/*

 * AJAX-based intelligent login interface

 */

/*

 * FRONTEND

 */

/**

 * Performs a logon as a regular member.

 */

window.ajaxLogonToMember = function()

{

  // IE <6 pseudo-compatibility

  if ( KILL_SWITCH )

    return true;

  if ( auth_level >= USER_LEVEL_MEMBER )

    return true;

  ajaxLoginInit(function(k)

    {

      window.location.reload();

    }, USER_LEVEL_MEMBER);

}

/**

 * Authenticates to the highest level the current user is allowed to go to.

 */

window.ajaxLogonToElev = function()

{

  if ( auth_level == user_level )

    return true;

  ajaxLoginInit(function(k)

    {

      ENANO_SID = k;

      var url = String(' ' + window.location).substr(1);

      url = append_sid(url);

      window.location = url;

    }, user_level);

}

/*

 * BACKEND

 */

/**

 * Holding object for various AJAX authentication information.

 * @var object

 */

var logindata = {};

/**

 * Path to the image used to indicate loading progress

 * @var string

 */

if ( !ajax_login_loadimg_path )

  var ajax_login_loadimg_path = false;

if ( !ajax_login_successimg_path )

  var ajax_login_successimg_path = false;

/**

 * Status variables

 * @var int

 */

var AJAX_STATUS_LOADING_KEY = 1;

var AJAX_STATUS_GENERATING_KEY = 2;

var AJAX_STATUS_LOGGING_IN = 3;

var AJAX_STATUS_SUCCESS = 4;

var AJAX_STATUS_DESTROY = 65535;

/**

 * State constants

 * @var int

 */

var AJAX_STATE_EARLY_INIT = 1;

var AJAX_STATE_LOADING_KEY = 2;

/**

 * Performs the AJAX request to get an encryption key and from there spawns the login form.

 * @param function The function that will be called once authentication completes successfully.

 * @param int The security level to authenticate at - see http://docs.enanocms.org/Help:Appendix_B

 */

window.ajaxLoginInit = function(call_on_finish, user_level)

{

  load_component('messagebox');

  load_component('flyin');

  load_component('SpryEffects');

  load_component('l10n');

  load_component('crypto');

  logindata = {};

  var title = ( user_level > USER_LEVEL_MEMBER ) ? $lang.get('user_login_ajax_prompt_title_elev') : $lang.get('user_login_ajax_prompt_title');

  logindata.mb_object = new MessageBox(MB_OKCANCEL | MB_ICONLOCK, title, '');

  logindata.mb_object.onclick['Cancel'] = function()

  {

    // Hide the error message and captcha

    if ( document.getElementById('ajax_login_error_box') )

    {

      document.getElementById('ajax_login_error_box').parentNode.removeChild(document.getElementById('ajax_login_error_box'));

    }

    if ( document.getElementById('autoCaptcha') )

    {

      var to = fly_out_top(document.getElementById('autoCaptcha'), false, true);

      setTimeout(function() {

          var d = document.getElementById('autoCaptcha');

          d.parentNode.removeChild(d);

        }, to);

    }

    // Ask the server to clean our key

    ajaxLoginPerformRequest({

        mode: 'clean_key',

        key_aes: logindata.key_aes,

        key_dh: logindata.key_dh

    });

  };

  logindata.mb_object.onbeforeclick['OK'] = function()

  {

    ajaxLoginSubmitForm();

    return true;

  }

  // Fetch the inner content area

  logindata.mb_inner = document.getElementById('messageBox').getElementsByTagName('div')[0];

  // Initialize state

  logindata.showing_status = false;

  logindata.user_level = user_level;

  logindata.successfunc = call_on_finish;

  // Build the "loading" window

  ajaxLoginSetStatus(AJAX_STATUS_LOADING_KEY);

  // Request the key

  ajaxLoginPerformRequest({ mode: 'getkey' });

}

/**

 * For compatibility only.

 */

window.ajaxLogonInit = function(call_on_finish, user_level)

{

  return ajaxLoginInit(call_on_finish, user_level);

}

/**

 * Sets the contents of the AJAX login window to the appropriate status message.

