package org.restafarian.core.filters;
   
   import java.io.IOException;
   import java.util.ArrayList;
   import java.util.HashMap;
   import java.util.Iterator;
   import java.util.List;
   import java.util.Map;
   import java.util.Set;
  
  import javax.servlet.Filter;
  import javax.servlet.FilterChain;
  import javax.servlet.FilterConfig;
  import javax.servlet.ServletException;
  import javax.servlet.ServletRequest;
  import javax.servlet.ServletResponse;
  import javax.servlet.http.Cookie;
  import javax.servlet.http.HttpServletRequest;
  import javax.servlet.http.HttpServletResponse;
  import javax.servlet.http.HttpSession;
  
  import org.apache.commons.logging.Log;
  import org.apache.commons.logging.LogFactory;
  import org.restafarian.core.beans.Person;
  import org.verisign.joid.OpenIdRuntimeException;
  import org.verisign.joid.consumer.AuthenticationException;
  import org.verisign.joid.consumer.AuthenticationResult;
  import org.verisign.joid.consumer.JoidConsumer;
  
  /***
   * <p>
   * This filter is a modified version of the OpenIdFilter that ships with JOID.
   * </p>
   */
  public class OpenIdFilter implements Filter {
  	private static Log log = LogFactory.getLog(OpenIdFilter.class);
  	private static JoidConsumer joid = new JoidConsumer();
  	public static final String OPENID_ATTRIBUTE = "openid.identity";
  	boolean saveIdentityUrlAsCookie = false;
  	private String cookieDomain;
  	private List ignorePaths = new ArrayList();
  	private static boolean configuredProperly = false;
  
  	public void init(FilterConfig filterConfig) throws ServletException {
  		log.info("init OpenIdFilter");
  		String saveInCookie = filterConfig.getInitParameter("saveInCookie");
  		if (saveInCookie != null) {
  			saveIdentityUrlAsCookie = org.verisign.joid.util.Boolean.parseBoolean(saveInCookie);
  			// saveIdentityUrlAsCookie = Boolean.parseBoolean(saveInCookie);
  			log.debug("saving identities in cookie: " + saveIdentityUrlAsCookie);
  		}
  		cookieDomain = filterConfig.getInitParameter("cookieDomain");
  		String ignorePaths = filterConfig.getInitParameter("ignorePaths");
  		if (ignorePaths != null) {
  			String paths[] = ignorePaths.split(",");
  			for (int i = 0; i < paths.length; i++) {
  				String path = paths[i].trim();
  				this.ignorePaths.add(path);
  			}
  		}
  		configuredProperly = true;
  		log.debug("end init OpenIdFilter");
  	}
  
  	/***
  	 * This is to check to make sure the OpenIdFilter is setup propertly in the
  	 * web.xml.
  	 */
  	private static void ensureFilterConfiguredProperly() {
  		if (!configuredProperly) {
  			// log.warn("OpenIdFilter Not Configured Properly!");
  			throw new OpenIdRuntimeException("OpenIdFilter Not Configured Properly! Check your web.xml for OpenIdFilter.");
  		}
  	}
  
  	public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
  		// basically just check for openId parameters
  		HttpServletRequest request = (HttpServletRequest) servletRequest;
  		if (servletRequest.getParameter(OPENID_ATTRIBUTE) != null && !ignored(request)) {
  			try {
  				AuthenticationResult result = joid.authenticate(convertToStringValueMap(servletRequest.getParameterMap()));
  				String identity = result.getIdentity();
  				if (identity != null) {
  					HttpServletRequest req = (HttpServletRequest) servletRequest;
  					req.getSession().setAttribute(OPENID_ATTRIBUTE, identity);
  // custom additions begin here ***************************************************
  					Person user = new Person();
  					user.setId(identity);
  					user.setUri(identity);
  					user.setName(request.getParameter("openid.sreg.fullname"));
  					user.setEmail(request.getParameter("openid.sreg.email"));
  					req.getSession().setAttribute("authenticatedUser", user);
  // custom additions end here *****************************************************
  					HttpServletResponse resp = (HttpServletResponse) servletResponse; 
  					Cookie cookie = new Cookie(OPENID_ATTRIBUTE, identity);
  					if (cookieDomain != null) {
  						cookie.setDomain(cookieDomain);
  					}
  					resp.addCookie(cookie);
 					String redirectTo = (String) req.getSession().getAttribute("postLogonReturnPath");
 System.out.println("redirectTo: " + redirectTo);
 					if (redirectTo == null || redirectTo.length() == 0) {
 						redirectTo = result.getResponse().getReturnTo();
 System.out.println("redirectTo: " + redirectTo);
 					}
 System.out.println("redirectTo: " + redirectTo);
 					resp.sendRedirect(redirectTo);
 					return;
 				}
 			} catch (AuthenticationException e) {
 				e.printStackTrace();
 				log.info("auth failed: " + e.getMessage());
 				// should this be handled differently?
 			} catch (Exception e) {
 				e.printStackTrace();
 			}
 		}
 		filterChain.doFilter(servletRequest, servletResponse);
 	}
 
 	private boolean ignored(HttpServletRequest request) {
 		String servletPath = request.getServletPath();
 		for (int i = 0; i < ignorePaths.size(); i++) {
 			String s = (String) ignorePaths.get(i);
 			if (servletPath.startsWith(s)) {
 				// System.out.println("IGNORING: " + servletPath);
 				return true;
 			}
 		}
 		return false;
 	}
 
 	public static void logout(HttpSession session) {
 		session.removeAttribute(OPENID_ATTRIBUTE);
 	}
 
 	private Map convertToStringValueMap(Map parameterMap) {
 		Map ret = new HashMap();
 		Set set = parameterMap.entrySet();
 		for (Iterator iter = set.iterator(); iter.hasNext();) {
 			Map.Entry mapEntry = (Map.Entry) iter.next();
 			String key = (String) mapEntry.getKey();
 			String[] value = (String[]) mapEntry.getValue();
 			ret.put(key, value[0]);
 		}
 		return ret;
 	}
 
 	public void destroy() {
 	}
 
 	public static JoidConsumer joid() {
 		return joid;
 	}
 
 	public static String getCurrentUser(HttpSession session) {
 		ensureFilterConfiguredProperly();
 		return (String) session.getAttribute(OPENID_ATTRIBUTE);
 	}
 }