from functools import wraps
from flask import abort, request, session, make_response

import json
import traceback

import utils

class WebException(Exception): pass
response_header = { "Content-Type": "application/json; charset=utf-8" }

def api_wrapper(f):
	@wraps(f)
	def wrapper(*args, **kwds):
		if request.method == "POST":
			token = session.pop("csrf_token")
			if not token or token != request.form.get("csrf_token"):
				return make_response(json.dumps({ "success": 0, "message": "Token has been tampered with." }), 403, response_header)

		web_result = {}
		response = 200
		try:
			web_result = f(*args, **kwds)
		except WebException as error:
			response = 200
			web_result = { "success": 0, "message": str(error) }
		except Exception as error:
			response = 200
			traceback.print_exc()
			web_result = { "success": 0, "message": "Something went wrong! Please notify us about this immediately.", "error": [ str(error), traceback.format_exc() ] }
		result = (json.dumps(web_result), response, response_header)

		# Setting CSRF token
		if "token" not in session:
			token = utils.generate_string()
			response = make_response(result)
			response.set_cookie("csrf_token", token)
			session["csrf_token"] = token
		
		return response
	return wrapper

import user # Must go below api_wrapper to prevent import loops

def login_required(f):
	@wraps(f)
	def decorated_function(*args, **kwargs):
		if not user.is_logged_in():
			return { "success": 0, "message": "Not logged in." }
		return f(*args, **kwargs)
	return decorated_function

def admins_only(f):
	@wraps(f)
	def decorated_function(*args, **kwargs):
		if not user.is_admin():
			return { "success": 0, "message": "Not authorized." }
		return f(*args, **kwargs)
	return decorated_function