using HeuristicLab.Clients.Access.Administration;
using HeuristicLab.Clients.Hive.WebJobManager.Services;
using HeuristicLab.Clients.Hive.WebJobManager.ViewModels.User;
using Microsoft.AspNet.Hosting;
using Microsoft.AspNet.Http;
using Microsoft.AspNet.Mvc;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Net.Mail;
using System.ServiceModel.Security;
using System.Threading.Tasks;

namespace HeuristicLab.Clients.Hive.WebJobManager.Controllers
{
    /// <summary>
    /// Handles all the actions for user management
    /// </summary>
    public class UserController : Controller
    {
        private WebLoginService weblog;
        private HiveServiceLocatorWeb serviceLocator;
        private AccessAdministrationClient accessClient;
        private Guid userId;

        private UserViewModel vm;
        private IHostingEnvironment _environment;

        public UserController(IHostingEnvironment env)
        {
            weblog = WebLoginService.Instance;
            _environment = env;
        }
        /// <summary>
        /// Init required services and checks login
        /// </summary>
        /// <returns></returns>
        private bool init()
        {
            var u = HttpContext.Session.GetString("UserId");
            if (u == null || u == "" || Guid.Parse(u) == Guid.Empty)
            {
                return false;
            }
            else
            {
                userId = Guid.Parse(u);
                serviceLocator = weblog.getServiceLocator(userId);
                accessClient = weblog.getAccessAdminClient(userId);
                vm = new UserViewModel(accessClient, weblog.getCurrentUser(userId));
                if (weblog.getCurrentUser(userId).HasUserAdminAccess())
                    return serviceLocator.CheckLogin();
                else
                    return false;
                 
            }
        }
        #region Users
        /// <summary>
        /// Show users page
        /// </summary>
        /// <returns></returns>
        public IActionResult Index()
        {
            if (init())
            {
                ViewBag.Title = "Users";
                vm.refreshAll() ;
                //Refreshall for users, groups and roles 
                ViewBag.SessionId = HttpContext.Session.GetString("UserId");
                return View("Index", vm);
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }

        public IActionResult SelectUser(string id)
        {
            if (init())
            {
                Guid curr = Guid.Parse(id);

                vm.refreshAll();
                if (curr == Guid.Empty)
                {//new user
                    ViewBag.Title = "Add User";
                }
                else
                {//View an existing user
                    vm.SelectedUser = vm.getUserById(curr);
                    vm.SelectedUserSubscriptions = accessClient.getSubscribedGroups(curr);
                    vm.SelectedUserRoles = accessClient.getRoles(vm.SelectedUser);
                    ViewBag.title = vm.SelectedUser.UserName;
                }
                ViewBag.Title += " - Users";
                ViewBag.SessionId = HttpContext.Session.GetString("UserId");
                return View("Index", vm);
                //Uses Index page too, with the additional info in the Viewmodel
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        /// <summary>
        /// Saves an existing user or adds a new user
        /// </summary>
        /// <param name="inpusername">Username</param>
        /// <param name="inpfullname">Full name </param>
        /// <param name="inpemail">Email</param>
        /// <param name="u">User ID</param>
        /// <param name="rolestoadd">Roles to add to the user</param>
        /// <param name="groupstoadd">Groups to subscribe the user to</param>
        /// <returns></returns>
        [HttpPost]
        public IActionResult saveUser(string inpusername, string inpfullname, string inpemail, string u, string[] rolestoadd, string[] groupstoadd)
        {

            if (init())
            {
                var uid = Guid.Parse(u);
                Access.User user;
                if (uid == Guid.Empty)//checks if user is new or exists
                    user = new Access.User();
                else
                    user = accessClient.Users.Find(x => x.Id == uid);


                user.FullName = inpfullname;
                user.Email = inpemail;


