# This class is based on
# https://github.com/gitlabhq/gitlabhq/blob/15c0e58a49d623a0f8747e1d7e74364324eeb79f/app/models/key.rb

class SshKey < ActiveRecord::Base
  SHELL_KEY_COMMAND = "sudo -i -u #{APP_CONFIG['shell_user']} ~#{APP_CONFIG['shell_user']}/gitlab-shell/bin/gitlab-keys"

  belongs_to :user
  attr_accessible :key, :name

  before_validation lambda { self.key = key.strip if key.present? }
  before_validation :set_fingerprint

  validates :name, :length => {:maximum => 255}
  validates :key, :length => {:maximum => 5000}, format: { :with => /ssh-.{3} / } # Public key?
  validates :fingerprint, uniqueness: true, :presence => { :message => I18n.t('activerecord.errors.ssh_key.wrong_key') }

  after_create :add_key
  before_destroy :remove_key

  protected

  def set_fingerprint
    return false unless key

    file = Tempfile.new('key_file', "#{APP_CONFIG['root_path']}/tmp")
    filename = file.path
    begin
      file.puts key
      file.rewind
      fingerprint_output = `ssh-keygen -lf #{file.path} 2>&1` # Catch stderr.
      exitstatus = $?.exitstatus
    ensure
      file.close
      file.unlink # deletes the temp file
    end
    if exitstatus != 0
      self.fingerprint = nil
    else
      self.fingerprint = fingerprint_output.split.try :[], 1
      if name.blank?
        s = fingerprint_output.split.try :[], 2
        if filename == s # no identificator
          start = key =~ /ssh-.{3} /
          self.name = key[start..start+26] # taken first 26 characters
        else
          self.name = s
        end
      end
    end
  end

  def key_id
    "key-#{id}"
  end

  def add_key
    system "#{SHELL_KEY_COMMAND} add-key #{key_id} \"#{key}\"" # Safety?
  end

  def remove_key
    system "#{SHELL_KEY_COMMAND} rm-key #{key_id}"# \"#{key}\""
  end

end