package main

import (
	"net/http"
	"html/template"
	"log"
	"fmt"
	"embed"
	"io"
	"os"
	"path"
	"path/filepath"
	"flag"
)

//go:embed templates
var tmplFS embed.FS


type BoxHandler struct {
	dataPath string
	token string
}

func serve(w http.ResponseWriter, token string, views ...string) {
	t, err := template.New("index.html").ParseFS(tmplFS, views...)
	if err != nil {
		log.Fatal(err)
	}
	if err := t.Execute(w, token); err != nil {
		log.Fatal(err)
	}
}

func (handler BoxHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
	switch r.Method {
	case http.MethodGet:
		serve(w, handler.token, "templates/index.html")
		return
	case http.MethodPost:
		token := r.Header.Get("X-Upload-Token")
		if token != handler.token {
			log.Println("unauthorized")
			w.WriteHeader(http.StatusUnauthorized)
			return
		}
		filename := filepath.Join(handler.dataPath, path.Base(r.URL.Path))
		log.Printf("boxing %s\n", filename)
		f, err := os.Create(filename)
		if err != nil {
			log.Println(err)
			fmt.Fprint(w, err.Error())
			w.WriteHeader(http.StatusInternalServerError)
			return
		}
		defer r.Body.Close()
		io.Copy(f, r.Body)
		log.Printf("boxed %s\n", filename)
	default:
		w.WriteHeader(http.StatusMethodNotAllowed)
	}
}

func main() {
	host := flag.String("n", "", "The hostname to listen on")
	port := flag.Int("p", 8080, "The port to listen on")
	token := flag.String("t", "", "The token to use to protect uploads")
	flag.Parse()
	boxHandler := BoxHandler {
		"data",
		*token,
	}
	err := os.MkdirAll(boxHandler.dataPath, 0750)
	if err != nil {
		log.Fatal(err)
	}
	log.Printf("Listening on %s:%d", *host, *port)
	log.Fatal(http.ListenAndServe(fmt.Sprintf("%s:%d", *host, *port), boxHandler))
}