# Copyright (c) 2018, George Tokmaji

# Permission to use, copy, modify, and/or distribute this software for any
# purpose with or without fee is hereby granted, provided that the above
# copyright notice and this permission notice appear in all copies.

# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.

from ..helpers import *

@post("/api/auth/register")
def post_auth_new():
    session = DBSession()
    try:
        username = request.forms.username
        password = request.forms.password
    except KeyError as e:
        raise HTTPResponse("Username or password missing", 400)
    
    hash = calculateUserHash(username, password).hexdigest()
    try:
        session.query(User).filter(User.name == username or User.hash == hash).one()
        raise HTTPResponse("User already exists", status=410)
    except db.orm.exc.NoResultFound:
        session.add(User(name=username, hash=hash))
        session.commit()
        return HTTPResponse(status=303, headers={"Location" : "/api/auth"})

@get("/api/auth")
@jwt_auth_required
def get_auth():
    return request.get_user()