# -*- coding: utf-8 -*-

# This program is free software: you can redistribute it and/or modify

# it under the terms of the GNU General Public License as published by

# the Free Software Foundation, either version 3 of the License, or

# (at your option) any later version.

#

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

#

# You should have received a copy of the GNU General Public License

# along with this program.  If not, see <http://www.gnu.org/licenses/>.

"""

kallithea.controllers.admin.users

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Users crud controller for pylons

This file was forked by the Kallithea project in July 2014.

Original author and date, and relevant copyright and licensing information is below:

:created_on: Apr 4, 2010

:author: marcink

:copyright: (c) 2013 RhodeCode GmbH, and others.

:license: GPLv3, see LICENSE.md for more details.

"""

import logging

import traceback

import formencode

from formencode import htmlfill

from pylons import request, tmpl_context as c, url, config

from pylons.controllers.util import redirect

from pylons.i18n.translation import _

from sqlalchemy.sql.expression import func

import kallithea

from kallithea.lib.exceptions import DefaultUserException, \

    UserOwnsReposException, UserCreationError

from kallithea.lib import helpers as h

from kallithea.lib.auth import LoginRequired, HasPermissionAllDecorator, \

    AuthUser, generate_api_key

import kallithea.lib.auth_modules.auth_internal

from kallithea.lib import auth_modules

from kallithea.lib.base import BaseController, render

from kallithea.model.api_key import ApiKeyModel

from kallithea.model.db import User, UserEmailMap, UserIpMap, UserToPerm

from kallithea.model.forms import UserForm, CustomDefaultPermissionsForm

from kallithea.model.user import UserModel

from kallithea.model.meta import Session

from kallithea.lib.utils import action_logger

from kallithea.lib.compat import json

from kallithea.lib.utils2 import datetime_to_time, safe_int

log = logging.getLogger(__name__)

class UsersController(BaseController):

    """REST Controller styled on the Atom Publishing Protocol"""

    @LoginRequired()

    @HasPermissionAllDecorator('hg.admin')

    def __before__(self):

        super(UsersController, self).__before__()

        c.available_permissions = config['available_permissions']

        c.EXTERN_TYPE_INTERNAL = kallithea.EXTERN_TYPE_INTERNAL

    def index(self, format='html'):

        """GET /users: All items in the collection"""

        # url('users')

        c.users_list = User.query().order_by(User.username)\

                        .filter(User.username != User.DEFAULT_USER)\

                        .order_by(func.lower(User.username))\

                        .all()

        users_data = []

        total_records = len(c.users_list)

        _tmpl_lookup = kallithea.CONFIG['pylons.app_globals'].mako_lookup

        template = _tmpl_lookup.get_template('data_table/_dt_elements.html')

        grav_tmpl = lambda user_email, size: (

                template.get_def("user_gravatar")

                .render(user_email, size, _=_, h=h, c=c))

        username = lambda user_id, username: (

                template.get_def("user_name")

                .render(user_id, username, _=_, h=h, c=c))

        user_actions = lambda user_id, username: (

                template.get_def("user_actions")

                .render(user_id, username, _=_, h=h, c=c))

        for user in c.users_list:

            users_data.append({

                "gravatar": grav_tmpl(user. email, 20),

                "raw_name": user.username,

                "username": username(user.user_id, user.username),

                "firstname": user.name,

                "lastname": user.lastname,

                "last_login": h.fmt_date(user.last_login),

                "last_login_raw": datetime_to_time(user.last_login),

                "active": h.boolicon(user.active),

                "admin": h.boolicon(user.admin),

                "extern_type": user.extern_type,

                "extern_name": user.extern_name,

                "action": user_actions(user.user_id, user.username),

            })

        c.data = json.dumps({

            "totalRecords": total_records,

            "startIndex": 0,

            "sort": None,

            "dir": "asc",

            "records": users_data

        })

        return render('admin/users/users.html')

    def create(self):

