/**
 * Copyright (c) Istituto Nazionale di Fisica Nucleare (INFN). 2006-2016
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.glite.security.voms.admin.view.actions.admin;

import java.util.List;

import org.apache.struts2.convention.annotation.InterceptorRef;
import org.apache.struts2.convention.annotation.Result;
import org.apache.struts2.convention.annotation.Results;
import org.apache.struts2.interceptor.TokenInterceptor;
import org.glite.security.voms.admin.operations.requests.DECISION;
import org.glite.security.voms.admin.operations.requests.HandleVOMembershipRequest;
import org.glite.security.voms.admin.operations.users.FindUserOperation;
import org.glite.security.voms.admin.persistence.model.VOMSUser;
import org.glite.security.voms.admin.persistence.model.request.NewVOMembershipRequest;
import org.glite.security.voms.admin.view.actions.BaseAction;

@Results({
  @Result(name = BaseAction.SUCCESS, location = "pendingRequests.jsp"),
  @Result(name = BaseAction.INPUT, location = "pendingRequests.jsp"),
  @Result(name = TokenInterceptor.INVALID_TOKEN_CODE,
    location = "pendingRequests.jsp") })
@InterceptorRef(value = "authenticatedStack", params = {
  "token.includeMethods", "execute" })
public class MembershipDecisionAction extends DecisionAction {

  /**
	 * 
	 */
  private static final long serialVersionUID = 1L;

  protected void validateVOMembershipRequest() {

    NewVOMembershipRequest r = (NewVOMembershipRequest) getModel();

    VOMSUser sameDnUser = (VOMSUser) FindUserOperation.instance(
      r.getRequesterInfo().getCertificateSubject(),
      r.getRequesterInfo().getCertificateIssuer()).execute();

    if (sameDnUser != null && decision.equals("approve")) {
      addActionError("A user with such certificate already exists. Please reject such request.");
      decision = null;
    }

  }

  protected void stripFalseFromApprovedGroups() {

    if (approvedGroups != null)
      while (approvedGroups.contains("false"))
        approvedGroups.remove("false");
  }

  @Override
  public void validate() {

    if (request instanceof NewVOMembershipRequest)
      validateVOMembershipRequest();

  }

  List<String> approvedGroups;

  @Override
  public String execute() throws Exception {

    stripFalseFromApprovedGroups();

    DECISION theDecision = DECISION.valueOf(decision.toUpperCase());

    new HandleVOMembershipRequest((NewVOMembershipRequest) request,
      theDecision, approvedGroups).execute();

    if (theDecision == DECISION.APPROVE) {
      
      addActionMessage("Request approved.");
      
    } else {
      
      addActionMessage("Request rejected.");
    }

    refreshPendingRequests();

    setDecision(null);

    return SUCCESS;
  }

  public List<String> getApprovedGroups() {

    return approvedGroups;
  }

  public void setApprovedGroups(List<String> approvedGroups) {

    this.approvedGroups = approvedGroups;
  }

}