package commands

import (
	"context"
	"encoding/base64"
	"fmt"
	"os"
	"time"

	"github.com/atotto/clipboard"
	"github.com/pquerna/otp/totp"
	"github.com/spf13/cobra"
	"gopkg.in/AlecAivazis/survey.v1"

	"github.com/mitchell/selfpass/services/credentials/types"
	"github.com/mitchell/selfpass/sp/crypto"
	clitypes "github.com/mitchell/selfpass/sp/types"
)

func makeUpdate(repo clitypes.ConfigRepo, initClient credentialsClientInit) *cobra.Command {
	flags := credentialFlagSet{}.withCredFlags().withPasswordFlags()

	updateCmd := &cobra.Command{
		Use:   "update",
		Short: "Update a credential in Selfpass",
		Long: `Update a credential in Selfpass, and save it to the server after encrypting the
password.`,

		Run: func(_ *cobra.Command, args []string) {
			defer flags.resetValues()

			var (
				newpass bool
				otp     bool
				cleancb bool
				prompt  survey.Prompt
				ci      types.CredentialInput
			)

			masterpass, cfg, err := repo.OpenConfig()
			check(err)

			ctx, cancel := context.WithTimeout(context.Background(), time.Second*60)
			defer cancel()

			client := initClient(ctx)

			cred := selectCredential(client, flags.sourceHost, flags.primary)

			mdqs := []*survey.Question{
				{
					Name: "primary",
					Prompt: &survey.Input{
						Message: "Primary user key:",
						Default: cred.Primary,
					},
				},
				{
					Name: "sourceHost",
					Prompt: &survey.Input{
						Message: "Source host:",
						Default: cred.SourceHost,
					},
				},
				{
					Name: "loginURL",
					Prompt: &survey.Input{
						Message: "Login url:",
						Default: cred.LoginURL,
					},
				},
				{
					Name: "tag",
					Prompt: &survey.Input{
						Message: "Tag:",
						Default: cred.Tag,
					},
				},
			}
			cqs := []*survey.Question{
				{
					Name: "username",
					Prompt: &survey.Input{
						Message: "Username:",
						Default: cred.Username,
					},
				},
				{
					Name: "email",
					Prompt: &survey.Input{
						Message: "Email:",
						Default: cred.Email,
					},
				},
			}
			check(survey.Ask(mdqs, &ci.MetadataInput))
			check(survey.Ask(cqs, &ci))

			ci.Password = cred.Password
			ci.OTPSecret = cred.OTPSecret

			key := cfg.GetString(clitypes.KeyPrivateKey)
			keypass := crypto.GeneratePBKDF2Key([]byte(masterpass), []byte(key))

			prompt = &survey.Confirm{Message: "Do you want a new password?", Default: true}
			check(survey.AskOne(prompt, &newpass, nil))

			if newpass {
				var randpass bool
				prompt = &survey.Confirm{Message: "Do you want a random password?", Default: true}
				check(survey.AskOne(prompt, &randpass, nil))

				if randpass {
					ci.Password = crypto.GeneratePassword(int(flags.length), !flags.noNumbers, !flags.noSpecials)

					var copypass bool
					prompt = &survey.Confirm{Message: "Copy new pass to clipboard?", Default: true}
					check(survey.AskOne(prompt, &copypass, nil))

					if copypass {
						check(clipboard.WriteAll(ci.Password))
						fmt.Println("Wrote one time password to clipboard.")
					}
				} else {
					prompt := &survey.Password{Message: "Password: "}
					check(survey.AskOne(prompt, &ci.Password, nil))

					var cpass string
					prompt = &survey.Password{Message: "Confirm password: "}
					check(survey.AskOne(prompt, &cpass, nil))

					if ci.Password != cpass {
						fmt.Println("passwords didn't match")
						os.Exit(1)
					}
				}

				cipherpass, err := crypto.CBCEncrypt(keypass, []byte(ci.Password))
				check(err)

				ci.Password = base64.StdEncoding.EncodeToString(cipherpass)
			}

			prompt = &survey.Confirm{Message: "Do you want to set a new OTP/MFA secret?", Default: true}
			check(survey.AskOne(prompt, &otp, nil))

			if otp {
				var secret string
				prompt = &survey.Password{Message: "OTP secret:"}
				check(survey.AskOne(prompt, &secret, nil))

				ciphersecret, err := crypto.CBCEncrypt(keypass, []byte(secret))
				check(err)

				ci.OTPSecret = base64.StdEncoding.EncodeToString(ciphersecret)

				var copyotp bool
				prompt = &survey.Confirm{Message: "Copy new OTP to clipboard?", Default: true}
				check(survey.AskOne(prompt, &copyotp, nil))

				if copyotp {
					otp, err := totp.GenerateCode(secret, time.Now())
					check(err)

					check(clipboard.WriteAll(otp))
					fmt.Println("Wrote one time password to clipboard.")

					prompt = &survey.Confirm{Message: "Anotha one?", Default: true}
					check(survey.AskOne(prompt, &copyotp, nil))

					if copyotp {
						otp, err := totp.GenerateCode(secret, time.Now().Add(time.Second*30))
						check(err)

						check(clipboard.WriteAll(otp))
						fmt.Println("Wrote one time password to clipboard.")
					}
				}
			}

			ctx, cancel = context.WithTimeout(context.Background(), time.Second*25)
			defer cancel()

			c, err := initClient(ctx).Update(ctx, cred.ID, ci)
			check(err)

			fmt.Println(c)

			prompt = &survey.Confirm{Message: "Do you want to clear the clipboard?", Default: true}
			check(survey.AskOne(prompt, &cleancb, nil))

			if cleancb {
				check(clipboard.WriteAll(" "))
				fmt.Println("Clipboard cleared.")
			}
		},
	}

	flags.register(updateCmd)

	return updateCmd
}