        """POST /users: Create a new item"""

        # url('users')

        c.default_extern_type = auth_modules.auth_internal.KallitheaAuthPlugin.name

        user_model = UserModel()

        user_form = UserForm()()

        try:

            form_result = user_form.to_python(dict(request.POST))

            user = user_model.create(form_result)

            usr = form_result['username']

            action_logger(self.authuser, 'admin_created_user:%s' % usr,

                          None, self.ip_addr, self.sa)

            h.flash(h.literal(_('Created user %s') % h.link_to(h.escape(usr), url('edit_user', id=user.user_id))),

                    category='success')

            Session().commit()

        except formencode.Invalid, errors:

            return htmlfill.render(

                render('admin/users/user_add.html'),

                defaults=errors.value,

                errors=errors.error_dict or {},

                prefix_error=False,

                encoding="UTF-8")

        except UserCreationError, e:

            h.flash(e, 'error')

        except Exception:

            log.error(traceback.format_exc())

            h.flash(_('Error occurred during creation of user %s') \

                    % request.POST.get('username'), category='error')

        return redirect(url('users'))

    def new(self, format='html'):

        """GET /users/new: Form to create a new item"""

        # url('new_user')

        c.default_extern_type = auth_modules.auth_internal.KallitheaAuthPlugin.name

        return render('admin/users/user_add.html')

    def update(self, id):

        """PUT /users/id: Update an existing item"""

        # Forms posted to this method should contain a hidden field:

        #    <input type="hidden" name="_method" value="PUT" />

        # Or using helpers:

        #    h.form(url('update_user', id=ID),

        #           method='put')

        # url('user', id=ID)

        c.active = 'profile'

        user_model = UserModel()

        c.user = user_model.get(id)

        c.extern_type = c.user.extern_type

        c.extern_name = c.user.extern_name

        c.perm_user = AuthUser(user_id=id, ip_addr=self.ip_addr)

        _form = UserForm(edit=True, old_data={'user_id': id,

                                              'email': c.user.email})()

        form_result = {}

        try:

            form_result = _form.to_python(dict(request.POST))

            skip_attrs = ['extern_type', 'extern_name']

            #TODO: plugin should define if username can be updated

            if c.extern_type != kallithea.EXTERN_TYPE_INTERNAL:

                # forbid updating username for external accounts

                skip_attrs.append('username')

            user_model.update(id, form_result, skip_attrs=skip_attrs)

            usr = form_result['username']

            action_logger(self.authuser, 'admin_updated_user:%s' % usr,

                          None, self.ip_addr, self.sa)

            h.flash(_('User updated successfully'), category='success')

            Session().commit()

        except formencode.Invalid, errors:

            defaults = errors.value

            e = errors.error_dict or {}

            defaults.update({

        try:

            self.sa.add(paths)

            self.sa.commit()

        except Exception:

            self.sa.rollback()

            raise

    def fix_default_user(self):

        """

        Fixes a old default user with some 'nicer' default values,

        used mostly for anonymous access

        """

        def_user = self.sa.query(User)\

                .filter(User.username == User.DEFAULT_USER)\

                .one()

        def_user.name = 'Anonymous'

        def_user.lastname = 'User'

        def_user.email = 'anonymous@kallithea-scm.org'

        try:

            self.sa.add(def_user)

            self.sa.commit()

        except Exception:

            self.sa.rollback()

            raise

    def fix_settings(self):

        """

        Fixes kallithea settings adds ga_code key for google analytics

        """

        hgsettings3 = Setting('ga_code', '')

        try:

            self.sa.add(hgsettings3)

            self.sa.commit()

        except Exception:

            self.sa.rollback()

            raise

    def admin_prompt(self, second=False):

        if not self.tests:

            import getpass

            # defaults

            defaults = self.cli_args

            username = defaults.get('username')

            password = defaults.get('password')

            email = defaults.get('email')

            def get_password():

                password = getpass.getpass('Specify admin password '

