package org.openslx.imagemaster.session;

import org.apache.log4j.Logger;
import org.openslx.imagemaster.db.DbUser;
import org.openslx.imagemaster.db.LdapUser;
import org.openslx.imagemaster.thrift.iface.AuthenticationError;
import org.openslx.imagemaster.thrift.iface.AuthenticationException;


public class Authenticator
{
	private static Logger log = Logger.getLogger( Authenticator.class );

	/**
	 * Authenticate the user against whatever backend
	 * @param username
	 * @param password
	 * @return
	 * @throws AuthenticationException
	 */
	public static User authenticate( String username, String password ) throws AuthenticationException
	{
//		DbUser user = DbUser.forLogin( username );
//		if ( user == null || !Sha512Crypt.verifyPassword( password, user.password ) ) {
//			log.debug( "Login failed: " + username );
//			throw new AuthenticationException( AuthenticationError.INVALID_CREDENTIALS, "Invalid username or password!" );
//		}
//		log.debug( "Login successful: " + username );
		
		LdapUser user = LdapUser.forLogin( username, password ); // throws exception if credentials are invalid
		if (user == null) {
			log.debug( "Login failed: " + username);
			throw new AuthenticationException( AuthenticationError.INVALID_CREDENTIALS, "Invalid username or password!" );
		}
		log.debug( "Login succesful: " + username );
		
		// if successfull: update/insert into db
		DbUser.insertOrUpdate(user);
		
		return user;
	}
	//
}