                if (uid == Guid.Empty)
                {//New user
                    user.UserName = inpusername;
                    uid = accessClient.addUser(user);
                    accessClient.RefreshUsers();
                    var newpass = accessClient.resetPassword(uid);
                    sendPassmail(accessClient.Users.Find(x => x.Id == uid), newpass);
                    //password received through mail
                    ViewBag.Title = user.UserName + " added - User";
                }
                else
                {//Existing user
                    accessClient.updateUser(user);
                    ViewBag.Title = user.UserName + " updated - User";
                }
                accessClient.RefreshUsers();//Refresh data from user
                user = accessClient.Users.Find(x => x.Id == uid);
                foreach (var s in rolestoadd)
                {//Loop to add roles
                    var role = accessClient.Roles.Find(x => x.Name == s);

                    accessClient.addRoleToUser(user, role);
                }
                accessClient.RefreshUserGroups();
                foreach(var g in groupstoadd)
                {//loop to subscribe to groups
                    var gid = Guid.Parse(g);
                    var group = accessClient.Groups.Find(x => x.Id == gid);
                    accessClient.addMember(user, group);
                }
                return RedirectToAction("SelectUser", new { id = uid.ToString() });
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }

        }
        /// <summary>
        /// Sends email for a specific user, containg a password
        /// </summary>
        /// <param name="u">User to mail</param>
        /// <param name="pass">Password to send</param>
        public static void sendPassmail(Access.User u, string pass)
        {/*
            SmtpClient smtpClient = new SmtpClient("smtp.gmail.com",587);
            smtpClient.UseDefaultCredentials = true;
            smtpClient.Credentials = new System.Net.NetworkCredential("trac.heuristiclab@gmail.com", "||||||||||||");
            smtpClient.DeliveryMethod = SmtpDeliveryMethod.Network;
            smtpClient.EnableSsl = true;
            MailMessage mail = new MailMessage();

            //Setting From , To and CC
            mail.From = new MailAddress("trac.heuristiclab@gmail.com", "HeuristicLab");
            mail.Subject = "Password changed - HeuristicLab Hive";
            mail.Body = "Hello " + u.FullName + ", " + Environment.NewLine + Environment.NewLine+
                "Your password was changed through the HeuristicLab Hive web application." + Environment.NewLine+
                "The new password for " + u.UserName + " is ' " + pass + " '." + Environment.NewLine + Environment.NewLine +
                "HeuristicLab Hive";
            mail.To.Add(new MailAddress(u.Email));

            smtpClient.Send(mail);
            */
        }

        public IActionResult ApproveUser(string id)
        {
            if (init())
            {
                Guid curr = Guid.Parse(id);

                vm.refreshAll();
                
                    var us = vm.getUserById(curr);
                us.IsApproved = true;
                accessClient.updateUser(us);
                return RedirectToAction("SelectUser", new { id = id });

            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        /// <summary>
        /// Delete a user
        /// </summary>
        /// <param name="id">User ID to delete</param>
        /// <returns></returns>
        public IActionResult deleteUser(string id)
        {
            if (init())
            {
                var uid = Guid.Parse(id);
                vm.refreshUsers();

                if (uid == Guid.Empty)
                {//check for empty Guid, should not happen but still
                    vm.message = "Something went wrong, user is not deleted";
                    return View("Index", vm);
                }
                else
                {
                    var user = vm.getUserById(uid);
                    vm.message = user.UserName + " (" + user.FullName + ") has been deleted";
                    accessClient.DeleteUser(user);
                    vm.refreshAll();//refreshAll for index view
                    ViewBag.Title = "Users";
                    return View("Index", vm);//No redirect to save the viewbag message
                }
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }

