//auth.js

//Importing first and third-party modules.
var qs = require('querystring');
var https = require('socks5-https-client');

//Importing self-written modules.
var crypt = require('./crypt');
var config = require('./configuration');
var lookup = require('./lookup');

/**
 * Function for starting a login request with the Magister servers.
 * @param {String} username - Username needed for login.
 * @param {String} password - Password needed for login.
 * @param {Function} callback - Callback function to be called after request.
 */
function getLogin(username, password, callback) {
	var login = qs.stringify({
		GebruikersNaam : username,
		Wachtwoord : password
	});

	https.request({
		host : 'werkman.magister.net',
		port : 443,
		path : '/api/sessie',
		method : 'POST',
		headers : {
			'Content-Type' : 'application/x-www-form-urlencoded',
			'Content-Length' : login.length
		},
		socksPort: config().torPort,
	  socksHost: config().torHost
	}, function (res) {
		if (res.statusCode == 201 || res.statusCode == 200) callback(true);
		else callback(false);
	}).write(login);
}

/**
 * Function for doing a login to the rooster.io server
 * this is being called by the web frontend when the
 * user logs in.
 * @param {Object} req - Request object supplied by Express.
 * @param {Object} res - Response object supplied by Express.
 * @param {Function} next - Next function supplied by Express.
 */
function login(req, res, next) {
	var _data = '';

	req.on('data', function (data) {
		_data += data;
	});

	req.on('end', function () {
		var loginInformation = qs.parse(_data)

		getLogin(loginInformation.username, loginInformation.password, function (legit) {
			var username = crypt.encrypt(loginInformation.username);
			var password = crypt.encrypt(loginInformation.password);
			if (legit) {
		    res.cookie('username', username);
		    res.cookie('password', password);
				res.redirect('/');
			}
			else {res.end('Er is wat mis, misschien je wachtwoord?')}
		});
	});
}

/**
 * Function for logging a user out
 * of a session on rooster.io.
 * @param {Object} req - Request object supplied by Express.
 * @param {Object} res - Response object supplied by Express.
 */
function logout(req, res) {
	res.cookie('username', '');
	res.cookie('password', '');
	res.redirect('/');
}

/**
 * Function for checking if the user is currently authenticated.
 * @param {Object} req - Request object supplied by Express.
 * @param {Object} res - Response object supplied by Express.
 * @param {Function} next - Next function supplied by Express.
 */
function is(req, res, next) {
	var cookies = qs.parse((req.headers.cookie || '').replace(/\s/g, ''), ';', '=');
	if (!cookies.username || !cookies.password) {next(); return;}

	var username = crypt.decrypt(cookies.username),
	password = crypt.decrypt(cookies.password);

	getLogin(username, password, function (legit) {
		if (legit) {
			req.query.name = username;
			lookup.api(req, function (databaseEntry) {
				req.headers.user = databaseEntry.data[0];
				next();
			});
		}
		else {
			next();
		}
	});
}

//Exporting the functions as a module.
module.exports = {
	'login' : login,
	'logout' : logout,
	'is' : is
}