#! /usr/bin/env perl

use v5.10.1;
use strict;
use warnings;
use File::Temp qw/ tempfile /;
use Pod::Usage;

BEGIN {
    push @INC, "../../";
}

use ACU::Process;
use ACU::API::Base;

sub process
{
    my ($given_args, $args) = @_;

    my ($fh, $filename) = tempfile();
    # Write key to file
    print $fh $args->{param}{key};

    # Call ssh-keygen
    if (`ssh-keygen -l -f $filename 2> /dev/null` =~ /^([0-9]+) [0-9a-f:]+ [a-zA-Z0-9\/_-]+ \(([A-Z]+)\)$/)
    {
	if ($2 eq "RSA") {
	    if ($1 >= 4096) {
		return API::Base::make_response("0", "Clef RSA valide.");
	    }
	    else {
		return API::Base::make_response("2", "Clef RSA trop petite, utilisez ssh-keygen -t rsa -b 4096.");
	    }
	}
	elsif ($2 eq "ECDSA") {
	    return API::Base::make_response("0", "Clef ECDSA valide.");
	}
	elsif ($2 eq "DSA") {
	    return API::Base::make_response("3", "Veuillez utiliser ssh-keygen -t rsa ou ssh-keygen -t ecdsa");
	}
    }
    else {
	return API::Base::make_response("4", "Veuillez utiliser ssh-keygen -t rsa ou ssh-keygen -t ecdsa");
    }

    close $fh;
    unlink $filename;
}

Process::register("check_ssh_key", \&process);