# encoding: UTF-8

require 'common/updater/updater'

# Updater for the Database (currently only 3 .json)
class DbUpdater < Updater
  FILENAMES = %w(plugin_vulns theme_vulns wp_vulns)

  attr_reader :repo_directory

  def initialize(repo_directory)
    @repo_directory = repo_directory
    fail "#{repo_directory} is not writable" unless Pathname.new(repo_directory).writable?
  end

  # @return [ Hash ] The params for Typhoeus::Request
  def request_params
    {
      ssl_verifyhost: 2,
      ssl_verifypeer: true
    }
  end

  # @return [ String ] The raw file URL associated with the given filename
  def remote_file_url(filename)
    "https://raw.githubusercontent.com/wpscanteam/vulndb/master/#{filename}.json"
  end

  # @return [ String ] The checksum of the associated remote filename
  def remote_file_checksum(filename)
    url = "#{remote_file_url(filename)}.sha2"

    res = Browser.get(url, request_params)
    fail "Unable to get #{url}" unless res && res.code == 200
    res.body.chomp
  end

  def local_file_path(filename)
    File.join(repo_directory, "#{filename}.json")
  end

  def backup_file_path(filename)
    File.join(repo_directory, "#{filename}.back.json")
  end

  def create_backup(filename)
    return unless File.exist?(local_file_path(filename))
    FileUtils.cp(local_file_path(filename), backup_file_path(filename))
  end

  def restore_backup(filename)
    FileUtils.cp(backup_file_path(filename), local_file_path(filename))
  end

  def delete_backup(filename)
    FileUtils.rm(backup_file_path(filename), force: true)
  end

  # @return [ String ] The checksum of the downloaded file
  def download(filename)
    file_path = local_file_path(filename)
    file_url  = remote_file_url(filename)

    res = Browser.get(file_url)
    fail "Error while downloading #{file_url}" unless res && res.code == 200
    File.write(file_path, res.body.chomp)

    Digest::MD5.file(file_path).hexdigest
  end

  def update
    FILENAMES.each do |filename|
      begin
        create_backup(filename)
        checksum = download(filename)
        # p checksum

        # unless checksum == remote_file_checksum(filename)
        #  fail "#{filename}: checksums do not match"
        # end
      rescue => e
        # p e
        restore_backup(filename)
        raise e
      ensure
        delete_backup(filename)
      end
    end
  end
end