/* jshint node: true */

var _ = require('lodash'),
	crypto = require('crypto'),
	util = require('../util'),
	upload = require('../upload'),
	config = require('../../../config.json'),
	User = require('../schemas/User');

var profile = {
	show: function(req, res){
		User.findOne({ _id: req.user._id }, function(err, user){
		  user = user.toObject()
		  delete user.password
			res.json(err || user)
		})
	},
	
	update: function(req, res){
		var data = util.cleanQuery(req.body)
		if (data.new_password && data.new_password.length) {
			if (! data.old_password || ! req.user.checkPassword(data.old_password)) {
				res.json({ error: { errors: { password: { message: "Old password is incorrect" } } } })
			}
			
			var shasum = crypto.createHash('sha1')
			shasum.update(data.new_password)
			password = shasum.digest('hex');
			
			req.user.password = password
		}
		delete data.old_password
		delete data.new_password
		delete data.isStaff
		delete data.plan_level
		data.updated_at = new Date ()
		
		if (req.files.avatar) {
			upload.put("avatars", req.files.avatar, {
				unacceptable: function(err){
					res.json({ error: { errors: { avatar: { message: "Problem saving avatar: " + err } } } })
				},
				success: function(url){
					data.photo = url
					done()
				}
			})
		}
		else {
			done()
		}
		
		function done () {
			_.extend( req.user, data )
			req.user.save(function(err, msg) {
				err ? res.json({ status: "FAIL", error: err })
					: res.json({ status: "OK", payload: req.user })
			})
		}
	}
}

module.exports = profile