# User object is stored in session
class User
  DEVELOPER_ACCESS = 30

  attr_reader :attributes

  def initialize(hash)
    @attributes = hash
  end

  def gitlab_projects(search = nil, page = 1, per_page = 100)
    Rails.cache.fetch(cache_key(page, per_page, search)) do
      Project.from_gitlab(self, :authorized, { page: page, per_page: per_page, search: search, ci_enabled_first: true })
    end
  end

  def method_missing(meth, *args, &block)
    if attributes.has_key?(meth.to_s)
      attributes[meth.to_s]
    else
      super
    end
  end

  def avatar_url
    attributes['avatar_url']
  end

  def cache_key(*args)
    "#{self.id}:#{args.join(":")}:#{sync_at.to_s}"
  end

  def sync_at
    @sync_at ||= Time.now
  end

  def reset_cache
    @sync_at = Time.now
  end

  def can_access_project?(project_gitlab_id)
    !!project_info(project_gitlab_id)
  end

  # Indicate if user has developer access or higher
  def has_developer_access?(project_gitlab_id)
    data = project_info(project_gitlab_id)

    return false unless data && data["permissions"]

    permissions = data["permissions"]

    if permissions["project_access"] && permissions["project_access"]["access_level"] >= DEVELOPER_ACCESS
      return true
    end

    if permissions["group_access"] && permissions["group_access"]["access_level"] >= DEVELOPER_ACCESS
      return true
    end
  end

  def can_manage_project?(project_gitlab_id)
    Rails.cache.fetch(cache_key('manage', project_gitlab_id, sync_at)) do
      !!Network.new.project_hooks(authenticate_options, project_gitlab_id)
    end
  end

  def authorized_runners
    Runner.specific.includes(:runner_projects).
      where(runner_projects: { project_id: authorized_projects } )
  end

  def authorized_projects
    Project.where(gitlab_id: gitlab_projects.map(&:id)).select do |project|
      # This is slow: it makes request to GitLab for each project to verify manage permission
      can_manage_project?(project.gitlab_id)
    end
  end

  def authenticate_options
    if attributes['access_token']
      { access_token: attributes['access_token'] }
    else
      { private_token: attributes['private_token'] }
    end
  end

  private

  def project_info(project_gitlab_id)
    Rails.cache.fetch(cache_key("project_info", project_gitlab_id, sync_at)) do
      Network.new.project(authenticate_options, project_gitlab_id)
    end
  end
end