import PasswordResetFormPost = require("../../../../src/server/lib/routes/password-reset/form/post");
import LdapClient = require("../../../../src/server/lib/LdapClient");
import AuthenticationSession = require("../../../../src/server/lib/AuthenticationSession");
import sinon = require("sinon");
import winston = require("winston");
import assert = require("assert");
import BluebirdPromise = require("bluebird");

import ExpressMock = require("../../mocks/express");
import { LdapClientMock } from "../../mocks/LdapClient";
import { UserDataStore } from "../../mocks/UserDataStore";
import ServerVariablesMock = require("../../mocks/ServerVariablesMock");

describe("test reset password route", function () {
  let req: ExpressMock.RequestMock;
  let res: ExpressMock.ResponseMock;
  let user_data_store: UserDataStore;
  let ldapClient: LdapClientMock;
  let configuration: any;
  let authSession: AuthenticationSession.AuthenticationSession;

  beforeEach(function () {
    req = {
      body: {
        userid: "user"
      },
      app: {
        get: sinon.stub()
      },
      session: {},
      headers: {
        host: "localhost"
      }
    };

    AuthenticationSession.reset(req as any);
    authSession = AuthenticationSession.get(req as any);
    authSession.userid = "user";
    authSession.email = "user@example.com";
    authSession.first_factor = true;
    authSession.second_factor = false;

    const options = {
      inMemoryOnly: true
    };

    const mocks = ServerVariablesMock.mock(req.app);
    user_data_store = UserDataStore();
    user_data_store.set_u2f_meta.returns(BluebirdPromise.resolve({}));
    user_data_store.get_u2f_meta.returns(BluebirdPromise.resolve({}));
    user_data_store.issue_identity_check_token.returns(BluebirdPromise.resolve({}));
    user_data_store.consume_identity_check_token.returns(BluebirdPromise.resolve({}));
    mocks.userDataStore = user_data_store;


    configuration = {
      ldap: {
        base_dn: "dc=example,dc=com",
        user_name_attribute: "cn"
      }
    };

    mocks.logger = winston;
    mocks.config = configuration;

    ldapClient = LdapClientMock();
    mocks.ldap = ldapClient;

    res = ExpressMock.ResponseMock();
  });

  describe("test reset password post", () => {
    it("should update the password and reset auth_session for reauthentication", function () {
      authSession.identity_check = {
        userid: "user",
        challenge: "reset-password"
      };
      req.body = {};
      req.body.password = "new-password";

      ldapClient.updatePassword.returns(BluebirdPromise.resolve());
      ldapClient.checkPassword.returns(BluebirdPromise.resolve());
      return PasswordResetFormPost.default(req as any, res as any)
        .then(function () {
          const authSession = AuthenticationSession.get(req as any);
          assert.equal(res.status.getCall(0).args[0], 204);
          assert.equal(authSession.first_factor, false);
          assert.equal(authSession.second_factor, false);
          return BluebirdPromise.resolve();
        });
    });

    it("should fail if identity_challenge does not exist", function (done) {
      authSession.identity_check = {
        userid: "user",
        challenge: undefined
      };
      res.send = sinon.spy(function () {
        assert.equal(res.status.getCall(0).args[0], 403);
        done();
      });
      PasswordResetFormPost.default(req as any, res as any);
    });

    it("should fail when ldap fails", function (done) {
      authSession.identity_check = {
        challenge: "reset-password",
        userid: "user"
      };
      req.body = {};
      req.body.password = "new-password";

      ldapClient.checkPassword.yields(undefined);
      ldapClient.updatePassword.returns(BluebirdPromise.reject("Internal error with LDAP"));
      res.send = sinon.spy(function () {
        assert.equal(res.status.getCall(0).args[0], 500);
        done();
      });
      PasswordResetFormPost.default(req as any, res as any);
    });
  });
});