// Copyright 2019 Yunion
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

package cloudid

import (
	"fmt"
	"net/url"
	"strings"

	"yunion.io/x/jsonutils"
	"yunion.io/x/pkg/errors"
	"yunion.io/x/pkg/utils"

	api "yunion.io/x/onecloud/pkg/apis/compute"
	"yunion.io/x/onecloud/pkg/httperrors"
	"yunion.io/x/onecloud/pkg/mcclient"
	"yunion.io/x/onecloud/pkg/mcclient/modulebase"
	"yunion.io/x/onecloud/pkg/mcclient/modules"
)

type SClouduserManager struct {
	modulebase.ResourceManager
}

var (
	Cloudusers SClouduserManager
)

func init() {
	Cloudusers = SClouduserManager{modules.NewCloudIdManager("clouduser", "cloudusers",
		[]string{},
		[]string{})}

	modules.Register(&Cloudusers)
}

func (this *SClouduserManager) GetLoginInfo(s *mcclient.ClientSession, id string, params jsonutils.JSONObject) (jsonutils.JSONObject, error) {
	data, err := this.Get(s, id, nil)
	if err != nil {
		return nil, err
	}

	user := struct {
		Id          string
		Name        string
		Secret      string
		Provider    string
		IamLoginUrl string
	}{}

	err = data.Unmarshal(&user)
	if err != nil {
		return nil, errors.Wrap(err, "data.Unmarshal")
	}

	if len(user.Secret) == 0 {
		return nil, httperrors.NewNotFoundError("No login secret found")
	}

	password, err := utils.DescryptAESBase64(user.Id, user.Secret)
	if err != nil {
		return nil, errors.Wrap(err, "Descrypt")
	}

	account := ""

	switch user.Provider {
	case api.CLOUD_PROVIDER_ALIYUN:
		suffix := strings.TrimPrefix(user.IamLoginUrl, "https://signin.aliyun.com/")
		suffix = strings.TrimSuffix(suffix, "/login.htm")
		if len(suffix) > 0 {
			user.Name = fmt.Sprintf("%s@%s", user.Name, suffix)
			account = suffix
		}
	case api.CLOUD_PROVIDER_QCLOUD, api.CLOUD_PROVIDER_HUAWEI:
		u, _ := url.Parse(user.IamLoginUrl)
		if u != nil {
			account = u.Query().Get("account")
		}
	case api.CLOUD_PROVIDER_AWS:
		account = strings.TrimPrefix(user.IamLoginUrl, "https://")
		if info := strings.Split(account, "."); len(info) > 0 {
			account = info[0]
		}
	}

	return jsonutils.Marshal(map[string]string{
		"account":  account,
		"username": user.Name,
		"password": password,
		"url":      user.IamLoginUrl,
	}), nil
}