# -*- coding: utf-8 -*-
""" Controllers

"""
from plugin_event import ADMIN


@auth.requires(True, requires_login=not request.is_local)
def index():
    """Main Controller to run the application launching the plugin dbui.

    """
    # login procedure is active
    if session.auth:
        roles = session.auth.user_groups.values()

        if roles:
            session.role = roles[0]

        else:
            return 'The user role is not defined'

    # no login procedure
    else:
        session.role = ADMIN

    url = URL('plugin_dbui', 'index', args=request.args, vars=request.vars)
    return redirect(url)


def user():
    """exposes:
    http://..../[app]/default/user/login
    http://..../[app]/default/user/logout
    http://..../[app]/default/user/register
    http://..../[app]/default/user/profile
    http://..../[app]/default/user/retrieve_password
    http://..../[app]/default/user/change_password
    use @auth.requires_login()
        @auth.requires_membership('group name')
        @auth.requires_permission('read','table name',record_id)
    to decorate functions that need access control
    """
    return dict(form=auth())