        }
        /// <summary>
        /// Deletes a role from a user
        /// </summary>
        /// <param name="id">User Id</param>
        /// <param name="role">Role name</param>
        /// <returns></returns>
        public IActionResult deleteUserRole(string id, string role)
        {
            if (init())
            {
                var uid = Guid.Parse(id);
                vm.refreshAll();

                var user = vm.getUserById(uid);
                var r = vm.getRoleByName(role);

                accessClient.deleteUserRole(user, r);
                return RedirectToAction("SelectUser", new { id = id });
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        /// <summary>
        /// Delete user from a group
        /// </summary>
        /// <param name="id">User Id</param>
        /// <param name="group">Group Id</param>
        /// <returns></returns>
        public IActionResult deleteUserGroup(string id, string group)
        {
            if (init())
            {
                var gid = Guid.Parse(group);
                var mid = Guid.Parse(id);
                vm.refreshGroups().refreshUsers();

                var user = vm.getUserById(mid);
                var gr = vm.getGroupById(gid);
                
                accessClient.deleteMember(user, gr);
                return RedirectToAction("SelectUser", new { id = id});
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }

        }
        #endregion

        #region Groups
        /// <summary>
        /// Shows the groups overview, opening up with "Add group"
        /// </summary>
        /// <returns></returns>
        public IActionResult Groups()
        {
            if (init())
            {

                ViewBag.Title = "Groups";
                vm.refreshGroups().refreshUsers();
                return View("Groups", vm);
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        /// <summary>
        /// Show information for a specific group (Guid.empty = new group)
        /// </summary>
        /// <param name="id">Group ID</param>
        /// <returns></returns>
        public IActionResult SelectGroup(string id)
        {
            if (init())
            {
                Guid curr = Guid.Parse(id);

                vm
                    .refreshGroups()
                    .refreshUsers();
                if (curr == Guid.Empty)
                {//Add group
                    ViewBag.Title = "Add group";
                }
                else
                {//Show existing group info and possibility to edit
                    vm.SelectedGroup = vm.getGroupById(curr);
                    vm.SelectedGroupMembers = accessClient.getGroupMembers(curr);
                    ViewBag.title = vm.SelectedGroup.Name;
                }
                ViewBag.Title += " - Group";
                return View("Groups", vm);
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        /// <summary>
        /// Saves an exisiting group or adds a new one.
        /// </summary>
        /// <param name="inpgroupname">Group name</param>
        /// <param name="u">Group id (empty for new)</param>
        /// <param name="userstoadd">Users to add to group</param>
        /// <param name="groupstoadd">Groups to add to group</param>
        /// <returns></returns>
        [HttpPost]
        public IActionResult saveGroup(string inpgroupname, string u, string[] userstoadd, string[] groupstoadd)
        {
            if (init())
            {
                var uid = Guid.Parse(u);
                vm.refreshGroups().refreshUsers();

                Access.UserGroup group;

                if (uid == Guid.Empty)//Create new group
                    group = new Access.UserGroup();
                else//Find existing group
                    group = accessClient.Groups.Find(x => x.Id == uid);

                group.Name = inpgroupname;

                if (uid == Guid.Empty)
                {//New Group add
                    uid = accessClient.addGroup(group);
                    ViewBag.Title = group.Name + " added - Group";
                }
                else
                {//Existing group update
                    accessClient.updateGroup(group);
                    ViewBag.Title = group.Name + " updated - Group";
                }
                vm.refreshGroups();
                group = vm.getGroupById(uid);
                //refresh group info
                foreach (var s in userstoadd)
                {//Subscribes members to group
                    var tempid = Guid.Parse(s);
                    var member = vm.getUserById(tempid);
                    accessClient.addMember(member, group);
                }
                foreach (var g in groupstoadd)
                {//Subscribes groups to group
                    var tempid = Guid.Parse(g);
                    var member = vm.getGroupById(tempid);
                    accessClient.addMember(member, group);
                }

                return RedirectToAction("SelectGroup", new { id = uid.ToString() });
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        /// <summary>
        /// Delete an existing group
        /// </summary>
        /// <param name="id">Group to delete</param>
        /// <returns></returns>
        public IActionResult deleteGroup(string id)
        {
            if (init())
            {
                var uid = Guid.Parse(id);
                vm.refreshGroups();

                if (uid == Guid.Empty)
                {//Check for empty ID, should not happen but still..
                    vm.message = "Something went wrong, group is not deleted";
                    return View("Groups", vm);
                }
                else
                {//Deletes the user group
                    var group = vm.getGroupById(uid);
                    vm.message = group.Name + " has been deleted";
                    accessClient.deleteUserGroup(group);
                    vm.refreshGroups();
                    return View("Groups", vm);
                }
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }

