package site

import (
	"crypto/md5"
	"encoding/hex"
	"encoding/json"
	"errors"
	"strconv"
	"strings"
	"time"

	"git.tetele.net/ttlpkg/tgo/crypter"

	"github.com/golang/protobuf/proto"
)

type SiteConfigItemReqArg struct {
	SiteId string `json:"site_id"`
	Dbname string `json:"dbname"`
	Key    string `json:"key"`
}

type SiteConfigItemRes struct {
	Type  string
	Value string
}

/**
 * 由配置key取对应value
 * 请求及回均加密验签
 * 2021/01/20
 * GZ
 */
func GetConfigItem(site_id, dbname, key string, url ...string) (*SiteConfigItemRes, error) {

	var site_rpc_url string = "127.0.0.1:7971"
	if len(url) > 0 && url[0] != "" {
		site_rpc_url = url[0]
	}
	conn, _, err := DialSiteService("tcp", site_rpc_url)
	if err != nil {
		return nil, err
	}
	defer conn.Close()

	arg := SiteConfigItemReqArg{site_id, dbname, key}

	data_json, err := json.Marshal(arg)
	if err != nil {
		return nil, err
	}
	now_int64 := time.Now().Unix()

	encryData := crypter.DesEn(string(data_json), "confdata")

	now := strconv.FormatInt(now_int64, 10)

	sign := Sign(encryData, now)

	req := &ConfigRequest{proto.String(encryData), proto.String(now), proto.String(sign), nil}

	res := &ConfigResponse{}

	err = conn.GetConfig(req, res)

	if err != nil {
		return nil, err
	}

	res_data := res.GetData()

	if res_data != "" {

		time_int64, err := strconv.ParseInt(res.GetTime(), 10, 64)
		if err != nil {
			return nil, err
		}

		now_int64 = time.Now().Unix()

		if now_int64-time_int64 > 10 || time_int64-now_int64 > 10 {
			//时间误差前后10秒，返回
			return nil, errors.New("返回时间错误")
		}

		check_sign := CheckSign(res.GetSign(), res_data, res.GetTime())
		if !check_sign {
			return nil, errors.New("返回数据签名错误")
		}

		//解密
		res_data_de := crypter.DesDe(res_data, "confdata")

		var res_arr SiteConfigItemRes

		err = json.Unmarshal([]byte(res_data_de), &res_arr)

		if err != nil {
			return nil, err
		}
		return &res_arr, nil
	}

	return nil, nil
}

/**
 * 签名
 */
func Sign(data string, salt string) string {

	var build strings.Builder

	build.WriteString(data)
	build.WriteString(salt)
	build.WriteString("site55sign33")

	data_str := build.String()

	h := md5.New()
	h.Write([]byte(data_str))             // 需要加密的字符串
	return hex.EncodeToString(h.Sum(nil)) // 输出加密结果

}

/**
 * 验证签名
 */
func CheckSign(sign_str, data, salt string) bool {
	sign := Sign(data, salt)
	if strings.Compare(sign_str, sign) > -1 {
		return true
	}
	return false
}