package main

import (
	"crypto/openpgp"
	"epoint/key"
	"epoint/server"
	"flag"
	"fmt"
	"io/ioutil"
	"log"
	"net/http"
	"os"
)

var (
	rootdir = flag.String("dir", "docroot", "root dir for storage")
	seckey  = flag.String("key", "", "secret key, empty means generated")
	addr    = flag.String("addr", ":8080", "address to listen on")
)

// todo: http header limit: 64K, body limit: 64K

func httpError(w http.ResponseWriter, code int, msg string) {
	log.Printf("error: %d %s", code, msg)
	http.Error(w, fmt.Sprintf("%d %s\n\n%s\n", code, http.StatusText(code), msg), code)
}

func httpReq(r *http.Request) string {
	err := r.ParseForm()
	form := ""
	if err != nil {
		form = err.Error()
	} else {
		a := []string{}
		for k := range r.Form {
			a = append(a, k)
		}
		form = fmt.Sprintf("%v", a)
	}
	return fmt.Sprintf("%s %s params:%s", r.Method, r.URL, form)
}

func defaultHandler(w http.ResponseWriter, r *http.Request) {
	log.Printf("%s %s", r.RemoteAddr, httpReq(r))
	fmt.Fprintf(w, "not implemented: %s %s\n", r.Method, r.URL)
}

func submitHandler(w http.ResponseWriter, r *http.Request) {
	log.Printf("%s %s", r.RemoteAddr, httpReq(r))
	draft := r.FormValue("draft")
	debit := r.FormValue("debit")
	key := r.FormValue("key")
	switch {
	case draft != "":
		cert, err := server.EvalDraft([]byte(draft))
		if err != nil {
			msg := fmt.Sprintf("eval draft failed: %s", err)
			httpError(w, 404, msg)
		} else {
			w.Write(cert)
		}
	case debit != "":
		cert, err := server.EvalDebitCert([]byte(debit))
		if err != nil {
			msg := fmt.Sprintf("eval debit failed: %s", err)
			httpError(w, 404, msg)
		} else {
			w.Write(cert)
		}
	case key != "":
		err := server.AddKeys([]byte(key))
		if err != nil {
			msg := fmt.Sprintf("add keys failed: %s", err)
			httpError(w, 404, msg)
		} else {
			w.Write([]byte("ok\n"))
		}
	default:
		msg := fmt.Sprintf("expected key, draft or debit param, got: %s", httpReq(r))
		httpError(w, 404, msg)
	}
}

func initkey(path string) (sk *openpgp.Entity, err error) {
	if path == "" {
		// TODO: serious keygen, server key depends on time
		return key.Server([]byte("secret seed"))
	}
	d, err := ioutil.ReadFile(path)
	if err != nil {
		return
	}
	return key.Parse(d)
}

func main() {
	flag.Parse()
	serverkey, err := initkey(*seckey)
	if err != nil {
		log.Fatal(err)
	}
	err = server.Init(*rootdir, serverkey)
	if err != nil {
		log.Fatal(err)
	}

	// TODO: url from key
	f, err := os.Create(*rootdir + "/form.html")
	if err != nil {
		log.Fatal(err)
	}
	_, _ = fmt.Fprintf(f, `<html><head><title>epoint-server submit form</title></head><body>
<h2>epoint-server submit form</h2>
<h3>web form</h3>
<p>submit one document at a time
<form method="post" action="/submit">
<p>key:<br><textarea name="key" rows="5" cols="80"></textarea>
<p>draft:<br><textarea name="draft" rows="5" cols="80"></textarea>
<p>debit:<br><textarea name="debit" rows="5" cols="80"></textarea>
<p><input type="submit">
</form>
<h3>command line</h3>
<pre>
curl --data-urlencode name@path/to/file.txt host/submit
</pre>
where 'name' is 'key', 'draft' or 'debit'.
</body></html>
`)
	_ = f.Close()

	// queries
	http.Handle("/", http.FileServer(http.Dir(*rootdir)))

	// actions
	// withdraw, draw, deposit, process, clear
	http.HandleFunc("/submit", submitHandler)

	log.Printf("start service on %s, server key id: %s\n", *addr, key.Id(serverkey))
	log.Fatal(http.ListenAndServe(*addr, nil))
}