package routes

import (
	"fmt"
	"net/http"

	"git.artlef.fr/PersonalLibraryManager/internal/appcontext"
	"git.artlef.fr/PersonalLibraryManager/internal/dto"
	"git.artlef.fr/PersonalLibraryManager/internal/i18nresource"
	"git.artlef.fr/PersonalLibraryManager/internal/jwtauth"
	"git.artlef.fr/PersonalLibraryManager/internal/model"
	"git.artlef.fr/PersonalLibraryManager/internal/myvalidator"
	"github.com/gin-gonic/gin"
	"golang.org/x/crypto/bcrypt"
	"gorm.io/gorm"
)

func PostLoginHandler(ac appcontext.AppContext) {

	var username string

	if !ac.Config.DemoMode {
		var user dto.UserLogin
		err := ac.C.ShouldBindJSON(&user)
		if err != nil {
			myvalidator.ReturnErrorsAsJsonResponse(&ac, err)
			return
		}

		if !ac.Config.DemoMode && !isUserAndPasswordOk(ac.Db, user.Username, user.Password) {
			ac.C.JSON(http.StatusUnauthorized,
				gin.H{"error": i18nresource.GetTranslatedMessage(&ac, "InvalidCredentials")})
			return
		}
		username = user.Username
	} else {
		username = "demo"
	}

	var jwtToken string
	jwtToken, err := jwtauth.GenerateJwtToken(username)
	if err != nil {
		ac.C.JSON(http.StatusUnauthorized,
			gin.H{"error": fmt.Errorf("Error when generating JWT token: %w", err)})
		return
	}
	ac.C.JSON(http.StatusOK, gin.H{"message": i18nresource.GetTranslatedMessage(&ac, "AuthenticationSuccess"), "token": jwtToken})
}

func isUserAndPasswordOk(db *gorm.DB, username string, password string) bool {
	var user model.User
	db.Where("name = ?", username).First(&user)
	err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(password))
	return err == nil
}