package ru.ulstu.fc.user.service;

import java.io.IOException;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.security.core.Authentication;
import org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler;
import org.springframework.stereotype.Component;

import jakarta.servlet.ServletException;
import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse;
import jakarta.servlet.http.HttpSession;
import ru.ulstu.fc.config.Constants;

@Component
public class UserSessionLoginHandler extends SavedRequestAwareAuthenticationSuccessHandler {
    private final Logger log = LoggerFactory.getLogger(UserSessionLoginHandler.class);
    private final UserSessionService userSessionService;

    public UserSessionLoginHandler(UserSessionService userSessionService) {
        super();
        this.userSessionService = userSessionService;
    }

    @Override
    public void onAuthenticationSuccess(HttpServletRequest request,
                                        HttpServletResponse response,
                                        Authentication authentication) throws IOException, ServletException {
        super.onAuthenticationSuccess(request, response, authentication);
        final String login = authentication.getName();
        final String ipAddress = IpAddressResolver.getRemoteAddr(request);
        final String host = request.getRemoteHost();
        log.debug("Authentication Success for {}@{} ({})", login, ipAddress, host);
        HttpSession session = request.getSession(false);
        if (session != null) {
            final String sessionId = session.getId();
            userSessionService.createUserSession(sessionId, login, ipAddress, host);
            session.setAttribute(Constants.SESSION_ID_ATTR, sessionId);
            session.setMaxInactiveInterval(Constants.SESSION_TIMEOUT_SECONDS);
        }
    }
}