                                           '(min 6 chars):')

                confirm = getpass.getpass('Confirm password:')

                if password != confirm:

                    log.error('passwords mismatch')

                    return False

                if len(password) < 6:

                    log.error('password is to short use at least 6 characters')

                    return False

                return password

            if username is None:

                username = raw_input('Specify admin username:')

            if password is None:

                password = get_password()

                if not password:

                    #second try

                    password = get_password()

                    if not password:

                        sys.exit()

            if email is None:

                email = raw_input('Specify admin email:')

            self.create_user(username, password, email, True)

        else:

            log.info('creating admin and regular test users')

            from kallithea.tests import TEST_USER_ADMIN_LOGIN, \

            TEST_USER_ADMIN_PASS, TEST_USER_ADMIN_EMAIL, \

            TEST_USER_REGULAR_LOGIN, TEST_USER_REGULAR_PASS, \

            TEST_USER_REGULAR_EMAIL, TEST_USER_REGULAR2_LOGIN, \

            TEST_USER_REGULAR2_PASS, TEST_USER_REGULAR2_EMAIL

            self.create_user(TEST_USER_ADMIN_LOGIN, TEST_USER_ADMIN_PASS,

                             TEST_USER_ADMIN_EMAIL, True)

            self.create_user(TEST_USER_REGULAR_LOGIN, TEST_USER_REGULAR_PASS,

                             TEST_USER_REGULAR_EMAIL, False)

            self.create_user(TEST_USER_REGULAR2_LOGIN, TEST_USER_REGULAR2_PASS,

                             TEST_USER_REGULAR2_EMAIL, False)

    def create_ui_settings(self, repo_store_path):

        """

        Creates ui settings, fills out hooks

        """

        #HOOKS

        hooks1_key = Ui.HOOK_UPDATE

        hooks1_ = self.sa.query(Ui)\

            .filter(Ui.ui_key == hooks1_key).scalar()

        hooks1 = Ui() if hooks1_ is None else hooks1_

        hooks1.ui_section = 'hooks'

        hooks1.ui_key = hooks1_key

        hooks1.ui_value = 'hg update >&2'

        hooks1.ui_active = False

        self.sa.add(hooks1)

        hooks2_key = Ui.HOOK_REPO_SIZE

        hooks2_ = self.sa.query(Ui)\

            .filter(Ui.ui_key == hooks2_key).scalar()

        hooks2 = Ui() if hooks2_ is None else hooks2_

        hooks2.ui_section = 'hooks'

        hooks2.ui_key = hooks2_key

        hooks2.ui_value = 'python:kallithea.lib.hooks.repo_size'

        self.sa.add(hooks2)

        hooks3 = Ui()

        hooks3.ui_section = 'hooks'

        hooks3.ui_key = Ui.HOOK_PUSH

        hooks3.ui_value = 'python:kallithea.lib.hooks.log_push_action'

        self.sa.add(hooks3)

        hooks4 = Ui()

        hooks4.ui_section = 'hooks'

        hooks4.ui_key = Ui.HOOK_PRE_PUSH

        hooks4.ui_value = 'python:kallithea.lib.hooks.pre_push'

        self.sa.add(hooks4)

        hooks5 = Ui()

        hooks5.ui_section = 'hooks'

        hooks5.ui_key = Ui.HOOK_PULL

        hooks5.ui_value = 'python:kallithea.lib.hooks.log_pull_action'

        self.sa.add(hooks5)

        hooks6 = Ui()

        hooks6.ui_section = 'hooks'

        hooks6.ui_key = Ui.HOOK_PRE_PULL

        hooks6.ui_value = 'python:kallithea.lib.hooks.pre_pull'

        self.sa.add(hooks6)

        # enable largefiles

        largefiles = Ui()

        largefiles.ui_section = 'extensions'

        largefiles.ui_key = 'largefiles'

        largefiles.ui_value = ''

        self.sa.add(largefiles)

