(req, executionContext);
			
			//get MIS sessionID
			String misSessionID = moasession.getMISSessionID();

			//get mandates from MIS
			ConnectionParameterInterface connectionParameters = authConfig
					.getOnlineMandatesConnectionParameter(pendingReq.getOnlineApplicationConfiguration());
			SSLSocketFactory sslFactory = SSLUtils.getSSLSocketFactory(
					authConfig,
					connectionParameters);
			List<MISMandate> list = MISSimpleClient.sendGetMandatesRequest(
					connectionParameters.getUrl(), misSessionID, sslFactory, authConfig);

			//check if mandates received
			if (list == null || list.size() == 0) {
				Logger.error("Keine Vollmacht gefunden.");
				throw new AuthenticationException("auth.15", null);
			}

			revisionsLogger.logEvent(pendingReq.getOnlineApplicationConfiguration(), 
					pendingReq, MOAIDEventConstants.AUTHPROCESS_MANDATE_RECEIVED);

			
			// for now: list contains only one element
			IMISMandate mandate = (IMISMandate) list.get(0);

			String sMandate = new String(mandate.getMandate(), "UTF-8");
			if (sMandate == null || sMandate.compareToIgnoreCase("") == 0) {
				Logger.error("Mandate is empty.");
				throw new AuthenticationException("auth.15",
						new Object[] { GET_MIS_SESSIONID });
			}
						
			//check if it is a parsable XML
			byte[] byteMandate = mandate.getMandate();
			// TODO[tlenz]: UTF-8 ?
			String stringMandate = new String(byteMandate);
			DOMUtils.parseDocument(stringMandate, false,
					null, null).getDocumentElement();
			
			// extract RepresentationType
			authServer.verifyMandate(pendingReq, moasession, mandate);
			
			moasession.setMISMandate(mandate);
			
			//log mandate specific set of events
			revisionsLogger.logMandateEventSet(pendingReq, mandate);
									
			//store pending request with new MOASession data information
			requestStoreage.storePendingRequest(pendingReq);
			
			
		} catch (MOAIDException ex) {
			throw new TaskExecutionException(pendingReq, ex.getMessage(), ex);
			
		} catch (GeneralSecurityException ex) {
			throw new TaskExecutionException(pendingReq, ex.getMessage(), ex);
			
		} catch (PKIException e) {
			throw new TaskExecutionException(pendingReq, e.getMessage(), e);
			
		} catch (SAXException e) {
			throw new TaskExecutionException(pendingReq, e.getMessage(), e);
			
		} catch (ParserConfigurationException e) {
			throw new TaskExecutionException(pendingReq, e.getMessage(), e);
			
	    } catch (Exception e) {
	    	Logger.error("MISMandateValidation has an interal Error.", e);
	    	throw new TaskExecutionException(pendingReq, e.getMessage(), e);
	       
	    }
	    finally {
	    	
	    }
		
	}

}