var url = require('url'),
    spamPrevention = require('./api/spam-prevention');

/**
 * We set ignoreIP to false, because we tell brute-knex to use `req.ip`.
 * We can use `req.ip`, because express trust proxy option is enabled.
 */
module.exports = {
    /**
     * block per route per ip
     */
    globalBlock: spamPrevention.globalBlock.getMiddleware({
        ignoreIP: false,
        key: function (req, res, next) {
            next(url.parse(req.url).pathname);
        }
    }),
    /**
     * block per route per ip
     */
    globalReset: spamPrevention.globalReset.getMiddleware({
        ignoreIP: false,
        key: function (req, res, next) {
            next(url.parse(req.url).pathname);
        }
    }),
    /**
     * block per user
     * username === email!
     */
    userLogin: spamPrevention.userLogin.getMiddleware({
        ignoreIP: false,
        key: function (req, res, next) {
            if (req.body.username) {
                return next(req.body.username + 'login');
            }

            if (req.body.authorizationCode) {
                return next(req.body.authorizationCode + 'login');
            }

            if (req.body.refresh_token) {
                return next(req.body.refresh_token + 'login');
            }

            return next();
        }
    }),
    /**
     * block per user
     */
    userReset: spamPrevention.userReset.getMiddleware({
        ignoreIP: false,
        key: function (req, res, next) {
            next(req.body.username + 'reset');
        }
    }),
    privateBlog: spamPrevention.privateBlog.getMiddleware({
        ignoreIP: false,
        key: function (req, res, next) {
            next('privateblog');
        }
    })
};