from django.db import models, IntegrityError
from django.db.models import Q
from django.contrib.auth.models import User
from django.core.exceptions import ValidationError, PermissionDenied
from django.core.urlresolvers import NoReverseMatch
from django.core.cache import cache
from django.conf import settings
 
from twistranet.twistapp.lib import permissions
from twistranet.twistapp.signals import join_community, invite_community, request_join_community
 
from account import Account, SystemAccount
from twistable import Twistable
from network import Network
 
from  twistranet.twistapp.lib.log import log
 
class Community(Account):
    """
    A simple community class.
    A community is an account which have members. Members are User accounts.
    """
    # Usual metadata
    date = models.DateTimeField(auto_now = True)
    default_picture_resource_slug = "default_community_picture"
 
    # Members & security management
    permission_templates = permissions.community_templates
 
    # View overriding support
    summary_view = "community/summary.part.html"
    is_community = True
 
    @property
    def managers(self):
        return Account.objects.filter(
            targeted_network__target__id = self.id,
            requesting_network__client__id = self.id,
            targeted_network__is_manager = True,
        )
 
    @property
    def members(self):
        return Account.objects.filter(
            targeted_network__target__id = self.id,
            requesting_network__client__id = self.id,
        )
 
    @property
    def member_ids(self):
        return self.members.values_list("id", flat = True)
 
    @property
    def members_for_display(self):
        """
        Same as members but we really know we're going to display related information on them.
        XXX TODO Use related() to optimize things here
        """
        return self.members
 
    @property
    def managers_for_display(self):
        """Same as members_for_display but for managers"""
        return self.managers
 
    class Meta:
        app_label = 'twistapp'
 
    def save(self, *args, **kw):
        """
        Populate special content information before saving it.
        """
        ret = super(Community, self).save(*args, **kw)
        if not self.is_member:
            auth = Twistable.objects._getAuthenticatedAccount()
            if not isinstance(auth, SystemAccount):
                Network.objects.create(
                    client = auth,
                    target = self,
                    is_manager = True,
                )
                Network.objects.create(
                    client = self,
                    target = auth,
                    is_manager = False,
                )
        return ret
 
    def delete(self, ):
        """
        Check the can_delete permission before dumping content.
        XXX Todo: delete nwk as well
        """
        if not self.can_delete:
            raise PermissionDenied("You're not allowed to delete this community")
        return super(Community, self).delete()
 
    def setTemplate(self, template_id):
        """
        Reset community attributes to match those of the specified template.
        Changing the initial_template value has no effect.
        """
        raise NotImplementedError("Have to implement this")
 
    @property
    def is_member(self):
        """
        Return true if currently auth user is a member of the community
        """
        return self.isMember()
 
    def isMember(self, account = None, is_manager = False):
        """
        Return True if given account is member.
        If account is None, assume it's current authenticated.
        XXX HAVE TO OPTIMIZE (PRE-LOAD?) THIS!
        """
        if not account:
            account = Community.objects._getAuthenticatedAccount()
            if not account:
                return False    # Anon user
 
        if not is_manager:
            flt = Account.objects.__booster__.filter(
                targeted_network__target__id = self.id,
                targeted_network__client__id = account.id,
                requesting_network__client__id = self.id,
                requesting_network__target__id = account.id,
            )
        else:
            flt = Account.objects.__booster__.filter(
                targeted_network__target__id = self.id,
                targeted_network__client__id = account.id,
                requesting_network__client__id = self.id,
                requesting_network__target__id = account.id,
                targeted_network__is_manager = True,
            )
 
        return flt.exists()
 
 
    @property
    def is_manager(self):
        """
        Return true if current user is a community manager
        """
        return self.isMember(is_manager = True)
 
    def join_manager(self, account = None):
        """
        Same as join() but as a manager.
        Only a community manager (or the first community member) can do that.
        """
        return self.join(account, is_manager = True)
 
    @property
    def can_join(self):
        auth = Account.objects._getAuthenticatedAccount()
        base_auth = auth.has_permission(permissions.can_join, self)
        if not base_auth:
            return self.has_pending_invitation
        return base_auth
 
    @property
    def can_leave(self):
        # Special check if we're not the last (human) manager inside
        if self.is_manager:
            log.debug("Is manager on %s" % self)
            if self.managers.count() == 1:
                return False
 
        # Regular checks
        auth = Account.objects._getAuthenticatedAccount()
        return auth.has_permission(permissions.can_leave, self)        
 
    @property
    def has_pending_invitation(self):
        """
        True if currently auth user has a pending invitation in this community
        """
        auth = Account.objects._getAuthenticatedAccount()
        if self.id in auth.get_pending_network_request_ids(returned_model = Community):
            return True             # Has pending request
        return False                # No request pending
 
    def invite(self, account):
        """
        Invite a user to join the community.
        """
        # Check if we have the rights to do so
        if not self.can_join:
            raise PermissionDenied("You're not allow to invite somebody in a community.")
 
