@namespace Oqtane.Modules.Admin.Login
@inherits ModuleBase
@inject NavigationManager NavigationManager
@inject IUserService UserService
@inject IServiceProvider ServiceProvider
@inject SiteState SiteState
@inject IStringLocalizer<Index> Localizer
@inject IStringLocalizer<SharedResources> SharedLocalizer

<AuthorizeView Roles="@RoleNames.Registered">
    <Authorizing>
        <text>...</text>
    </Authorizing>
    <Authorized>
		<div>@Localizer["Info.SignedIn"]</div>
    </Authorized>
    <NotAuthorized>
		@if (!twofactor)
		{
			<form @ref="login" class="@(validated ? "was-validated" : "needs-validation")" novalidate>
				<div class="container Oqtane-Modules-Admin-Login" @onkeypress="@(e => KeyPressed(e))">
					<div class="form-group">
						<Label Class="control-label" For="username" HelpText="Please enter your Username" ResourceKey="Username">Username:</Label>
						<input id="username" type="text" @ref="username" class="form-control input" placeholder="@Localizer["Username.Placeholder"]" @bind="@_username" required />
					</div>
					<div class="form-group mt-1">
						<Label Class="control-label" For="password" HelpText="Please enter your Password" ResourceKey="Password">Password:</Label>
						<input id="password" type="password" name="Password" class="form-control input" placeholder="@Localizer["Password.Placeholder"]" @bind="@_password" required />
					</div>
					<div class="form-group mt-1">
						<div class="form-check">
							<input id="remember" type="checkbox" class="form-check-input" @bind="@_remember" />
							<Label Class="control-label" For="remember" HelpText="Specify if you would like to be signed back in automatically the next time you visit this site" ResourceKey="Remember">Remember Me?</Label>
						</div>
					</div>
					<button type="button" class="btn btn-primary" @onclick="Login">@SharedLocalizer["Login"]</button>
					<button type="button" class="btn btn-secondary" @onclick="Cancel">@SharedLocalizer["Cancel"]</button>
					<br /><br />
					<button type="button" class="btn btn-secondary" @onclick="Forgot">@Localizer["ForgotPassword"]</button>
				</div>
			</form>
		}
		else
		{
			<form @ref="login" class="@(validated ? "was-validated" : "needs-validation")" novalidate>
				<div class="container Oqtane-Modules-Admin-Login">
					<div class="form-group">
						<Label Class="control-label" For="code" HelpText="Please enter the secure verification code which was sent to you by email" ResourceKey="Code">Verification Code:</Label>
						<input id="code" class="form-control input" @bind="@_code" placeholder="@Localizer["Code.Placeholder"]" maxlength="6" required />
					</div>
					<br />
					<button type="button" class="btn btn-primary" @onclick="Login">@SharedLocalizer["Login"]</button>
					<button type="button" class="btn btn-secondary" @onclick="Reset">@SharedLocalizer["Cancel"]</button>
				</div>
			</form>
		}
	</NotAuthorized>
</AuthorizeView>

@code {
	private ElementReference login;
	private bool validated = false;
	private bool twofactor = false;
	private string _username = string.Empty;
	private ElementReference username;
	private string _password = string.Empty;
	private bool _remember = false;
	private string _code = string.Empty;

	private string _returnUrl = string.Empty;

	public override SecurityAccessLevel SecurityAccessLevel => SecurityAccessLevel.Anonymous;

	public override List<Resource> Resources => new List<Resource>()
    {
        new Resource { ResourceType = ResourceType.Stylesheet, Url = ModulePath() + "Module.css" }
    };

	protected override async Task OnInitializedAsync()
	{
		if (PageState.QueryString.ContainsKey("returnurl"))
		{
			_returnUrl = PageState.QueryString["returnurl"];
		}

		if (PageState.QueryString.ContainsKey("name"))
		{
			_username = PageState.QueryString["name"];
		}

		if (PageState.QueryString.ContainsKey("token"))
		{
			var user = new User();
			user.SiteId = PageState.Site.SiteId;
			user.Username = _username;
			user = await UserService.VerifyEmailAsync(user, PageState.QueryString["token"]);

