{% extends "base.html" %}
{% block content %}
  <p class="center">
    Test the authentication and authorization,
    with OpenID Connect and OAuth2 with different providers.
  </p>
  {% if not user %} 
  <div class="login-box">
    <p class="description">Log in with:</p>
    <table class="providers">
      {% for provider in settings.oidc.providers %}
      <tr class="provider">
        <td>
          <a class="link" href="login/{{ provider.id }}"><div>{{ provider.name }}</div></a>
        </td>
        <td class="hint">{{ provider.hint }}</div>
        </td>
      </tr>
      {% else %}
        <div class="error">There is no authentication provider defined.
        Hint: check the settings.yaml file.</div>
      {% endfor %}
    </table>
  </div>
  {% endif %}
  {% if user %}
    <div class="user-info">
      <p>Hey, {{ user.name }}</p>
      {% if user.picture %}
        <img src="{{ user.picture }}" class="picture"></img>
      {% endif %}
      <div>{{ user.email }}</div>
      {% if user.roles %}
        <div>
        <span>Roles:</span>
        {% for role in user.roles %}
          <span class="role">{{ role.name }}</span>
        {% endfor %}
        </div>
      {% endif %}
      <div>
        <span>Provider:</span>
        {{ user.oidc_provider.name }} 
      </div>
      <a href="logout" class="logout">Logout</a>
    </div>
  {% endif %}
  <hr>
  <div class="content">
    <p>
      These links should get different response codes depending on the authorization:
    </p>
    <div id="links-to-check">
      <a href="public">Public</a>
      <a href="protected">Auth protected content</a>
      <a href="protected-by-foorole">Auth + foorole protected content</a>
      <a href="protected-by-foorole-or-barrole">Auth + foorole or barrole protected content</a>
      <a href="protected-by-barrole">Auth + barrole protected content</a>
      <a href="protected-by-foorole-and-barrole">Auth + foorole and barrole protected content</a>
      <a href="fast_api_depends" class="hidden">Using FastAPI Depends</a>
      <a href="other">Other</a>
      <a href="oauth2-forgejo-test">OAuth2 test (forgejo user info)</a>
      <a href="introspect">Introspect token (401 expected)</a>
    </div>
  {% if user_info_details %}
    <hr>
    <div class="debug-auth">
      <p>User info</p>
      <ul>
        {% for key, value in user_info_details.items() %}
        <li>
          <span class="key">{{ key }}</span>: {{ value }}
        </li>
        {% endfor %}
      </ul>
      </div>
      <div>Now is: {{ now }}</div>
    </div>
  {% endif %}
{% endblock %}