/* jshint node: true */

var passport = require('passport'),
	Entities = require('html-entities').XmlEntities,
	entities = new Entities(),
	crypto = require('crypto'),
	_ = require('lodash'),
	util = require('./util'),
	upload = require('./upload'),
	config = require('../../config.json'),
	User = require('./schemas/User');


var api = {

	profile: {
		show: function(req, res){
			User.findOne({ _id: req.user._id }, function(err, user){
				res.json(err || user)
			})
		},
		
		update: function(req, res){
			var data = util.cleanQuery(req.body)
			if (data.new_password && data.new_password.length) {
				if (! data.old_password || ! req.user.checkPassword(data.old_password)) {
					res.json({ error: { errors: { password: { message: "Old password is incorrect" } } } })
				}
				
				var shasum = crypto.createHash('sha1')
				shasum.update(data.new_password)
				password = shasum.digest('hex');
				
				req.user.password = password
			}
			delete data.old_password
			delete data.new_password
			delete data.isAdmin
			
			if (req.files.avatar) {
				// handle the upload here
				console.log("GOT SOME FILES")
				upload.put("avatars", req.files.avatar, {
					acceptable: function(){
						console.log("acceptable")
					},
					unacceptable: function(err){
						console.log("unacceptable")
						res.json({ error: { errors: { avatar: { message: "Problem saving avatar: " + err } } } })
					},
					success: function(url){
						data.photo = url
						done()
					}
				})
			}
			else {
				done()
			}
			
			function done () {
				_.extend( req.user, data )
				req.user.save(function(err, msg) {
					err ? res.json({ status: "FAIL", error: err })
						: res.json({ status: "OK", payload: req.user })
				})
			}
		}
	}

}


module.exports = api