/*
 * Copyright 2008 Federal Chancellery Austria and
 * Graz University of Technology
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package at.gv.egiz.stal.service.impl;

import at.gv.egiz.bku.binding.BindingProcessor;
import at.gv.egiz.bku.binding.BindingProcessorManager;
import at.gv.egiz.bku.binding.Id;
import at.gv.egiz.bku.binding.IdFactory;

import at.gv.egiz.stal.HashDataInput;
import at.gv.egiz.stal.service.GetHashDataInputFault;
import at.gv.egiz.stal.service.STALPortType;
import at.gv.egiz.stal.service.types.ErrorResponseType;
import at.gv.egiz.stal.service.types.GetHashDataInputFaultType;
import at.gv.egiz.stal.service.types.GetHashDataInputResponseType;
import at.gv.egiz.stal.service.types.GetHashDataInputType;
import at.gv.egiz.stal.service.types.GetNextRequestResponseType;
import at.gv.egiz.stal.service.types.GetNextRequestType;
import at.gv.egiz.stal.service.types.InfoboxReadRequestType;
import at.gv.egiz.stal.service.types.QuitRequestType;
import at.gv.egiz.stal.service.types.RequestType;
import at.gv.egiz.stal.service.types.ResponseType;
import at.gv.egiz.stal.service.types.SignRequestType;
import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.io.InputStream;
import java.nio.charset.Charset;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
import javax.annotation.Resource;
import javax.jws.WebService;
import javax.servlet.ServletContext;
import javax.xml.ws.WebServiceContext;
import javax.xml.ws.handler.MessageContext;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;

/**
 * 
 * @author clemens
 */
@WebService(endpointInterface = "at.gv.egiz.stal.service.STALPortType")
public class STALServiceImpl implements STALPortType {

  public static final String BINDING_PROCESSOR_MANAGER = "bindingProcessorManager";
  public static final Id TEST_SESSION_ID = IdFactory.getInstance().createId("TestSession");
  
  protected static final Log log = LogFactory.getLog(STALServiceImpl.class);
  
  static {
    if (log.isTraceEnabled()) {
      log.trace("enabling webservice communication dump");
      System.setProperty("com.sun.xml.ws.transport.http.HttpAdapter.dump", "true");
    }
  }
  
  @Resource
  WebServiceContext wsContext;
  protected IdFactory idF = IdFactory.getInstance();

   
  @Override
  public GetNextRequestResponseType connect(String sessId) {
    
    if (sessId == null) {
      throw new NullPointerException("No session id provided");
    }
    
    Id sessionId = idF.createId(sessId);

    if (log.isDebugEnabled()) {
      log.debug("Received Connect [" + sessionId + "]");
    }
    
    if (TEST_SESSION_ID.equals(sessionId)) {
      return getTestSessionNextRequestResponse(null);
    }
    
    GetNextRequestResponseType response = new GetNextRequestResponseType();
    response.setSessionId(sessionId.toString());

    STALRequestBroker stal = getStal(sessionId);

    if (stal != null) {

      List<RequestType> requestsOut = ((STALRequestBroker) stal).connect();
      response.getInfoboxReadRequestOrSignRequestOrQuitRequest().addAll(requestsOut);

      if (log.isDebugEnabled()) {
        StringBuilder sb = new StringBuilder("Returning initial GetNextRequestResponse [");
        sb.append(sessionId.toString());
        sb.append("] containing ");
        sb.append(requestsOut.size());
        sb.append(" requests: ");
        for (RequestType reqOut : requestsOut) {
          sb.append(reqOut.getClass());
          sb.append(' ');
        }
        log.debug(sb.toString());
      }
    } else {
      log.error("Failed to get STAL for session " + sessionId + ", returning QuitRequest");
      response.getInfoboxReadRequestOrSignRequestOrQuitRequest().add(new QuitRequestType());
    }
    return response;
  }
  
  @Override
  public GetNextRequestResponseType getNextRequest(GetNextRequestType request) {

    if (request.getSessionId() == null) {
      throw new NullPointerException("No session id provided");
    }
    
    Id sessionId = idF.createId(request.getSessionId());

    List<ResponseType> responsesIn = request.getInfoboxReadResponseOrSignResponseOrErrorResponse();//getResponse();

    if (log.isDebugEnabled()) {
      StringBuilder sb = new StringBuilder("Received GetNextRequest [");
      sb.append(sessionId.toString());
      sb.append("] containing ");
      sb.append(responsesIn.size());
      sb.append(" responses: ");
      for (ResponseType respIn : responsesIn) {
        sb.append(respIn.getClass());
        sb.append(' ');
      }
      log.debug(sb.toString());
    }
    
    if (TEST_SESSION_ID.equals(sessionId)) {
      return getTestSessionNextRequestResponse(responsesIn);
    }

    GetNextRequestResponseType response = new GetNextRequestResponseType();
    response.setSessionId(sessionId.toString());
    
