from http import HTTPMethod, HTTPStatus

from layercake.dynamodb import DynamoDBPersistenceLayer

from routes.authentication import new_session

from ..conftest import HttpApiProxy, LambdaContext

USER_ID = '357db1c5-7442-4075-98a3-fbe5c938a419'


def test_authorize(
    app,
    seeds,
    dynamodb_persistence_layer: DynamoDBPersistenceLayer,
    http_api_proxy: HttpApiProxy,
    lambda_context: LambdaContext,
):
    session = new_session(USER_ID)

    r = app.lambda_handler(
        http_api_proxy(
            raw_path='/authorize',
            method=HTTPMethod.GET,
            query_string_parameters={
                'response_type': 'code',
                'client_id': 'd72d4005-1fa7-4430-9754-80d5e2487bb6',
                'redirect_uri': 'https://localhost/callback',
                'scope': 'openid profile email offline_access apps:admin',
                'nonce': '123',
                'state': '456',
            },
            cookies=[
                f'SID={session}; HttpOnly; Secure',
            ],
        ),
        lambda_context,
    )

    print(r)

    # assert 'Location' in r['headers']

    # r = dynamodb_persistence_layer.query(
    #     key_cond_expr='#pk = :pk',
    #     expr_attr_name={
    #         '#pk': 'id',
    #     },
    #     expr_attr_values={
    #         ':pk': 'OAUTH2#CODE',
    #     },
    # )

    # # One item was added from seeds
    # assert len(r['items']) == 3


def test_forbidden(
    app,
    seeds,
    dynamodb_persistence_layer: DynamoDBPersistenceLayer,
    http_api_proxy: HttpApiProxy,
    lambda_context: LambdaContext,
):
    session = new_session('fd5914ec-fd37-458b-b6b9-8aeab38b666b')

    r = app.lambda_handler(
        http_api_proxy(
            raw_path='/authorize',
            method=HTTPMethod.GET,
            query_string_parameters={
                'response_type': 'code',
                'client_id': '5e90c38f-f058-4e16-91fa-952554a290c5',
                'redirect_uri': 'https://localhost/callback',
                'scope': 'apps:admin',
                'nonce': '123',
                'state': '456',
            },
            cookies=[
                f'SID={session}; HttpOnly; Secure',
            ],
        ),
        lambda_context,
    )

    assert r['statusCode'] == HTTPStatus.FORBIDDEN


def test_invalid_session(
    app,
    seeds,
    dynamodb_persistence_layer: DynamoDBPersistenceLayer,
    http_api_proxy: HttpApiProxy,
    lambda_context: LambdaContext,
):
    r = app.lambda_handler(
        http_api_proxy(
            raw_path='/authorize',
            method=HTTPMethod.GET,
            query_string_parameters={
                'response_type': 'code',
                'client_id': 'd72d4005-1fa7-4430-9754-80d5e2487bb6',
                'redirect_uri': 'https://localhost/callback',
                'scope': 'openid offline_access',
                'nonce': '123',
                'state': '456',
            },
            cookies=[
                'SID=10:10; HttpOnly; Secure',
            ],
        ),
        lambda_context,
    )

    assert r['statusCode'] == HTTPStatus.NOT_FOUND