package routes

import (
	"fmt"
	"net/http"

	"git.artlef.fr/bibliomane/internal/appcontext"
	"git.artlef.fr/bibliomane/internal/dto"
	"git.artlef.fr/bibliomane/internal/i18nresource"
	"git.artlef.fr/bibliomane/internal/jwtauth"
	"git.artlef.fr/bibliomane/internal/model"
	"git.artlef.fr/bibliomane/internal/myvalidator"
	"github.com/gin-gonic/gin"
	"golang.org/x/crypto/bcrypt"
)

func PostLoginHandler(ac appcontext.AppContext) {

	var username string
	admin := false

	if !ac.Config.DemoMode {
		var user dto.UserLogin
		err := ac.C.ShouldBindJSON(&user)
		if err != nil {
			myvalidator.ReturnErrorsAsJsonResponse(&ac, err)
			return
		}
		var userDb model.User
		ac.Db.Where("name = ?", user.Username).First(&userDb)

		if !ac.Config.DemoMode &&
			bcrypt.CompareHashAndPassword([]byte(userDb.Password), []byte(user.Password)) != nil {
			ac.C.JSON(http.StatusUnauthorized,
				gin.H{"error": i18nresource.GetTranslatedMessage(&ac, "InvalidCredentials")})
			return
		}
		if !userDb.Activated {
			ac.C.JSON(http.StatusUnauthorized,
				gin.H{"error": i18nresource.GetTranslatedMessage(&ac, "UserNotActivated")})
			return
		}
		username = user.Username
		admin = userDb.Admin
	} else {
		username = ac.Config.DemoUsername
	}

	var jwtToken string
	jwtToken, err := jwtauth.GenerateJwtToken(username, admin)
	if err != nil {
		ac.C.JSON(http.StatusUnauthorized,
			gin.H{"error": fmt.Errorf("Error when generating JWT token: %w", err)})
		return
	}
	ac.C.JSON(http.StatusOK, gin.H{"message": i18nresource.GetTranslatedMessage(&ac, "AuthenticationSuccess"), "admin": admin, "token": jwtToken})
}