    STALRequestBroker stal = getStal(sessionId);

    if (stal != null) {

      List<RequestType> requestsOut = ((STALRequestBroker) stal).nextRequest(responsesIn);
      response.getInfoboxReadRequestOrSignRequestOrQuitRequest().addAll(requestsOut);

      if (log.isDebugEnabled()) {
        StringBuilder sb = new StringBuilder("Returning GetNextRequestResponse [");
        sb.append(sessionId.toString());
        sb.append("] containing ");
        sb.append(requestsOut.size());
        sb.append(" requests: ");
        for (RequestType reqOut : requestsOut) {
          sb.append(reqOut.getClass());
          sb.append(' ');
        }
        log.debug(sb.toString());
      }
    } else {
      log.error("Failed to get STAL for session " + sessionId + ", returning QuitRequest");
      response.getInfoboxReadRequestOrSignRequestOrQuitRequest().add(new QuitRequestType());
    }
    return response;
  }

  @Override
  public GetHashDataInputResponseType getHashDataInput(GetHashDataInputType request) throws GetHashDataInputFault {

    if (request.getSessionId() == null) {
      throw new NullPointerException("No session id provided");
    }
    
    Id sessionId = idF.createId(request.getSessionId());

    if (log.isDebugEnabled()) {
      log.debug("Received GetHashDataInputRequest for session " + sessionId + " containing " + request.getReference().size() + " reference(s)");
    }

    GetHashDataInputResponseType response = new GetHashDataInputResponseType();
    response.setSessionId(sessionId.toString());
      
    if (TEST_SESSION_ID.equals(sessionId)) {
      log.debug("Received GetHashDataInput for session " + TEST_SESSION_ID + ", return DummyHashDataInput");
      GetHashDataInputResponseType.Reference ref = new GetHashDataInputResponseType.Reference();
      ref.setID("signed-data-reference-0-1214921968-27971781-24309"); //Reference-" + TEST_SESSION_ID + "-001");
      ref.setMimeType("text/plain");
      
      Charset charset;
      try {
        charset = Charset.forName("iso-8859-15");
        ref.setEncoding("iso-8859-15");
      } catch (Exception ex) {
        log.warn(ex.getMessage());
        charset = Charset.defaultCharset();
        ref.setEncoding(charset.toString());
      }
      ref.setValue("hashdatainput-öäüß@€-00000000001".getBytes(charset));
      response.getReference().add(ref);
      return response;
    } else {
      STALRequestBroker stal = getStal(sessionId);

      if (stal != null) {
        List<HashDataInput> hashDataInputs = stal.getHashDataInput();

        if (hashDataInputs != null) {

          Map<String, HashDataInput> hashDataIdMap = new HashMap<String, HashDataInput>();
          for (HashDataInput hdi : hashDataInputs) {
            if (log.isTraceEnabled()) {
              log.trace("Provided HashDataInput for reference " + hdi.getReferenceId());
            }
            hashDataIdMap.put(hdi.getReferenceId(), hdi);
          }

          List<GetHashDataInputType.Reference> reqRefs = request.getReference();
          for (GetHashDataInputType.Reference reqRef : reqRefs) {
            String reqRefId = reqRef.getID();
            HashDataInput reqHdi = hashDataIdMap.get(reqRefId);
            if (reqHdi == null) {
              String msg = "Failed to resolve HashDataInput for reference " + reqRefId;
              log.error(msg);
              GetHashDataInputFaultType faultInfo = new GetHashDataInputFaultType();
              faultInfo.setErrorCode(1);
              faultInfo.setErrorMessage(msg);
              throw new GetHashDataInputFault(msg, faultInfo);
            }

            InputStream hashDataIS = reqHdi.getHashDataInput();
            if (hashDataIS == null) {
              //HashDataInput not cached?
              String msg = "Failed to obtain HashDataInput for reference " + reqRefId + ", reference not cached";
              log.error(msg);
              GetHashDataInputFaultType faultInfo = new GetHashDataInputFaultType();
              faultInfo.setErrorCode(1);
              faultInfo.setErrorMessage(msg);
              throw new GetHashDataInputFault(msg, faultInfo);
            }
            ByteArrayOutputStream baos = null;
            try {
              if (log.isDebugEnabled()) {
                log.debug("Resolved HashDataInput " + reqRefId + " (" + reqHdi.getMimeType() + ";charset=" + reqHdi.getEncoding() + ")");
              }
              baos = new ByteArrayOutputStream(hashDataIS.available());
              int c;
              while ((c = hashDataIS.read()) != -1) {
                baos.write(c);
              }
              GetHashDataInputResponseType.Reference ref = new GetHashDataInputResponseType.Reference();
              ref.setID(reqRefId);
              ref.setMimeType(reqHdi.getMimeType());
              ref.setEncoding(reqHdi.getEncoding());
              ref.setValue(baos.toByteArray());
              response.getReference().add(ref);
            } catch (IOException ex) {
              String msg = "Failed to get HashDataInput for reference " + reqRefId;
              log.error(msg, ex);
              GetHashDataInputFaultType faultInfo = new GetHashDataInputFaultType();
              faultInfo.setErrorCode(1);
              faultInfo.setErrorMessage(msg);
              throw new GetHashDataInputFault(msg, faultInfo, ex);
            } finally {
              try {
                baos.close();
              } catch (IOException ex) {
              }
            }
          }
          return response;
        } else {
          String msg = "Failed to resolve any HashDataInputs for session " + sessionId;
          log.error(msg);
          GetHashDataInputFaultType faultInfo = new GetHashDataInputFaultType();
          faultInfo.setErrorCode(1);
          faultInfo.setErrorMessage(msg);
          throw new GetHashDataInputFault(msg, faultInfo);
        }
      } else {
        String msg = "Failed to get STAL for session " + sessionId;
        log.error(msg);
        GetHashDataInputFaultType faultInfo = new GetHashDataInputFaultType();
        faultInfo.setErrorCode(1);
        faultInfo.setErrorMessage(msg);
        throw new GetHashDataInputFault(msg, faultInfo);
      }
    }
  }

