import asyncio
import functools

from aiohttp import web


from aiohttp_security import remember, forget, authorized_userid, permits


def require(permission):
    def wrapper(f):
        @asyncio.coroutine
        @functools.wraps(f)
        def wrapped(self, request):
            has_perm = yield from permits(request)
            if not has_perm:
                raise web.HTTPForbidden()
            return (yield from f(self, request))
        return wrapped
    return wrapper


class Web:
    @require('public')
    @asyncio.coroutine
    def index(self, request):
        pass

    @require('public')
    @asyncio.coroutine
    def login(self, request):
        pass

    @require('protected')
    @asyncio.coroutine
    def logout(self, request):
        pass

    @require('public')
    @asyncio.coroutine
    def public(self, request):
        pass

    @require('protected')
    @asyncio.coroutine
    def protected(self, request):
        pass

    @asyncio.coroutine
    def configure(self, app):
        app.add_route('GET', '/', self.index, name='index')
        app.add_route('POST', '/login', self.login, name='login')
        app.add_route('POST', '/logout', self.logout, name='logout')
        app.add_route('GET', '/public', self.public, name='public')
        app.add_route('GET', '/protected', self.protected, name='protected')