        # set default largefiles cache dir, defaults to

        # /repo location/.cache/largefiles

        largefiles = Ui()

        largefiles.ui_section = 'largefiles'

        largefiles.ui_key = 'usercache'

        largefiles.ui_value = os.path.join(repo_store_path, '.cache',

                                           'largefiles')

        self.sa.add(largefiles)

        # enable hgsubversion disabled by default

        hgsubversion = Ui()

        hgsubversion.ui_section = 'extensions'

        hgsubversion.ui_key = 'hgsubversion'

        hgsubversion.ui_value = ''

        hgsubversion.ui_active = False

        self.sa.add(hgsubversion)

        # enable hggit disabled by default

        hggit = Ui()

        hggit.ui_section = 'extensions'

        hggit.ui_key = 'hggit'

        hggit.ui_value = ''

        hggit.ui_active = False

        self.sa.add(hggit)

    def create_auth_plugin_options(self, skip_existing=False):

        """

        Create default auth plugin settings, and make it active

        :param skip_existing:

        """

        for k, v, t in [('auth_plugins', 'kallithea.lib.auth_modules.auth_internal', 'list'),

                     ('auth_internal_enabled', 'True', 'bool')]:

            if skip_existing and Setting.get_by_name(k) != None:

                log.debug('Skipping option %s' % k)

                continue

            setting = Setting(k, v, t)

            self.sa.add(setting)

    def create_default_options(self, skip_existing=False):

        """Creates default settings"""

        });

        F.filterTimeout = null;

        F.updateFilter = function () {

            // Reset timeout

            F.filterTimeout = null;

            var obsolete = [];

            var req = $q_filter_field.val().toLowerCase();

            var showing = 0;

            $nodes.each(function () {

                var n = this;

                var target_element = display_element(n);

                if (req && n.innerHTML.toLowerCase().indexOf(req) == -1) {

                    $(target_element).hide();

                }

                else {

                    $(target_element).show();

                    showing += 1;

                }

            });

            $('#repo_count').html(showing);

            /* FIXME: don't hardcode */

        }

    }

})();

/* return jQuery expression with a tr with body in 3rd column and class cls and id named after the body */

var _table_tr = function(cls, body){

    // like: <div class="comment" id="comment-8" line="o92"><div class="comment-wrapp">...

    // except new inlines which are different ...

    var comment_id = ($(body).attr('id') || 'comment-new').split('comment-')[1];

    var tr_id = 'comment-tr-{0}'.format(comment_id);

    return $(('<tr id="{0}" class="{1}">'+

                  '<td class="lineno-inline new-inline"></td>'+

                  '<td class="lineno-inline old-inline"></td>'+

                  '<td>{2}</td>'+

                 '</tr>').format(tr_id, cls, body));

};

/** return jQuery expression with new inline form based on template **/

var _createInlineForm = function(parent_tr, f_path, line) {

    var $tmpl = $('#comment-inline-form-template').html().format(f_path, line);

    var $form = _table_tr('comment-form-inline', $tmpl)

    // create event for hide button

    $form.find('.hide-inline-form').click(function(e) {

        var newtr = e.currentTarget.parentNode.parentNode.parentNode.parentNode.parentNode;

        if($(newtr).next().hasClass('inline-comments-button')){

            $(newtr).next().show();

        }

        $(newtr).remove();

        $(parent_tr).removeClass('form-open');

        $(parent_tr).removeClass('hl-comment');

    });

    return $form

};

/**

 * Inject inline comment for an given TR. This tr should always be a .line .

 * The form will be inject after any comments.

