/*
 *  Copyright (c) 2004 Szombathelyi György <gyurco@freemail.hu>
 *
 *  This program is free software; you can redistribute it and/or
 *  modify it under the terms of the GNU General Public
 *  License version 2 as published by the Free Software Foundation.
 *
 *  This library is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 *  Library General Public License for more details.
 *
 *  You should have received a copy of the GNU Library General Public License
 *  along with this library; see the file COPYING.LIB.  If not, write to
 *  the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
 *  Boston, MA 02110-1301, USA.
 **/

#include <tqstring.h>
#include <tqdir.h>

#include <kdebug.h>
#include <tdemessagebox.h>

#include "kglobal_.h"
#include "kgroupldap.h"
#include "misc.h"
#include "editDefaults.h"

#include "kgroupldap.moc"

KGroupLDAP::KGroupLDAP( KUserPrefsBase *cfg ) : KU::KGroups( cfg )
{
  mGroups.setAutoDelete(TRUE);

  if ( mCfg->ldapssl() )
    mUrl.setProtocol("ldaps");
  else
    mUrl.setProtocol("ldap");

  mUrl.setHost( mCfg->ldaphost() );
  mUrl.setPort( mCfg->ldapport() );
  mUrl.setDn( mCfg->ldapgroupbase() + "," + mCfg->ldapdn() );
  if ( !mCfg->ldapanon() ) {
    mUrl.setUser( mCfg->ldapuser() );
    mUrl.setPass( mCfg->ldappassword() );
  }
  mUrl.setFilter( mCfg->ldapgroupfilter() );

  if ( mCfg->ldaptls() ) mUrl.setExtension("x-tls","");
  if ( mCfg->ldapsasl() ) {
    mUrl.setExtension( "x-sasl", "" );
    mUrl.setExtension( "x-mech", mCfg->ldapsaslmech() );
  }

  mUrl.setScope(TDEABC::LDAPUrl::One);
  mUrl.setExtension("x-dir","base");

  caps = Cap_Passwd;
  if ( mCfg->ldapsam() ) {
    caps |= Cap_Samba;
    domsid = mCfg->samdomsid();
  }

  reload();
}

KGroupLDAP::~KGroupLDAP()
{
  mGroups.clear();
}

TQString KGroupLDAP::getRDN( KU::KGroup *group )
{
  switch ( mCfg->ldapgrouprdn() ) {
    case KUserPrefsBase::EnumLdapgrouprdn::cn:
      return "cn=" + group->getName();
    case KUserPrefsBase::EnumLdapgrouprdn::gidNumber:
      return "gidNumber=" + TQString::number( group->getGID() );
    default:
      return "";
  }
}

void KGroupLDAP::result( TDEIO::Job *job )
{
  delete mProg;
  mCancel = false;
  if ( job->error() ) {
    TQString errstr = job->errorString();
    if ( !errstr.isEmpty() ) {
      if ( ldif.isEmpty() )
        KMessageBox::error( 0, errstr );
      else
        KMessageBox::detailedError( 0, errstr, TQString::fromUtf8( ldif, ldif.size()-1 ) );
    }
    mOk = false;
  } else {
    mOk = true;
  }
}

void KGroupLDAP::data( TDEIO::Job*, const TQByteArray& data )
{
  if ( data.size() ) {
    mParser.setLDIF( data );
  } else {
    mParser.endLDIF();
  }

