require 'ezcrypto'
require 'imapmailbox'

class LoginController < ApplicationController

  def index
    if not(logged_user.nil?)
      redirect_to :controller =>"webmail", :action=>"index"
    else
      @login_user = Customer.new
    end
  end

  def authenticate
    if user = auth(params['login_user']["email"], params['login_user']["password"])
      session["user"] = user.id
      if CDF::CONFIG[:crypt_session_pass]
        session["wmp"] = EzCrypto::Key.encrypt_with_password(CDF::CONFIG[:encryption_password], CDF::CONFIG[:encryption_salt], params['login_user']["password"])
      else
        # dont use crypt
        session["wmp"] = params['login_user']["password"]
      end
      if session["return_to"]
        redirect_to(session["return_to"])
        session["return_to"] = nil
      else
        redirect_to :action=>"index"
      end
    else
		logger.debug "*** Not logged"
      @login_user = Customer.new
      flash["error"] = t :wrong_email_or_password
      redirect_to :action => "index"
    end
  end

  def logout
    reset_session
    flash["status"] = t(:user_logged_out)
    redirect_to :action => "index"
  end

  protected

  def need_subdomain?() true end
  def secure_user?() false end

  private

  def auth(email, password)
    mailbox = IMAPMailbox.new(Rails.logger)
    logger.info "*** mailbox #{mailbox.inspect}"
    begin
		mailbox.connect(email, password)
    rescue Exception => exc
		logger.debug "*** auth/Mailbox Object => #{exc.message}"
		return nil
    end

    mailbox.disconnect
    mailbox = nil
    if user = Customer.find_by_email(email)
      return user
    else
      # create record in database
      user = Customer.create("email"=>email)
      MailPref.create('customer_id' => user.id)
      return user
    end
  end
end