 */

var injectInlineForm = function(tr){

    var $tr = $(tr);

    if(!$tr.hasClass('line')){

        return

    }

    var submit_url = AJAX_COMMENT_URL;

    var $td = $tr.find('.code');

    if($tr.hasClass('form-open') || $tr.hasClass('context') || $td.hasClass('no-comment')){

        return

    }

    $tr.addClass('form-open hl-comment');

    var $node = $tr.parent().parent().parent().find('.full_f_path');

    var f_path = $node.attr('path');

    var lineno = _getLineNo(tr);

    var $form = _createInlineForm(tr, f_path, lineno, submit_url);

    var $parent = $tr;

    while ($parent.next().hasClass('inline-comments')){

        var $parent = $parent.next();

    }

    $form.insertAfter($parent);

    var $overlay = $form.find('.submitting-overlay');

    var $inlineform = $form.find('.inline-form');

    $form.submit(function(e){

        e.preventDefault();

        if(lineno === undefined){

            alert('Error submitting, line ' + lineno + ' not found.');

        }

        if(f_path === undefined){

            alert('Error submitting, file path ' + f_path + ' not found.');

        }

        var text = $('#text_'+lineno).val();

        if(text == ""){

        }

        $overlay.show();

        var success = function(json_data){

            $tr.removeClass('form-open');

            $form.remove();

            _renderInlineComment(json_data);

        };

        var postData = {

                'text': text,

                'f_path': f_path,

                'line': lineno

        };

        ajaxPOST(submit_url, postData, success);

    });

    $('#preview-btn_'+lineno).click(function(e){

        var text = $('#text_'+lineno).val();

        if(!text){

            return

        }

        $('#preview-box_'+lineno).addClass('unloaded');

        $('#preview-box_'+lineno).html(_TM['Loading ...']);

        $('#edit-container_'+lineno).hide();

        $('#edit-btn_'+lineno).show();

        $('#preview-container_'+lineno).show();

        $('#preview-btn_'+lineno).hide();

        var url = pyroutes.url('changeset_comment_preview', {'repo_name': REPO_NAME});

        var post_data = {'text': text};

        ajaxPOST(url, post_data, function(html){

            $('#preview-box_'+lineno).html(html);

            $('#preview-box_'+lineno).removeClass('unloaded');

        })

    })

    $('#edit-btn_'+lineno).click(function(e){

        $('#edit-container_'+lineno).show();

        $('#edit-btn_'+lineno).hide();

        $('#preview-container_'+lineno).hide();

        $('#preview-btn_'+lineno).show();

    })

    setTimeout(function(){

        // callbacks

        tooltip_activate();

        MentionsAutoComplete('text_'+lineno, 'mentions_container_'+lineno,

                             _USERS_AC_DATA, _GROUPS_AC_DATA);

        $('#text_'+lineno).focus();

    },10)

};

var deleteComment = function(comment_id){

    var url = AJAX_COMMENT_DELETE_URL.replace('__COMMENT_ID__',comment_id);

    var postData = {'_method':'delete'};

    var success = function(o){

        var $deleted = $('#comment-tr-'+comment_id);

        var $prev = $deleted.prev('tr');

        $deleted.remove();

        _placeAddButton($prev);

    }

    ajaxPOST(url,postData,success);

}

var _getLineNo = function(tr) {

    var line;

    var o = $(tr).children()[0].id.split('_');

    var n = $(tr).children()[1].id.split('_');

    if (n.length >= 2) {

        line = n[n.length-1];

    } else if (o.length >= 2) {

        line = o[o.length-1];

    }

    return line

};

var _placeAddButton = function($line_tr){

    var $tr = $line_tr;

    while ($tr.next().hasClass('inline-comments')){

        $tr.find('.add-comment').remove();

        $tr = $tr.next();

    }

    $tr.find('.add-comment').remove();

    var label = TRANSLATION_MAP['Add Another Comment'];

    var $html_el = $('<div class="add-comment"><span class="btn btn-mini">{0}</span></div>'.format(label));

    $html_el.click(function(e) {

        injectInlineForm($line_tr);

    });

    $tr.find('.comment').after($html_el);

};

/**

 * Places the inline comment into the changeset block in proper line position

 */