class Api::V1::RepositoriesController < Api::V1::BaseController
  respond_to :csv, only: :packages

  before_action :authenticate_user!
  skip_before_action :authenticate_user!, only: [:show, :projects] if APP_CONFIG['anonymous_access']
  before_action :load_repository

  def show
  end

  def projects
    @projects = @repository.projects.recent.paginate(paginate_params)
  end

  def update
    update_subject @repository
  end

  def add_member
    add_member_to_subject @repository
  end

  def remove_member
    remove_member_from_subject @repository
  end

  def destroy
    destroy_subject @repository
  end

  def key_pair
  end

  # Only one request per 15 minutes for each platform
  def packages
    key, now = [@repository.platform.id, :repository_packages], Time.zone.now
    last_request = Rails.cache.read(key)
    if last_request.present? && last_request + 15.minutes > now
      raise Pundit::NotAuthorizedError
    else

      Rails.cache.write(key, now, expires_at: 15.minutes)
      respond_to do |format|
        format.csv do
          set_csv_file_headers :packages
          set_streaming_headers

          response.status = 200

          # setting the body to an enumerator, rails will iterate this enumerator
          self.response_body = Enumerator.new do |y|
            y << Api::V1::RepositoryPackagePresenter.csv_header.to_s
            BuildList::Package.by_repository(@repository) do |package|
              y << Api::V1::RepositoryPackagePresenter.new(package).to_csv_row.to_s
            end
          end

        end
      end

    end
  end

  def add_repo_lock_file
    @repository.add_repo_lock_file
    render_json_response @repository, "'.repo.lock' file has been added to repository successfully"
  end

  def remove_repo_lock_file
    @repository.remove_repo_lock_file
    render_json_response @repository, "'.repo.lock' file has been removed from repository successfully"
  end

  def add_project
    if project = Project.where(id: params[:project_id]).first
      if policy(project).read?
        begin
          @repository.projects << project
          render_json_response @repository, "Project '#{project.id}' has been added to repository successfully"
        rescue ActiveRecord::RecordInvalid
          render_validation_error @repository, t('flash.repository.project_not_added')
        end
      else
        render_validation_error @repository, 'You have no access to read this project'
      end
    else
      render_validation_error @repository, "Project has not been added to repository"
    end
  end

  def remove_project
    project_id = params[:project_id]
    ProjectToRepository.where(project_id: project_id, repository_id: @repository.id).destroy_all
    render_json_response @repository, "Project '#{project_id}' has been removed from repository successfully"
  end

  def signatures
    key_pair = @repository.key_pair
    key_pair.destroy if key_pair
    key_pair = @repository.build_key_pair subject_params(Repository, KeyPair)
    key_pair.user_id = current_user.id
    if key_pair.save
      render_json_response @repository, 'Signatures have been updated for repository successfully'
    else
      render_json_response @repository, error_message(key_pair, 'Signatures have not been updated for repository'), 422
    end
  end

  private

  # Private: before_action hook which loads Repository.
  def load_repository
    authorize @repository = Repository.find(params[:id])
  end

end