package main

import (
	"flag"
	"fmt"
	"log"
	"net/http"

	"github.com/casbin/casbin/v2"

	"git.ofmax.li/go-git-server/internal/authz"
	"git.ofmax.li/go-git-server/internal/git"
)

var (
	reposDir       = flag.String("r", "./repos", "Directory containing git repositories")
	backendCommand = flag.String("c", "git http-backend", "CGI binary to execute")
	addr           = flag.String("l", ":8080", "Address/port to listen on")
	newToken       = flag.Bool("t", false, "make a new token")
)

func main() {
	// TODO this should be configurable
	enf, err := casbin.NewEnforcer("./auth_model.ini", "./policy.csv")
	if err != nil {
		log.Fatalf("Couldn't load the enforcer encountered the following error: %s", err)
	}
	flag.Parse()
	if *newToken {
		token, hash, err := authz.GenerateNewToken()
		if err != nil {
			log.Fatal(err)
		}
		fmt.Printf("token: %s\nhash: %s\n", token, hash)
		return
	}
	tokens := authz.NewTokenMap()
	err = tokens.LoadTokensFromFile("./tokens.csv")
	if err != nil {
		log.Fatal(err)
	}
	router := http.NewServeMux()
	// TODO we don't want to use a global
	// de-reference args
	router.Handle("/", git.GitHttpBackendHandler(*reposDir, *backendCommand))
	mux := authz.Authentication(tokens, authz.Authorization(enf, router))
	log.Fatal(http.ListenAndServe(":8080", mux))
}