from flask import Flask, url_for, session, request, jsonify, render_template, redirect

from flask_oauthlib.client import OAuth

from settings.client_settings import ClientSettings

import base64

import requests

import json

app = Flask(__name__)

app.debug = True

app.secret_key = 'secret'

app.config.from_object(ClientSettings)

oauth = OAuth(app)

remote = oauth.remote_app(

    'remote',

    consumer_key=app.config.get("CLIENT_ID", ""),

    consumer_secret=app.config.get("CLIENT_SECRET", ""),

    request_token_params=app.config.get("REQUEST_TOKEN_PARAMS", ""),

    base_url=app.config.get("BASE_URL", ""),

    request_token_url=app.config.get("REQUEST_TOKEN_URL", ""),

    access_token_url=app.config.get("ACCESS_TOKEN_URL", ""),

    authorize_url=app.config.get("AUTHORIZE_URL", "")

)

@app.route('/')

def index():

    if 'remote_oauth_authorizationcode' not in session:

        next_url = request.args.get('next') or request.referrer or None

        return remote.authorize(

            callback=url_for('authorized', next=next_url, _external=True)

        )

    if 'me' not in session:

        resp = remote.get('user/InfoComplete')

        print("authcode resp data: "+str(resp.data))

        me = resp.data.get("displayName", "")

        session["me"] = me

        id = resp.data.get("id", "")

        session["me_id"] = id

    if 'remote_oauth_clientcredentials' not in session:

        auth_string = bytes(app.config["CLIENT_ID"]+':'+app.config['CLIENT_SECRET'], "utf-8")

        auth_code = base64.b64encode(auth_string).decode("utf-8")

        resp = requests.post(app.config["ACCESS_TOKEN_URL"]+"?grant_type=client_credentials&scope=basic", data={}, headers={

            'Authorization': 'Basic %s' % auth_code,

        })

        if resp is None:

            return 'Access denied: reason=%s error=%s' % (

                request.args['error_reason'],

                request.args['error_description']

            )

        session['remote_oauth_clientcredentials'] = (json.loads(resp.text)['access_token'], '')

        resp = remote.get('user/InfoComplete')

        print("clientcredentials resp data: "+str(resp.data))

        server = resp.data.get("displayName", "")

        session["server"] = server

    return render_template('client/index.html', current_user_id=session["me_id"], current_username=session["me"], oauth_username=session["server"])

@app.route('/renkan-request')

def renkan_request():

    if 'remote_oauth_clientcredentials' in session:

        resp = requests.post(

            app.config["CREATE_RENKAN_ENDPOINT"]+"?act_as="+str(session.get("me_id", "anonymous")), 

            json.dumps({"title": "RENKAN_FROM_GED"}),

            headers={

                'Authorization': 'Bearer %s' % session['remote_oauth_clientcredentials'][0],

                'renkan-act-as': session.get("me_id", "anonymous"),

                'content-type': "application/json"

            }

        )

        print("%r : %r" %(resp.status_code, json.loads(resp.text)))

    return redirect('/')

@app.route('/authorized')

def authorized():

    resp = remote.authorized_response()

    if resp is None:

        return 'Access denied: reason=%s error=%s' % (

            request.args['error_reason'],

            request.args['error_description']

        )

    session['remote_oauth_authorizationcode'] = (resp['access_token'], '')

    return redirect('/')

@remote.tokengetter

def get_oauth_token():

    print("referrer : "+request.referrer)

    if 'remote_oauth_clientcredentials' in session and 'server' not in session:

        return session['remote_oauth_clientcredentials']

    else:

        return session.get('remote_oauth_authorizationcode', '')

if __name__ == '__main__':

    import os

    os.environ['DEBUG'] = 'true'

    os.environ['OAUTHLIB_INSECURE_TRANSPORT'] = 'true'

    app.run(host='localhost', port=8000)