/**
    * This file Copyright (c) 2003-2018 Magnolia International
    * Ltd.  (http://www.magnolia-cms.com). All rights reserved.
    *
    *
    * This file is dual-licensed under both the Magnolia
    * Network Agreement and the GNU General Public License.
    * You may elect to use one or the other of these licenses.
    *
   * This file is distributed in the hope that it will be
   * useful, but AS-IS and WITHOUT ANY WARRANTY; without even the
   * implied warranty of MERCHANTABILITY or FITNESS FOR A
   * PARTICULAR PURPOSE, TITLE, or NONINFRINGEMENT.
   * Redistribution, except as permitted by whichever of the GPL
   * or MNA you select, is prohibited.
   *
   * 1. For the GPL license (GPL), you can redistribute and/or
   * modify this file under the terms of the GNU General
   * Public License, Version 3, as published by the Free Software
   * Foundation.  You should have received a copy of the GNU
   * General Public License, Version 3 along with this program;
   * if not, write to the Free Software Foundation, Inc., 51
   * Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
   *
   * 2. For the Magnolia Network Agreement (MNA), this file
   * and the accompanying materials are made available under the
   * terms of the MNA which accompanies this distribution, and
   * is available at http://www.magnolia-cms.com/mna.html
   *
   * Any modifications to this file must keep this entire header
   * intact.
   *
   */
  package info.magnolia.audit;
  
  import info.magnolia.cms.security.UserManager;
  import info.magnolia.cms.security.auth.login.FormLogin;
  import info.magnolia.cms.security.auth.login.LoginResult;
  import info.magnolia.context.Context;
  import info.magnolia.context.MgnlContext;
  import info.magnolia.context.SystemContext;
  import info.magnolia.context.UserContext;
  
  import javax.jcr.nodetype.NodeType;
  import javax.servlet.http.HttpServletRequest;
  
  /**
   * Utilities class used to log 'auditory actions'.
   */
  public class AuditLoggingUtil {
  
      public static final String ACTION_CREATE = "create";
      public static final String ACTION_MODIFY = "modify";
      public static final String ACTION_DELETE = "delete";
      public static final String ACTION_COPY = "copy";
      public static final String ACTION_MOVE = "move";
      public static final String ACTION_ACTIVATE = "activate";
      public static final String ACTION_DEACTIVATE = "deactivate";
      public static final String ACTION_LOGIN = "login";
      public static final String ACTION_LOGOUT = "logout";
      public static final String ACTION_SECURITY = "security";
  
      /**
       * Log activate, deactivate incl. node type.
       */
      public static void log(String action, String workspaceName, NodeType nodeType, String nodePath) {
          AuditLoggingUtil.log(action, new String[]{AuditLoggingUtil.getUser(), workspaceName, nodeType == null ? "" : nodeType.getName(), nodePath});
      }
  
      /**
       * Log publish, unpublish.
       */
      public static void log(String action, String userName, String workspaceName, NodeType nodeType, String nodePathTo) {
          AuditLoggingUtil.log(action, new String[]{userName, workspaceName, nodeType == null ? "" : nodeType.getName(), nodePathTo});
      }
  
      /**
       * Log copy, move.
       */
      public static void log(String action, String workspaceName, String nodePathFrom, String nodePathTo) {
          AuditLoggingUtil.log(action, new String[]{AuditLoggingUtil.getUser(), workspaceName, nodePathFrom, nodePathTo});
      }
  
      /**
       * Log create, modify, delete and move in session.
       */
      public static void log(String action, long timeStamp, String workspaceName, NodeType nodeType, String path, String pathTo) {
          AuditLoggingUtil.log(action, new String[]{String.valueOf(timeStamp), AuditLoggingUtil.getUser(), workspaceName, nodeType == null ? "" : nodeType.getName(), path, pathTo == null ? "" : pathTo});
      }
  
      /**
       * Log copy to another workspace.
       */
      public static void log(String action, String workspaceFrom, String workspaceTo, String nodePathFrom, String nodePathTo) {
          AuditLoggingUtil.log(action, new String[]{AuditLoggingUtil.getUser(), workspaceFrom, workspaceTo, nodePathFrom, nodePathTo});
      }
  
      /**
       * Log user logout.
      */
     public static void log(final UserContext userContext) {
         AuditLoggingUtil.log(AuditLoggingUtil.ACTION_LOGOUT, null, (String) null, null);
     }
 
     /**
      * Log user login.
      */
     public static void log(final LoginResult loginResult, final HttpServletRequest request) {
         int loginStatus = loginResult.getStatus();
 
         if (loginStatus == LoginResult.STATUS_SUCCEEDED_REDIRECT_REQUIRED || loginStatus == LoginResult.STATUS_SUCCEEDED || loginStatus == LoginResult.STATUS_FAILED) {
             // need request as if the user is not logged yet, the id is not in the context
             String userId = request.getParameter(FormLogin.PARAMETER_USER_ID);
             if (UserManager.ANONYMOUS_USER.equals(userId)) {
                 // do not log for anonymous
                 return;
             }
 
             String result;
             if (loginStatus == LoginResult.STATUS_SUCCEEDED || loginStatus == LoginResult.STATUS_SUCCEEDED_REDIRECT_REQUIRED) {
                 result = "Success";
             } else {
                 result = "Failure " + loginResult.getLoginException().getLocalizedMessage();
             }
 
             AuditLoggingUtil.log(AuditLoggingUtil.ACTION_LOGIN, new String[]{userId, request.getRemoteAddr(), result});
         }
     }
 
     /**
      * Log a security event.
      */
     public static void logSecurity(String ipAddress, String securityEventType, String securityEventdetails) {
         AuditLoggingUtil.log(AuditLoggingUtil.ACTION_SECURITY, new String[]{getUser(), ipAddress, securityEventType, securityEventdetails});
     }
 
     private static void log(String action, String[] data) {
         AuditLoggingManager manager = AuditLoggingManager.getInstance();
         if (manager != null) {
             manager.log(action, data);
         }
     }
 
     private static String getUser() {
         try {
             Context ctx = null;
             if (MgnlContext.isSystemInstance()) {
                 // in system context try to obtain original non-system context and retrieve user from it
                 ctx = ((SystemContext) MgnlContext.getInstance()).getOriginalContext();
                 if (ctx == null) {
                     // when original context is not set, revert to old behavior and log user as "SystemUser"
                     return "SystemUser";
                 }
                 if (ctx.getUser() != null) {
                     // log user and prepend "system" to the name to show in audit log that action was executed via system context w/o user really having privileges set to do such op on his own
                     return "System [" + ctx.getUser().getName() + "]";
                 }
             } else if (MgnlContext.hasInstance()) {
                 // when op is executed in normal context, just retrieve user and log user
                 ctx = MgnlContext.getInstance();
                 if (ctx.getUser() != null) {
                     return ctx.getUser().getName();
                 }
             }
         } catch (Exception e) {
             // log system user, but using different name to signify (internally) that there was something out-of-ordinary happening when trying to generate audit log
             return "system user";
         }
         // context is not set or it is set but without user which should never really occur except during initialization
         return "user not set";
     }
 
 }