 * @param int One of AJAX_STATUS_*

 */

window.ajaxLoginSetStatus = function(status)

{

  if ( !logindata.mb_inner )

    return false;

  if ( logindata.showing_status )

  {

    var div = document.getElementById('ajax_login_status');

    if ( div )

      logindata.mb_inner.removeChild(div);

  }

  switch(status)

  {

    case AJAX_STATUS_LOADING_KEY:

      // Create the status div

      var div = document.createElement('div');

      div.id = 'ajax_login_status';

      div.style.marginTop = '10px';

      div.style.textAlign = 'center';

      // The circly ball ajaxy image + status message

      var status_msg = $lang.get('user_login_ajax_fetching_key');

      // Insert the status message

      div.appendChild(document.createTextNode(status_msg));

      // Append a br or two to space things properly

      div.appendChild(document.createElement('br'));

      div.appendChild(document.createElement('br'));

      var img = document.createElement('img');

      img.src = ( ajax_login_loadimg_path ) ? ajax_login_loadimg_path : scriptPath + '/images/loading-big.gif';

      div.appendChild(img);

      // Another coupla brs

      div.appendChild(document.createElement('br'));

      div.appendChild(document.createElement('br'));

      // The link to the full login form

      var small = document.createElement('small');

      small.innerHTML = $lang.get('user_login_ajax_link_fullform', { link_full_form: makeUrlNS('Special', 'Login/' + title) });

      div.appendChild(small);

      // Insert the entire message into the login window

      logindata.mb_inner.innerHTML = '';

      logindata.mb_inner.appendChild(div);

      break;

    case AJAX_STATUS_GENERATING_KEY:

      // Create the status div

      var div = document.createElement('div');

      div.id = 'ajax_login_status';

      div.style.marginTop = '10px';

      div.style.textAlign = 'center';

      // The circly ball ajaxy image + status message

      var status_msg = $lang.get('user_login_ajax_generating_key');

      // Insert the status message

      div.appendChild(document.createTextNode(status_msg));

      // Append a br or two to space things properly

      div.appendChild(document.createElement('br'));

      div.appendChild(document.createElement('br'));

      var img = document.createElement('img');

      img.src = ( ajax_login_loadimg_path ) ? ajax_login_loadimg_path : scriptPath + '/images/loading-big.gif';

      div.appendChild(img);

      // Another coupla brs

      div.appendChild(document.createElement('br'));

      div.appendChild(document.createElement('br'));

      // The link to the full login form

      var small = document.createElement('small');

      small.innerHTML = $lang.get('user_login_ajax_link_fullform_dh', { link_full_form: makeUrlNS('Special', 'Login/' + title) });

      div.appendChild(small);

      // Insert the entire message into the login window

      logindata.mb_inner.innerHTML = '';

      logindata.mb_inner.appendChild(div);

      break;

    case AJAX_STATUS_LOGGING_IN:

      // Create the status div

      var div = document.createElement('div');

      div.id = 'ajax_login_status';

      div.style.marginTop = '10px';

      div.style.textAlign = 'center';

      // The circly ball ajaxy image + status message

      var status_msg = $lang.get('user_login_ajax_loggingin');

      // Insert the status message

      div.appendChild(document.createTextNode(status_msg));

      // Append a br or two to space things properly

      div.appendChild(document.createElement('br'));

      div.appendChild(document.createElement('br'));

      var img = document.createElement('img');

      img.src = ( ajax_login_loadimg_path ) ? ajax_login_loadimg_path : scriptPath + '/images/loading-big.gif';

      div.appendChild(img);

      // Insert the entire message into the login window

      logindata.mb_inner.innerHTML = '';

      logindata.mb_inner.appendChild(div);

      break;

    case AJAX_STATUS_SUCCESS:

      // Create the status div

      var div = document.createElement('div');

      div.id = 'ajax_login_status';

      div.style.marginTop = '10px';

      div.style.textAlign = 'center';

      // The circly ball ajaxy image + status message

      var status_msg = $lang.get('user_login_success_short');

