package security;

import java.io.IOException;
import java.security.GeneralSecurityException;
import java.util.Arrays;
import java.util.List;

import org.springframework.http.HttpStatus;
import org.springframework.http.ResponseEntity;

import com.google.api.client.googleapis.auth.oauth2.GoogleIdToken;
import com.google.api.client.googleapis.auth.oauth2.GoogleIdTokenVerifier;
import com.google.api.client.googleapis.auth.oauth2.GoogleIdToken.Payload;
import com.google.api.client.http.HttpTransport;
import com.google.api.client.http.javanet.NetHttpTransport;
import com.google.api.client.json.jackson2.JacksonFactory;

import entities.security.UserInfo;
import exceptions.NonValidTokenException;

public class GoogleTokenValidator {

	private static final JacksonFactory jacksonFactory = new JacksonFactory();
	private static final HttpTransport transport = new NetHttpTransport();

	private static final List<String> clientIDs = Arrays.asList("1010962018903-glegmqudqtl1lub0150vacopbu06lgsg.apps.googleusercontent.com");
	
	private GoogleIdTokenVerifier verifier = null;
	
	
	public GoogleTokenValidator() {
		verifier = new GoogleIdTokenVerifier.Builder(transport, jacksonFactory)
			    .setAudience(clientIDs)
			    // Or, if multiple clients access the backend:
			    //.setAudience(Arrays.asList(CLIENT_ID_1, CLIENT_ID_2, CLIENT_ID_3))
			    .build();
	}
	
	
	public UserInfo validateToken(String token) throws NonValidTokenException {
		
		GoogleIdToken idToken = null;
		try {
			idToken = verifier.verify(token);
		}
		catch(GeneralSecurityException ex) {
			throw new NonValidTokenException("Token is not valid -> "+ex.getMessage());
		}
		catch(IOException ex) {
			throw new NonValidTokenException("Could not verify token -> "+ex.getMessage());
		}
		catch(IllegalArgumentException ex) {
			throw new NonValidTokenException("Could not verify token");
		}

		
		if (idToken != null) {
		  Payload payload = idToken.getPayload();
		  
		  UserInfo userInfo = new UserInfo(payload.getSubject(), payload.getEmail(), 
				  payload.getEmailVerified(), (String)payload.get("name"), (String)payload.get("picture"), 
				  (String)payload.get("locale"), (String)payload.get("family_name"), (String)payload.get("given_name"), "");
		  
//		  System.out.println(userInfo.toString());
		  
		  return userInfo;

		} else {
			throw new NonValidTokenException("Not a valid token");
		}
	}
	
	
	
	
	
}