        }
        /// <summary>
        /// Delete a member from a group  
        /// </summary>
        /// <param name="g">Group id</param>
        /// <param name="m">User id</param>
        /// <returns>Group selected</returns>
        public IActionResult deleteMember(string g, string m)
        {
            if (init())
            {
                var gid = Guid.Parse(g);
                var mid = Guid.Parse(m);
                vm.refreshGroups().refreshUsers();

                if (gid == Guid.Empty || mid == Guid.Empty)
                {//Should not be empty but still..
                    vm.message = "Something went wrong, member is not deleted";
                    return View("Groups", vm);
                }
                else
                {//Deletes the member
                    var group = vm.getGroupById(gid);
                    Access.UserGroupBase member = vm.getUserById(mid);
                    if (member == null)
                    {
                        member = vm.getGroupById(mid);
                    }
                    vm.message = " Member deleted";
                    accessClient.deleteMember(member, group);
                    vm.refreshGroups();
                    return RedirectToAction("SelectGroup", new { id = g });
                }
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }

        }
        #endregion

        #region Roles
        /// <summary>
        /// Shows roles overview, opening with "Add role"
        /// </summary>
        /// <returns></returns>
        public IActionResult Roles()
        {
            if (init())
            {

                ViewBag.Title = "Roles";
                vm.refreshRoles();

                return View("Roles", vm);
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        /// <summary>
        /// Shows information for a specific role 
        /// </summary>
        /// <param name="name">Role name</param>
        /// <returns></returns>
        public IActionResult SelectRole(string name)
        {
            if (init())
            {

                vm.refreshRoles();
                if (name == "" || name == null)
                {//Add role
                    ViewBag.Title = "Add Role";
                }
                else
                {//Edit/view role
                    vm.SelectedRole = vm.getRoleByName(name);
                    vm.SelectedRoleEnrolled = accessClient.getEnrolled(vm.SelectedRole);

                    ViewBag.title = vm.SelectedRole.Name;
                }
                ViewBag.Title += " - Roles";
                return View("Roles", vm);
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        /// <summary>
        /// Saves a role or adds a new one
        /// </summary>
        /// <param name="inprolename">Role name</param>
        /// <returns></returns>
        [HttpPost]
        public IActionResult saveRole(string inprolename)
        {
            if (init())
            {
                Access.Role role = accessClient.Roles.Find(x => x.Name == inprolename);
                if (role == null)
                {
                    role = new Access.Role();
                    role.Name = inprolename;
                    accessClient.addRole(role);
                }

                accessClient.RefreshRoles();
                return RedirectToAction("SelectRole", new { name = inprolename });
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        /// <summary>
        /// Delete a role
        /// </summary>
        /// <param name="name">Role name</param>
        /// <returns></returns>
        public IActionResult deleteRole(string name)
        {
            if (init())
            {
                accessClient.deleteRole(name);
                return RedirectToAction("Roles");
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        /// <summary>
        /// Deletes a user from a role
        /// </summary>
        /// <param name="id">User id</param>
        /// <param name="role">Role name</param>
        /// <returns></returns>
        public IActionResult deleteRoleUser(string id, string role)
        {
            if (init())
            {
                var uid = Guid.Parse(id);
                vm.refreshAll();

                var user = vm.getUserById(uid);
                var r = vm.getRoleByName(role);
                vm.message = role + " role has been deleted from " + user.FullName;
                accessClient.deleteUserRole(user, r);
                return RedirectToAction("SelectRole", new { name = role });
            }
            else
            {
                return RedirectToAction("Index", "Job");
            }
        }
        #endregion
    }
}