module Yawast
  module Scanner
    class Core
      def self.print_header
        Yawast.header

        puts "Scanning: #{@uri.to_s}"
        puts
      end

      def self.setup(uri, options)
        unless @setup
          @uri = uri

          print_header

          ssl_redirect = check_for_ssl_redirect
          if ssl_redirect
            @uri = ssl_redirect
            puts "Server redirects to TLS: Scanning: #{@uri.to_s}"
          end

          Yawast.set_openssl_options

          Yawast::Scanner::Generic.server_info(@uri, options)
        end

        @setup = true
      end

      def self.process(uri, options)
        setup(uri, options)

        begin
          #setup the proxy
          Yawast::Shared::Http.setup(options.proxy, options.cookie)

          #cache the HEAD result, so that we can minimize hits
          head = Yawast::Shared::Http.head(@uri)
          Yawast::Scanner::Generic.head_info(head)

          #perfom SSL checks
          check_ssl(@uri, options, head)

          #process the 'scan' stuff that goes beyond 'head'
          unless options.head
            #server specific checks
            Yawast::Scanner::Apache.check_all(@uri, head)
            Yawast::Scanner::Iis.check_all(@uri, head)

            Yawast::Scanner::ObjectPresence.check_source_control(@uri)
            Yawast::Scanner::ObjectPresence.check_sitemap(@uri)
            Yawast::Scanner::ObjectPresence.check_cross_domain(@uri)
            Yawast::Scanner::ObjectPresence.check_wsftp_log(@uri)
            Yawast::Scanner::ObjectPresence.check_trace_axd(@uri)
            Yawast::Scanner::ObjectPresence.check_elmah_axd(@uri)
            Yawast::Scanner::ObjectPresence.check_readme_html(@uri)
            Yawast::Scanner::ObjectPresence.check_release_notes_txt(@uri)

            Yawast::Scanner::Generic.check_propfind(@uri)
            Yawast::Scanner::Generic.check_options(@uri)
            Yawast::Scanner::Generic.check_trace(@uri)

            #check for common directories
            if options.dir
              Yawast::Scanner::Generic.directory_search(@uri, options.dirrecursive)
            end

            get_cms(@uri, options)
          end

          puts 'Scan complete.'
        rescue => e
          Yawast::Utilities.puts_error "Fatal Error: Can not continue. (#{e.message})"
        end
      end

      def self.get_cms(uri, options)
        setup(uri, options)

        body = Yawast::Shared::Http.get(uri)
        Yawast::Scanner::Cms.get_generator(body)
      end

      def self.check_for_ssl_redirect
        #check to see if the site redirects to SSL by default
        if @uri.scheme != 'https'
          head = Yawast::Shared::Http.head(@uri)

          if head['Location'] != nil
            begin
              location = URI.parse(head['Location'])

              if location.scheme == 'https'
                #we run this through extract_uri as it performs a few checks we need
                return Yawast::Shared::Uri.extract_uri location.to_s
              end
            rescue
              #we don't care if this fails
            end
          end
        end

        return nil
      end

      def self.check_ssl(uri, options, head)
        setup(uri, options)

        if @uri.scheme == 'https' && !options.nossl
          head = Yawast::Shared::Http.head(@uri) if head == nil

          if options.internalssl
            Yawast::Scanner::Ssl.info(uri, !options.nociphers, options.tdessessioncount)
          else
            Yawast::Scanner::SslLabs.info(@uri, options.tdessessioncount)
          end

          Yawast::Scanner::Ssl.check_hsts(head)
        elsif @uri.scheme == 'http'
          puts 'Skipping TLS checks; URL is not HTTPS'
        end
      end
    end
  end
end