#!/bin/python3
import os
import sys
import logging
import requests
import json
import argparse

from subject import main

logging.basicConfig(format='%(levelname)s\t- %(message)s')
logger = logging.getLogger()
logger.setLevel(logging.INFO)

state = main(sys.argv)

BASE_DIR = os.path.join(os.path.expanduser('~'), '.sio/')

#session file - role - value(permission or username)
def addPermission(args):
    parser = argparse.ArgumentParser()

    parser.add_argument("-k", '--key', nargs=1, help="Path to the key file")
    parser.add_argument("-r", '--repo', nargs=1, help="Address:Port of the repository")
    parser.add_argument("-v", '--verbose', help="Increase verbosity", action="store_true")

    parser.add_argument('session', nargs='?', default=None)
    parser.add_argument('role', nargs='?',default=None)
    parser.add_argument('value', nargs='?',default=None)

    args = parser.parse_args()

    #Check number of arguments
    if not args.session or not args.role or not args.value:
        logger.error("Need session file and role.")
        sys.exit(1)

    # Check for session file
    if not os.path.isfile(BASE_DIR + args.session):
        logger.error("File '" + args.session + "' not found.")
        sys.exit(1)

    # Get session file content
    with open(BASE_DIR + args.session, 'r') as f:
        args.session = json.load(f)


    isPerm = False; isUsername = False

    # query for permission
    if args.value in [
        'ROLE_ACL',
        'SUBJECT_NEW',
        'SUBJECT_DOWN',
        'SUBJECT_UP',
        'DOC_NEW',
        'ROLE_NEW',
        'ROLE_DOWN',
        'ROLE_UP',
        'ROLE_MOD'
    ]:
        isPerm = True

    if isPerm:
        try:
            req = requests.post(f'http://{state['REP_ADDRESS']}/role/' + args.role + '/perm/add/' + args.value,
                                headers={'Authorization': args.session['token']})
            req.raise_for_status()
        except requests.exceptions.RequestException as errex:
            logger.error("Failed to obtain response from server.")
            sys.exit(-1)

        logger.info("Permission added successfully to role.")
        sys.exit(0)
    else:
        try:
            req = requests.post(f'http://{state['REP_ADDRESS']}/role/' + args.role + '/user/add/' + args.value,
                                headers={'Authorization': args.session['token']})
            req.raise_for_status()
        except requests.exceptions.RequestException as errex:
            logger.error("Failed to obtain response from server.")
            sys.exit(-1)

        logger.info("User added successfully to role.")
        sys.exit(0)

if __name__ == '__main__':
    addPermission(sys.argv[1:])