/* -*- Mode: JavaScript; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
/* This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this
 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */

/**
 * @implements {nsILDAPMessageListener}
 */
export class LDAPListenerBase {
  /**
   * @see nsILDAPMessageListener
   */
  async onLDAPInit() {
    const outPassword = {};
    if (this._directory.authDn && this._directory.saslMechanism != "GSSAPI") {
      // If authDn is set, we're expected to use it to get a password.
      const bundle = Services.strings.createBundle(
        "chrome://mozldap/locale/ldap.properties"
      );

      const authPrompt = Services.ww.getNewAuthPrompter(
        Services.wm.getMostRecentWindow(null)
      );
      await authPrompt.asyncPromptPassword(
        bundle.GetStringFromName("authPromptTitle"),
        bundle.formatStringFromName("authPromptText", [
          this._directory.lDAPURL.host,
        ]),
        this._directory.lDAPURL.spec,
        Ci.nsIAuthPrompt.SAVE_PASSWORD_PERMANENTLY,
        outPassword
      );
    }
    this._operation.init(this._connection, this, null);

    if (this._directory.saslMechanism != "GSSAPI") {
      this._operation.simpleBind(outPassword.value);
      return;
    }

    // Handle GSSAPI now.
    this._operation.saslBind(
      `ldap@${this._directory.lDAPURL.host}`,
      "GSSAPI",
      "sasl-gssapi"
    );
  }

  /**
   * Handler of nsILDAPMessage.RES_BIND message.
   *
   * @param {nsILDAPMessage} msg - The received LDAP message.
   */
  _onLDAPBind(msg) {
    const errCode = msg.errorCode;
    if (
      errCode == Ci.nsILDAPErrors.INAPPROPRIATE_AUTH ||
      errCode == Ci.nsILDAPErrors.INVALID_CREDENTIALS
    ) {
      // Login failed, remove any existing login(s).
      const ldapUrl = this._directory.lDAPURL;
      const logins = Services.logins.findLogins(
        ldapUrl.prePath,
        "",
        ldapUrl.spec
      );
      for (const login of logins) {
        Services.logins.removeLogin(login);
      }
      // Trigger the auth prompt.
      this.onLDAPInit();
      return;
    }
    if (errCode != Ci.nsILDAPErrors.SUCCESS) {
      this._actionOnBindFailure();
      return;
    }
    this._actionOnBindSuccess();
  }

  /**
   * @see nsILDAPMessageListener
   * @abstract
   */
  onLDAPMessage() {
    throw new Components.Exception(
      `${this.constructor.name} does not implement onLDAPMessage.`,
      Cr.NS_ERROR_NOT_IMPLEMENTED
    );
  }

  /**
   * Callback when BindResponse succeeded.
   *
   * @abstract
   */
  _actionOnBindSuccess() {
    throw new Components.Exception(
      `${this.constructor.name} does not implement _actionOnBindSuccess.`,
      Cr.NS_ERROR_NOT_IMPLEMENTED
    );
  }

  /**
   * Callback when BindResponse failed.
   *
   * @abstract
   */
  _actionOnBindFailure() {
    throw new Components.Exception(
      `${this.constructor.name} does not implement _actionOnBindFailure.`,
      Cr.NS_ERROR_NOT_IMPLEMENTED
    );
  }
}