      // Insert the status message

      div.appendChild(document.createTextNode(status_msg));

      // Append a br or two to space things properly

      div.appendChild(document.createElement('br'));

      div.appendChild(document.createElement('br'));

      var img = document.createElement('img');

      img.src = ( ajax_login_successimg_path ) ? ajax_login_successimg_path : scriptPath + '/images/check.png';

      div.appendChild(img);

      // Insert the entire message into the login window

      logindata.mb_inner.innerHTML = '';

      logindata.mb_inner.appendChild(div);

    case AJAX_STATUS_DESTROY:

    case null:

    case undefined:

      logindata.showing_status = false;

      return null;

      break;

  }

  logindata.showing_status = true;

}

/**

 * Performs an AJAX logon request to the server and calls ajaxLoginProcessResponse() on the result.

 * @param object JSON packet to send

 */

window.ajaxLoginPerformRequest = function(json)

{

  json = toJSONString(json);

  json = ajaxEscape(json);

  ajaxPost(makeUrlNS('Special', 'Login/action.json'), 'r=' + json, function()

    {

      if ( ajax.readyState == 4 && ajax.status == 200 )

      {

        // parse response

        var response = String(ajax.responseText + '');

        if ( response.substr(0, 1) != '{' )

        {

          handle_invalid_json(response);

          return false;

        }

        response = parseJSON(response);

        ajaxLoginProcessResponse(response);

      }

    }, true);

}

/**

 * Processes a response from the login server

 * @param object JSON response

 */

window.ajaxLoginProcessResponse = function(response)

{

  // Did the server send a plaintext error?

  if ( response.mode == 'error' )

  {

    logindata.mb_object.destroy();

    var error_msg = $lang.get('user_' + ( response.error.toLowerCase() ));

    new MessageBox(MB_ICONSTOP | MB_OK, $lang.get('user_err_login_generic_title'), error_msg);

    return false;

  }

  // Main mode switch

  switch ( response.mode )

  {

    case 'build_box':

      // Rid ourselves of any loading windows

      ajaxLoginSetStatus(AJAX_STATUS_DESTROY);

      // The server wants us to build the login form, all the information is there

      ajaxLoginBuildForm(response);

      break;

    case 'login_success':

      ajaxLoginSetStatus(AJAX_STATUS_SUCCESS);

      logindata.successfunc(response.key);

      break;

    case 'login_failure':

      // Rid ourselves of any loading windows

      ajaxLoginSetStatus(AJAX_STATUS_DESTROY);

      document.getElementById('messageBox').style.backgroundColor = '#C0C0C0';

      var mb_parent = document.getElementById('messageBox').parentNode;

      new Spry.Effect.Shake(mb_parent, {duration: 1500}).start();

      setTimeout(function()

        {

          document.getElementById('messageBox').style.backgroundColor = '#FFF';

          ajaxLoginBuildForm(response.respawn_info);

          ajaxLoginShowFriendlyError(response);

        }, 2500);

      break;

    case 'login_success_reset':

      var conf = confirm($lang.get('user_login_ajax_msg_used_temp_pass'));

      if ( conf )

      {

        var url = makeUrlNS('Special', 'PasswordReset/stage2/' + response.user_id + '/' + response.temp_password);

        window.location = url;

      }

      else

      {

        // treat as a failure

        ajaxLoginSetStatus(AJAX_STATUS_DESTROY);

        document.getElementById('messageBox').style.backgroundColor = '#C0C0C0';

        var mb_parent = document.getElementById('messageBox').parentNode;

        new Spry.Effect.Shake(mb_parent, {duration: 1500}).start();

        setTimeout(function()

          {

            document.getElementById('messageBox').style.backgroundColor = '#FFF';

            ajaxLoginBuildForm(response.respawn_info);

            // don't show an error here, just silently respawn

          }, 2500);

      }

      break;

    case 'noop':

      break;

  }

}

/*

 * RESPONSE HANDLERS

 */

/**

 * Builds the login form.

 * @param object Metadata to build off of

 */

window.ajaxLoginBuildForm = function(data)