			if (user != null)
			{
				await logger.LogInformation(LogFunction.Security, "Email Verified For For Username {Username}", _username);
				AddModuleMessage(Localizer["Success.Account.Verified"], MessageType.Info);						
			}
			else
			{
				await logger.LogError(LogFunction.Security, "Email Verification Failed For Username {Username}", _username);
				AddModuleMessage(Localizer["Message.Account.NotVerfied"], MessageType.Warning);						
			}
		}
	}

	protected override async Task OnAfterRenderAsync(bool firstRender)
	{
		if (firstRender && PageState.User == null)
		{
			await username.FocusAsync();
		}
	}

	private async Task Login()
	{
		validated = true;
		var interop = new Interop(JSRuntime);
		if (await interop.FormValid(login))
		{
			var user = new User { SiteId = PageState.Site.SiteId, Username = _username, Password = _password};

			if (!twofactor)
			{
				user = await UserService.LoginUserAsync(user, false, false);
			}
			else
			{
				user = await UserService.VerifyTwoFactorAsync(user, _code);
			}

			if (user.IsAuthenticated)
			{
				await logger.LogInformation(LogFunction.Security, "Login Successful For Username {Username}", _username);

				if (PageState.Runtime == Oqtane.Shared.Runtime.Server)
				{
					// server-side Blazor needs to post to the Login page so that the cookies are set correctly
					var fields = new { __RequestVerificationToken = SiteState.AntiForgeryToken, username = _username, password = _password, remember = _remember, returnurl = _returnUrl };
					string url = Utilities.TenantUrl(PageState.Alias, "/pages/login/");
					await interop.SubmitForm(url, fields);
				}
				else
				{
					var authstateprovider = (IdentityAuthenticationStateProvider)ServiceProvider.GetService(typeof(IdentityAuthenticationStateProvider));
					authstateprovider.NotifyAuthenticationChanged();
					NavigationManager.NavigateTo(NavigateUrl(_returnUrl, true));
				}
			}
			else
			{
				if (user.TwoFactorRequired)
				{
					twofactor = true;
					validated = false;
					AddModuleMessage(Localizer["Message.TwoFactor"], MessageType.Info);
				}
				else
				{
					if (!twofactor)
					{
						await logger.LogInformation(LogFunction.Security, "Login Failed For Username {Username}", _username);
						AddModuleMessage(Localizer["Error.Login.Fail"], MessageType.Error);						
					}
					else
					{
						await logger.LogInformation(LogFunction.Security, "Two Factor Verification Failed For Username {Username}", _username);
						AddModuleMessage(Localizer["Error.TwoFactor.Fail"], MessageType.Error);						
					}
				}
			}
		}
		else
		{
			AddModuleMessage(Localizer["Message.Required.UserInfo"], MessageType.Warning);
		}
	}

	private void Cancel()
	{
		NavigationManager.NavigateTo(_returnUrl);
	}

	private async Task Forgot()
	{
		if (_username != string.Empty)
		{
			var user = await UserService.GetUserAsync(_username, PageState.Site.SiteId);
			if (user != null)
			{
				await UserService.ForgotPasswordAsync(user);
				await logger.LogInformation(LogFunction.Security, "Password Reset Notification Sent For Username {Username}", _username);
				AddModuleMessage(Localizer["Message.ForgotUser"], MessageType.Info);
			}
			else
			{
				AddModuleMessage(Localizer["Message.UserDoesNotExist"], MessageType.Warning);
			}
		}
		else
		{
			AddModuleMessage(Localizer["Message.ForgotPassword"], MessageType.Info);
		}

		StateHasChanged();
	}

	private void Reset()
	{
		twofactor = false;
		_username = "";
		_password = "";
		ClearModuleMessage();
		StateHasChanged();
	}

    private async Task KeyPressed(KeyboardEventArgs e)
    {
        if (e.Code == "Enter" || e.Code == "NumpadEnter")
        {
            await Login();
        }
    }
}