// jk: this script assumes you are using the Facebook OAuth API and have already called FB.init on your site.
if(!com) var com = {};
if(!com.bigspaceship) com.bigspaceship = {};
if(!com.bigspaceship.api) com.bigspaceship.api = {};
if(!com.bigspaceship.api.facebook) com.bigspaceship.api.facebook = {};

if(!com.bigspaceship.api.facebook.OAuthBridge) {
	com.bigspaceship.api.facebook.OAuthBridge = {};
	com.bigspaceship.api.facebook.OAuthBridge._swfId = 'site';

	com.bigspaceship.api.facebook.OAuthBridge.setSwfId = function($id) {
		com.bigspaceship.api.facebook.OAuthBridge._swfId = $id;
	};

	com.bigspaceship.api.facebook.OAuthBridge.initialize = function() {
		// jk: set a timeout of a second in case getLoginStatus fails.
		com.bigspaceship.api.facebook.OAuthBridge._timer = setTimeout(function() {
			$("#" + com.bigspaceship.api.facebook.OAuthBridge._swfId)[0].handleFacebookLogout();
		},1000);

		FB.getLoginStatus(function(response) {

			clearTimeout(com.bigspaceship.api.facebook.OAuthBridge._timer);
			com.bigspaceship.api.facebook.OAuthBridge._timer = null;
			
			_handleFacebookResponse( response );
		});
	};

	com.bigspaceship.api.facebook.OAuthBridge.login = function($opts) {
		// bb: 'perms' value is not allowed anymore since oauth2.0 and crashes the login
		if( $opts ){
			$opts.scope = $opts.scope || $opts.perms;
			$opts.perms = undefined;
		}
		
		FB.login( function(response) {
			_handleFacebookResponse( response );
		}, $opts );
	};

	com.bigspaceship.api.facebook.OAuthBridge.logout = function() {
		FB.logout(function(response) {});
		$("#" + com.bigspaceship.api.facebook.OAuthBridge._swfId)[0].handleFacebookLogout();
	};
	
	function _handleFacebookResponse( response ){
		var session = response.session || response.authResponse;
		
		if( session && (session.uid || session.userID) ){
			
			// bb: make sure this is compatible with old OAuth scripts
			session.uid				= session.uid || session.userID;
			session.access_token	= session.access_token || session.accessToken;
			session.expires			= session.expires || session.expiresIn;
			
			// jk: there is a bug in the current getLoginStatus method Facebook JavaScript SDK -- it doesn't return permissions as expected. the best we can do is manually ask.
			FB.api({
				method: 'fql.query',
				query: 'SELECT status_update,photo_upload,sms,offline_access,email,create_event,rsvp_event,publish_stream,read_stream,share_item,create_note,bookmarked,tab_added FROM permissions WHERE uid=' + session.userID
			},
			function( response ) {
				var perms = [];
				for (perm in response[0]) {
					if (response[0][perm] == '1') perms.push(perm);
				}

				$("#" + com.bigspaceship.api.facebook.OAuthBridge._swfId)[0].handleFacebookLogin( session, perms.join(','));
			});

		}
		else {
			$("#" + com.bigspaceship.api.facebook.OAuthBridge._swfId)[0].handleFacebookLogout();
		}
	}
}