from .session import SessionStorage
from owrx.users import UserList
from urllib import parse

import logging

logger = logging.getLogger(__name__)


class Authentication(object):
    def getUser(self, request):
        if "owrx-session" not in request.cookies:
            return None
        session = SessionStorage.getSharedInstance().getSession(request.cookies["owrx-session"].value)
        if session is None:
            return None
        if "user" not in session:
            return None
        userList = UserList.getSharedInstance()
        try:
            return userList[session["user"]]
        except KeyError:
            return None


class AuthorizationMixin(object):
    def __init__(self, handler, request, options):
        self.authentication = Authentication()
        self.user = self.authentication.getUser(request)
        super().__init__(handler, request, options)

    def isAuthorized(self):
        return self.user is not None and self.user.is_enabled() and not self.user.must_change_password

    def handle_request(self):
        if self.isAuthorized():
            super().handle_request()
        else:
            if (
                "x-requested-with" in self.request.headers
                and self.request.headers["x-requested-with"] == "XMLHttpRequest"
            ):
                self.send_response("{}", code=403)
            else:
                target = "/login?{0}".format(parse.urlencode({"ref": self.request.path}))
                self.send_redirect(target)