/*******************************************************************************
 * Copyright 2014 Federal Chancellery Austria
 * MOA-ID has been developed in a cooperation between BRZ, the Federal
 * Chancellery Austria - ICT staff unit, and Graz University of Technology.
 * 
 * Licensed under the EUPL, Version 1.1 or - as soon they will be approved by
 * the European Commission - subsequent versions of the EUPL (the "Licence");
 * You may not use this work except in compliance with the Licence.
 * You may obtain a copy of the Licence at:
 * http://www.osor.eu/eupl/
 * 
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the Licence is distributed on an "AS IS" basis,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the Licence for the specific language governing permissions and
 * limitations under the Licence.
 * 
 * This product combines work with different licenses. See the "NOTICE" text
 * file for details on the various modules and licenses.
 * The "NOTICE" text file is part of the distribution. Any derivative works
 * that you distribute must include a readable copy of the "NOTICE" text file.
 ******************************************************************************/
/*
 * Copyright 2003 Federal Chancellery Austria
 * MOA-ID has been developed in a cooperation between BRZ, the Federal
 * Chancellery Austria - ICT staff unit, and Graz University of Technology.
 *
 * Licensed under the EUPL, Version 1.1 or - as soon they will be approved by
 * the European Commission - subsequent versions of the EUPL (the "Licence");
 * You may not use this work except in compliance with the Licence.
 * You may obtain a copy of the Licence at:
 * http://www.osor.eu/eupl/
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the Licence is distributed on an "AS IS" basis,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the Licence for the specific language governing permissions and
 * limitations under the Licence.
 *
 * This product combines work with different licenses. See the "NOTICE" text
 * file for details on the various modules and licenses.
 * The "NOTICE" text file is part of the distribution. Any derivative works
 * that you distribute must include a readable copy of the "NOTICE" text file.
 */


/**
 * 
 */
package at.gv.egovernment.moa.id.util;

import java.io.IOException;
import java.net.URLEncoder;

import javax.servlet.http.HttpServletResponse;

import com.google.common.net.MediaType;

import at.gv.egovernment.moa.id.auth.builder.DataURLBuilder;
import at.gv.egovernment.moa.id.commons.MOAIDAuthConstants;
import at.gv.egovernment.moa.id.commons.api.IRequest;
import at.gv.egovernment.moa.id.commons.api.data.IAuthenticationSession;
import at.gv.egovernment.moa.id.commons.api.exceptions.MOAIDException;
import at.gv.egovernment.moa.logging.Logger;

/**
 * @author <a href="mailto:peter.danner@egiz.gv.at">Peter Danner</a>
 *
 */
public class CitizenCardServletUtils extends ServletUtils{
  
  /**
   * Writes out whether the CreateXMLSignatureRequest or a Redirect for form input processing 
   * depending on the requests starting text.
   * 
   * @param resp The httpServletResponse
   * @param pendingReq The current AuthenticationSession
   * @param createXMLSignatureRequestOrRedirect The request
   * @param servletGoal The servlet to which the redirect should happen
   * @param servletName The servlet name for debug purposes
   * @throws MOAIDException
   * @throws IOException
   */
  public static void writeCreateXMLSignatureRequestOrRedirect(HttpServletResponse resp, IRequest pendingReq, String createXMLSignatureRequestOrRedirect, String servletGoal, String servletName) 
  throws MOAIDException,
         IOException
  { 
    if (!createXMLSignatureRequestOrRedirect.startsWith("Redirect")) {
      resp.setStatus(307);
      String dataURL = new DataURLBuilder().buildDataURL(
        pendingReq.getAuthURL(), MOAIDAuthConstants.REQ_VERIFY_AUTH_BLOCK, pendingReq.getRequestID());
      resp.addHeader("Location", dataURL);
      
      //TODO test impact of explicit setting charset with older versions of BKUs (HotSign)
      
      byte[] content = createXMLSignatureRequestOrRedirect.getBytes("UTF-8");
      resp.setContentType(MediaType.XML_UTF_8.toString());
      resp.setContentLength(content.length);
      resp.getOutputStream().write(content);
      Logger.debug("Finished POST " + servletName);
      
    } else {
      String redirectURL = new DataURLBuilder().buildDataURL(pendingReq.getAuthURL(), servletGoal, pendingReq.getRequestID());
      resp.setContentType("text/html");
      resp.setStatus(302);
      resp.addHeader("Location", redirectURL);
      Logger.debug("REDIRECT TO: " + redirectURL);
      
    }
  }
  /**
   * Writes out whether the CreateXMLSignatureRequest or a Redirect for form input processing 
   * depending on the requests starting text.
   * 
   * @param resp The httpServletResponse
   * @param createXMLSignatureRequestOrRedirect The request
   * @param servletGoal The servlet to which the redirect should happen
   * @param servletName The servlet name for debug purposes
   * @throws MOAIDException
   * @throws IOException
   */
  public static void writeCreateXMLSignatureRequest(HttpServletResponse resp, String createXMLSignatureRequestOrRedirect, String servletGoal, String servletName, String dataURL) 
  throws MOAIDException,
         IOException
  { 
      resp.setStatus(307);
      resp.addHeader("Location", dataURL);
      
      //TODO test impact of explicit setting charset with older versions of BKUs (HotSign)
      
      byte[] content = createXMLSignatureRequestOrRedirect.getBytes("UTF-8");
      resp.setContentType(MediaType.XML_UTF_8.toString());
      resp.setContentLength(content.length);
      resp.getOutputStream().write(content);
      Logger.debug("Finished POST " + servletName);
    
  }

  /**
   * Writes out whether the CreateXMLSignatureRequest or a Redirect for form input processing 
   * depending on the requests starting text.
   * 
   * @param resp The httpServletResponse
   * @param session The current AuthenticationSession
   * @param createXMLSignatureRequestOrRedirect The request
   * @param servletGoal The servlet to which the redirect should happen
   * @param servletName The servlet name for debug purposes
   * @throws MOAIDException
   * @throws IOException
   */
  public static void writeCreateXMLSignatureRequestURLEncoded(HttpServletResponse resp, IAuthenticationSession session, String createXMLSignatureRequestOrRedirect, String servletGoal, String servletName, String dataURL) 
  throws MOAIDException,
         IOException { 
	  resp.setStatus(200);
	  Logger.debug("ContentType set to: application/x-www-form-urlencoded");
		  	  
	  String respString = "XMLRequest=" + URLEncoder.encode(createXMLSignatureRequestOrRedirect, "UTF-8") + "&" + 
	  					"DataURL=" + URLEncoder.encode(dataURL, "UTF-8");
      
      byte[] content = respString.getBytes("UTF-8");
      resp.setContentType("application/x-www-form-urlencoded");
      resp.setContentLength(content.length);
      resp.getOutputStream().write(content);	  
      Logger.debug("Finished POST " + servletName);
    
  }
  
}