# Copyright (C) 2012-2014 Zammad Foundation, http://zammad-foundation.org/

class ExternalCredentialsController < ApplicationController
  before_action :authentication_check

  def index
    return if deny_if_not_role(Z_ROLENAME_ADMIN)
    model_index_render(ExternalCredential, params)
  end

  def show
    return if deny_if_not_role(Z_ROLENAME_ADMIN)
    model_show_render(ExternalCredential, params)
  end

  def create
    return if deny_if_not_role(Z_ROLENAME_ADMIN)
    model_create_render(ExternalCredential, params)
  end

  def update
    return if deny_if_not_role(Z_ROLENAME_ADMIN)
    model_update_render(ExternalCredential, params)
  end

  def destroy
    return if deny_if_not_role(Z_ROLENAME_ADMIN)
    model_destory_render(ExternalCredential, params)
  end

  def app_verify
    attributes = ExternalCredential.app_verify(params)
    render json: { attributes: attributes }, status: :ok
    return
  rescue => e
    render json: { error: e.message }, status: :ok

  end

  def link_account
    return if deny_if_not_role(Z_ROLENAME_ADMIN)
    provider = params[:provider].downcase
    attributes = ExternalCredential.request_account_to_link(provider, callback_url(provider))
    session[:request_token] = attributes[:request_token]
    redirect_to attributes[:authorize_url]
  end

  def callback
    return if deny_if_not_role(Z_ROLENAME_ADMIN)
    provider = params[:provider].downcase
    channel = ExternalCredential.link_account(provider, session[:request_token], params)
    session[:request_token] = nil
    redirect_to app_url(provider, channel.id)
  end

  private

  def callback_url(provider)
    "#{Setting.get('http_type')}://#{Setting.get('fqdn')}#{Rails.configuration.api_path}/external_credentials/#{provider}/callback"
  end

  def app_url(provider, channel_id)
    "#{Setting.get('http_type')}://#{Setting.get('fqdn')}/#channels/#{provider}/#{channel_id}"
  end

end