  private STALRequestBroker getStal(Id sessionId) {
    if (log.isTraceEnabled()) {
      log.trace("resolve STAL for session " + sessionId);
    }
    MessageContext mCtx = wsContext.getMessageContext();
    ServletContext sCtx = (ServletContext) mCtx.get(MessageContext.SERVLET_CONTEXT);
    BindingProcessorManager bpMgr = (BindingProcessorManager) sCtx.getAttribute(BINDING_PROCESSOR_MANAGER);
    BindingProcessor bp = bpMgr.getBindingProcessor(sessionId);
    return (bp == null) ? null : (bp.isFinished() ? null : (STALRequestBroker) bp.getSTAL());
  }

  private GetNextRequestResponseType getTestSessionNextRequestResponse(List<ResponseType> responsesIn) {
    GetNextRequestResponseType response = new GetNextRequestResponseType();
    response.setSessionId(TEST_SESSION_ID.toString());
    
    if (responsesIn != null && responsesIn.size() > 0 && responsesIn.get(0) instanceof ErrorResponseType) {
      log.info("Received TestSession GetNextRequest(ErrorResponse), returning QuitRequest");
      response.getInfoboxReadRequestOrSignRequestOrQuitRequest().add(new QuitRequestType());
    } else {
      log.info("Received TestSession GetNextRequest, returning SignRequest and 3 InfoboxReadRequests ");
      InfoboxReadRequestType req = new InfoboxReadRequestType();
      req.setInfoboxIdentifier("IdentityLink");
      req.setDomainIdentifier("hansiwurzel");
      response.getInfoboxReadRequestOrSignRequestOrQuitRequest().add(req);
      SignRequestType sig = new SignRequestType();
      sig.setKeyIdentifier("SecureSignatureKeypair");
      sig.setSignedInfo("<dsig:SignedInfo  xmlns:dsig=\"http://www.w3.org/2000/09/xmldsig#\" xmlns:xpf=\"http://www.w3.org/2002/06/xmldsig-filter2\"><dsig:CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\" /> <dsig:SignatureMethod Algorithm=\"http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1\" /> <dsig:Reference Id=\"signed-data-reference-0-1214921968-27971781-24309\" URI=\"#signed-data-object-0-1214921968-27971781-13578\"><dsig:Transforms> <dsig:Transform Algorithm=\"http://www.w3.org/2002/06/xmldsig-filter2\"> <xpf:XPath xmlns:xpf=\"http://www.w3.org/2002/06/xmldsig-filter2\" Filter=\"intersect\">id('signed-data-object-0-1214921968-27971781-13578')/node()</xpf:XPath></dsig:Transform></dsig:Transforms><dsig:DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\" /> <dsig:DigestValue>H1IePEEfGQ2SG03H6LTzw1TpCuM=</dsig:DigestValue></dsig:Reference><dsig:Reference Id=\"etsi-data-reference-0-1214921968-27971781-25439\" Type=\"http://uri.etsi.org/01903/v1.1.1#SignedProperties\" URI=\"#xmlns(etsi=http://uri.etsi.org/01903/v1.1.1%23)%20xpointer(id('etsi-data-object-0-1214921968-27971781-3095')/child::etsi:QualifyingProperties/child::etsi:SignedProperties)\"><dsig:DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\" /><dsig:DigestValue>yV6Q+I60buqR4mMaxA7fi+CV35A=</dsig:DigestValue></dsig:Reference></dsig:SignedInfo>".getBytes());
      response.getInfoboxReadRequestOrSignRequestOrQuitRequest().add(sig);
      req = new InfoboxReadRequestType();
      req.setInfoboxIdentifier("CertifiedKeypair");
      response.getInfoboxReadRequestOrSignRequestOrQuitRequest().add(req);
      req = new InfoboxReadRequestType();
      req.setInfoboxIdentifier("SecureSignatureKeypair");
      response.getInfoboxReadRequestOrSignRequestOrQuitRequest().add(req);
    }
    return response;
  }
}