#
# Tuleap
#
# Copyright (c) Enalean, 2016. All Rights Reserved.
# Copyright (c) Xerox Corporation, Codendi Team, 2001-2009. All rights reserved
# http://www.codendi.com
#
#
#  License:
#    This file is a part of Tuleap.
#
#    Tuleap is free software; you can redistribute it and/or modify
#    it under the terms of the GNU General Public License as published by
#    the Free Software Foundation; either version 2 of the License, or
#    (at your option) any later version.
#
#    Tuleap is distributed in the hope that it will be useful,
#    but WITHOUT ANY WARRANTY; without even the implied warranty of
#    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
#    GNU General Public License for more details.
#
#    You should have received a copy of the GNU General Public License
#    along with Tuleap. If not, see <http://www.gnu.org/licenses/>.
#
# Purpose:
#    This Python file mimics some of the function in www/include/session.php
#    to allow Python scripts to handle user session stuff

import os
import string
import Cookie
import MySQLdb
import include

global G_SESSION, G_USER
G_USER    = {}
G_SESSION = {}

def session_setglobals(user_id):
    global G_USER

    if user_id > 0:
        cursor = include.dbh.cursor(cursorclass=MySQLdb.cursors.DictCursor)
        cursor.execute("SELECT * from user WHERE user_id = %s", user_id)
        row = cursor.fetchone()
        cursor.close()

        if row is None:
            G_USER = {}
        else:
            G_USER['user_id'] = row['user_id']
            G_USER['user_name'] = row['user_name']

    else:
        G_USER = {}


def session_set():
    global G_SESSION, G_USER

    id_is_good = False

    # get cookies
    c = Cookie.SimpleCookie()
    c.load(os.environ["HTTP_COOKIE"])

    # if hash value given by browser then check to see if it is OK.
    cookie_name=include.get_cookie_prefix()+'_session_hash'
    if c.has_key(cookie_name):

        cursor = include.dbh.cursor(cursorclass=MySQLdb.cursors.DictCursor)
        cursor.execute("SELECT user_id,session_hash,ip_addr,time FROM session WHERE session_hash=%s", c[cookie_name].value)
        row = cursor.fetchone()
        cursor.close()

        # does hash value exists
        if row is not None:
                id_is_good = True

    if id_is_good:
        G_SESSION = row
        session_setglobals(G_SESSION['user_id'])
    else:
        G_SESSION = {}
        G_USER = {}