  TDEABC::LDIF::ParseVal ret;
  TQString name, val;
  TQByteArray value;
  do {
    ret = mParser.nextItem();
    switch ( ret ) {
      case TDEABC::LDIF::Item:
        name = mParser.attr().lower();
        value = mParser.val();
        val = TQString::fromUtf8( value, value.size() );
        if ( name == "objectclass" ) {
          if ( val.lower() == "sambagroupmapping" ) 
            mGroup->setCaps( KU::KGroup::Cap_Samba );
        } else if ( name == "gidnumber" )
          mGroup->setGID( val.toLong() );
        else if ( name == "cn" )
          mGroup->setName( val );
        else if ( name == "userpassword" )
          mGroup->setPwd( val );
        else if ( name == "memberuid" )
          mGroup->addUser( val );
        else if ( name == "sambasid" )
          mGroup->setSID( val );
        else if ( name == "sambagrouptype" )
          mGroup->setType( val.toInt() );
        else if ( name == "displayname" )
          mGroup->setDisplayName( val );
        else if ( name == "description" )
          mGroup->setDesc( val );
        break;
      case TDEABC::LDIF::EndEntry: {
        KU::KGroup newGroup;
        mGroups.append( new KU::KGroup( mGroup ) );
        mGroup->copy( &newGroup );
        if ( ( mGroups.count() & 7 ) == 7 ) {
          mProg->progressBar()->advance( mAdv );
          if ( mProg->progressBar()->progress() == 0 ) mAdv = 1;
          if ( mProg->progressBar()->progress() == mProg->progressBar()->totalSteps()-1 ) mAdv = -1;
        }
        break;
      }
      default:
        break;
    }
  } while ( ret != TDEABC::LDIF::MoreData );
}

bool KGroupLDAP::reload()
{
  kdDebug() << "KGroupLDAP::reload()" << endl;
  mGroup = new KU::KGroup();
  mParser.startParsing();

  mProg = new KProgressDialog( 0, "", "", i18n("Loading Groups From LDAP"), true );
  mProg->setAutoClose( false );
  mProg->progressBar()->setFormat( "" );
  mProg->progressBar()->setTotalSteps( 100 );
  mAdv = 1;
  mCancel = true;
  ldif = "";

  TDEIO::Job *job = TDEIO::get( mUrl, true, false );
  connect( job, TQ_SIGNAL( data( TDEIO::Job*, const TQByteArray& ) ),
    this, TQ_SLOT( data( TDEIO::Job*, const TQByteArray& ) ) );
  connect( job, TQ_SIGNAL( result( TDEIO::Job* ) ),
    this, TQ_SLOT( result( TDEIO::Job* ) ) );
  mProg->exec();
  if ( mCancel ) job->kill();

  delete mGroup;
  return( mOk );
}

bool KGroupLDAP::dbcommit()
{
  mAddSucc.clear();
  mDelSucc.clear();
  mModSucc.clear();
  mAdd.first();
  mDel.first();
  mAddGroup = 0; mDelGroup = 0; mGroup = 0;
  ldif = "";

  mProg = new KProgressDialog( 0, "", i18n("LDAP Operation"), "", true );
  TDEIO::Job *job = TDEIO::put( mUrl, -1, false, false, false );
  connect( job, TQ_SIGNAL( dataReq( TDEIO::Job*, TQByteArray& ) ),
    this, TQ_SLOT( putData( TDEIO::Job*, TQByteArray& ) ) );
  connect( job, TQ_SIGNAL( result( TDEIO::Job* ) ),
    this, TQ_SLOT( result( TDEIO::Job* ) ) );
  mProg->exec();
  return( mOk );
}

void KGroupLDAP::putData( TDEIO::Job*, TQByteArray& data )
{
  ModIt mit = mMod.begin();

  if ( mAddGroup ) {
    mAddSucc.append( mAddGroup );
    mAdd.remove();
    mAddGroup = 0;
  }
  if ( mDelGroup ) {
    mDelSucc.append( mDelGroup );
    mDel.remove();
    mDelGroup = 0;
  }
  if ( mGroup ) {
    mModSucc.insert( mGroup, mit.data() );
    mMod.remove( mit );
    mit = mMod.begin();
    mGroup = 0;
  }

  if ( (mAddGroup = mAdd.current()) ) {
    addData( mAddGroup );
    data = ldif;
  } else if ( mit != mMod.end() ) {
    mGroup = mit.key();
    modData( &(mit.data()) );
    data = ldif;
  } else if ( (mDelGroup = mDel.current()) ) {
    delData( mDelGroup );
    data = ldif;
  } else
    data.resize(0);
}

void KGroupLDAP::addData( KU::KGroup *group )
{
  ldif = "dn: " + getRDN( group ).utf8() + "," +
    mUrl.dn().utf8() + "\n" + "objectclass: posixGroup\n";

