# -*- coding: utf-8 -*-

# メール認証情報コントローラ
class Credentials::EmailController < ApplicationController
  EditFormClass = EmailCredentialEditForm

  verify_method_post :only => [:create, :update_password, :destroy, :activate]
  before_filter :authentication
  before_filter :authentication_required, :except => [:activation, :activate, :activated]
  before_filter :required_param_email_credential_id, :only => [:created, :edit_password, :update_password, :delete, :destroy]
  before_filter :specified_email_credential_belongs_to_login_user, :only => [:created, :edit_password, :update_password, :delete, :destroy]
  before_filter :required_param_activation_token, :only => [:activation, :activate, :activated]
  before_filter :only_inactive_email_credential, :only => [:activation, :activate]

  # GET /credentials/email/new
  def new
    @edit_form = EditFormClass.new
  end

  # GET /credentials/email/create
  def create
    @edit_form = EditFormClass.new(params[:edit_form])

    @email_credential = @login_user.email_credentials.build
    @email_credential.attributes = @edit_form.to_email_credential_hash

    if @edit_form.valid? && @email_credential.save
      # TODO: テスト
      @activation_url = url_for(
        :only_path        => false,
        :controller       => "credentials/email",
        :action           => "activation",
        :activation_token => @email_credential.activation_token)

      # TODO: テスト
      # MEMO: 即時性を優先し、非同期化しない
      ActivationMailer.deliver_request_for_credential(
        :recipients     => @email_credential.email,
        :activation_url => @activation_url)

      set_notice(p_("MultiAuth", "Email authentication credential was successfully added."))
      redirect_to(:action => "created", :email_credential_id => @email_credential.id)
    else
      @edit_form.password              = nil
      @edit_form.password_confirmation = nil
      set_error_now(p_("MultiAuth", "Please confirm your input."))
      render(:action => "new")
    end
  end

  # GET /credential/email/:email_credential_id/created
  def created
    # nop
  end

  # GET /credential/email/:email_credential_id/edit_password
  def edit_password
    @edit_form = EmailPasswordEditForm.new
  end

  # POST /credential/email/:email_credential_id/update_password
  def update_password
    @edit_form = EmailPasswordEditForm.new(params[:edit_form])

    @email_credential.attributes = @edit_form.to_email_credential_hash

    if @edit_form.valid? && @email_credential.save
      set_notice(p_("MultiAuth", "Password was changed."))
      redirect_to(:controller => "/credentials")
    else
      @edit_form.password              = nil
      @edit_form.password_confirmation = nil
      set_error_now(p_("MultiAuth", "Please confirm your input."))
      render(:action => "edit_password")
    end
  end

  # GET /credential/email/:email_credential_id/delete
  def delete
    # nop
  end

  # POST /credential/email/:email_credential_id/destroy
  def destroy
    @email_credential.destroy

    set_notice(p_("MultiAuth", "Email authentication credential was successfully deleted."))
    redirect_to(:controller => "/credentials")
  end

  # GET /credential/email/token/:activation_token/activation
  def activation
    # nop
  end

  # POST /credential/email/token/:activation_token/activate
  def activate
    @email_credential.activate!

    # TODO: テスト
    # MEMO: 即時性を優先し、非同期化しない
    ActivationMailer.deliver_complete_for_credential(
      :recipients => @email_credential.email)

    redirect_to(:action => "activated")
  end

  # GET /credential/email/token/:activation_token/activated
  def activated
    # nop
  end

  private

  # FIXME: login_userに属することを同時に確認
  def required_param_email_credential_id(email_credential_id = params[:email_credential_id])
    @email_credential = EmailCredential.find_by_id(email_credential_id)
    if @email_credential
      return true
    else
      set_error(p_("MultiAuth", "It is invalid email authentication credential."))
      redirect_to(root_path)
      return false
    end
  end

  def specified_email_credential_belongs_to_login_user
    if @email_credential.user_id == @login_user.id
      return true
    else
      set_error(p_("MultiAuth", "It is invalid email authentication credential."))
      redirect_to(root_path)
      return false
    end
  end

  def required_param_activation_token(activation_token = params[:activation_token])
    @email_credential = EmailCredential.find_by_activation_token(activation_token)
    if @email_credential
      return true
    else
      set_error(p_("MultiAuth", "It is invalid activation token."))
      redirect_to(root_path)
      return false
    end
  end

  def only_inactive_email_credential
    if @email_credential.activated?
      set_error(p_("MultiAuth", "This email authentication credential has been already activated."))
      redirect_to(root_path)
      return false
    else
      return true
    end
  end
end