        # Ensure first that account is not already in
        if self.isMember(account):
            return
 
        # Add one part of the relation
        Network.objects.create(
            client = self,
            target = account,
            is_manager = False,
        )
 
        # Send the invite signal
        invite_community.send(
            sender = self.__class__,
            target = account,
            community = self
        )
 
    def join(self, account = None, is_manager = False):
        """
        Join the community.
        If account is None, assume it current authenticated account.
        Won't raise if you try to join the same community again.
        """
        # Check if current account is allowed to force another account to join
        if not self.can_join:
            if account:
                raise PermissionDenied("You're not allowed to let somebody join this community.")
            else:
                raise PermissionDenied("You're not allowed to join this community. You must be invited.")
 
        if not account:
            account = Account.objects._getAuthenticatedAccount()
 
        # Ensure first that account is not already in
        if self.isMember(account):
            return
 
        # Actually add (symetrically).
        try:
            Network.objects.create(
                client = account,
                target = self,
                is_manager = is_manager,
            )
        except IntegrityError:
            pass
        try:
            Network.objects.create(
                client = self,
                target = account,
                is_manager = False,
            )
        except IntegrityError:
            pass
 
        # Send the join signal
        join_community.send(
            sender = self.__class__,
            client = account,
            community = self,
            accepted = True,
            )
 
    def leave(self, account=None):
        """
        Leave the community.
        Fails silently is account is not a member of the community.
        """
        auth = Account.objects._getAuthenticatedAccount()
        if not account:
            account = auth
        if self.is_member:
            if auth == account and not self.can_leave:
                raise PermissionDenied("You're not allowed to leave this community")
            if not auth.id == account.id:
                if not self.is_manager:
                    raise PermissionDenied("You're not allowed to oust somebody from this community.")
 
        # Unconditionnaly remove network links.
        # We use this here to allow invitations to be declined.
        Network.objects.filter(client__id = self.id, target__id = account.id).delete()
        Network.objects.filter(target__id = self.id, client__id = account.id).delete()
 
    def set_as_manager(self, account):
        """
        Mark an account as a community manager.
        Will probably fail if account is not already a member of the community.
        This is reserved to ppl who is already cty_mgr (or have the can_edit permission).
        """
        if not self.can_edit:
            raise PermissionDenied("You can't name somebody as a community manager")
        Network.objects.filter(client__id = account.id, target__id = self.id).update(is_manager = True)
 
    def unset_as_manager(self, account):
        """
        You can bail yourself out of the managers pool only if you can leave the cty per se.
        """
        if not self.can_edit:
            raise PermissionDenied("You can't bail a community manager")
        auth = Account.objects._getAuthenticatedAccount()
        if auth.id == account.id:
            raise PermissionDenied("You can't ban yourself from the community managers")
        Network.objects.filter(client__id = account.id, target__id = self.id).update(is_manager = False)
 
 
class GlobalCommunity(Community):
    """
    THE global community.
 
    The global community also has all the webmaster-level settings of Twistranet.
    can_view must be given to either anonymous or authenticated role for TN to work!
    If can_view is authenticated, then ALL OF Twistranet is restricted to auth people.
 
    Default is authenticated.
 
    This community holds all the TN configuration as well!
    """
    class Meta:
        app_label = 'twistapp'
 
    permission_templates = permissions.global_community_templates
    _ALLOW_NO_PUBLISHER = True
 
    site_name = models.CharField(
        max_length = 64,
        help_text = "Enter this site's name. It will be displayed prominently on all pages. No HTML please.",
        )
    baseline = models.CharField(
        max_length = 64,
        help_text = "Enter the site's baseline. It will be displayed in the upper bar of the site. No HTML please.",
        )
 
    @classmethod
    def get(cls):
        """Return main (and only) system account. Will raise if several are set."""
        return cls.objects.get()
 
class AdminCommunity(Community):
    """
    Community in which users gain admin rights.
    Admin right = can do admin stuff on any community the user can see.
    """
    class Meta:
        app_label = 'twistapp'
 
    @classmethod
    def get(cls):
        """Return main (and only) system account. Will raise if several are set."""
        return cls.objects.get()