  ldif +=
    TDEABC::LDIF::assembleLine( "cn", group->getName() ) + "\n" +
    TDEABC::LDIF::assembleLine( "gidnumber", TQString::number(group->getGID()) ) + "\n" +
    TDEABC::LDIF::assembleLine( "userpassword", group->getPwd() ) + "\n";
  for ( uint i=0; i < group->count(); i++ ) {
    ldif += TDEABC::LDIF::assembleLine( "memberuid", group->user(i) ) + "\n";
  }
  if ( ( getCaps() & Cap_Samba ) && ( group->getCaps() & KU::KGroup::Cap_Samba ) ) {
    ldif += "objectclass: sambagroupmapping\n" +
      TDEABC::LDIF::assembleLine( "sambasid", group->getSID().getSID() ) + "\n" +
      TDEABC::LDIF::assembleLine( "displayname", group->getDisplayName() ) + "\n" +
      TDEABC::LDIF::assembleLine( "description", group->getDesc() ) + "\n" +
      TDEABC::LDIF::assembleLine( "sambagrouptype", TQString::number( group->getType() ) ) + "\n";
  }
  ldif += "\n\n";
  kdDebug() << "ldif: " << ldif << endl;
}

void KGroupLDAP::delData( KU::KGroup *group )
{
  ldif = "dn: " + getRDN( group ).utf8() + "," +
    mUrl.dn().utf8() + "\n" + "changetype: delete\n\n";
  kdDebug() << "ldif: " << ldif << endl;
}

void KGroupLDAP::modData( KU::KGroup *group )
{
  TQString oldrdn = getRDN( mGroup );
  TQString newrdn = getRDN( group );

  ldif = "";
  if ( oldrdn != newrdn ) {
    ldif = "dn: " + oldrdn.utf8() + "," + mUrl.dn().utf8() + "\n" +
      "changetype: modrdn\n" +
      "newrdn: " + newrdn.utf8() + "\n" +
      "deleteoldrdn: 1\n\n";      
  }

  ldif += "dn: " + newrdn.utf8() + "," + mUrl.dn().utf8() + "\n" +
    "changetype: modify\n" +
    "replace: objectclass\n" +
    "objectclass: posixgroup\n";
  if ( ( getCaps() & Cap_Samba ) && ( group->getCaps() & KU::KGroup::Cap_Samba ) ) {
    ldif += "objectclass: sambagroupmapping\n";
  }
  ldif +=
    "-\nreplace: cn\n" +
    TDEABC::LDIF::assembleLine( "cn", group->getName() ) +
    "\n-\nreplace: gidnumber\n" +
    TDEABC::LDIF::assembleLine( "gidnumber", TQString::number(group->getGID()) ) +
    "\n-\nreplace: userpassword\n" +
    TDEABC::LDIF::assembleLine( "userpassword", group->getPwd() ) +
    "\n-\nreplace: memberuid\n";
  for ( uint i=0; i < group->count(); i++ ) {
    ldif += TDEABC::LDIF::assembleLine( "memberuid", group->user(i)) + "\n";
  }
  if ( getCaps() & Cap_Samba ) {
    if ( group->getCaps() & KU::KGroup::Cap_Samba ) {
      ldif +=
        "-\nreplace: sambasid\n" +
        TDEABC::LDIF::assembleLine( "sambasid", group->getSID().getSID() ) +
        "\n-\nreplace: displayname\n" +
        TDEABC::LDIF::assembleLine( "displayname", group->getDisplayName() ) +
        "\n-\nreplace: description\n" +
        TDEABC::LDIF::assembleLine( "description", group->getDesc() ) +
        "\n-\nreplace: sambagrouptype\n" +
        TDEABC::LDIF::assembleLine( "sambagrouptype", TQString::number( group->getType() ) ) + "\n";
    } else {
      ldif += "-\nreplace: sambasid\n";
      ldif += "-\nreplace: displayname\n";
      ldif += "-\nreplace: description\n";
      ldif += "-\nreplace: sambagrouptype\n";
      ldif += "-\nreplace: sambasidlist\n";
    }
  }

  ldif += "-\n\n";
  kdDebug() << "ldif: " << ldif << endl;
}