package routes

import (
	"fmt"
	"net/http"

	"git.artlef.fr/PersonalLibraryManager/internal/appcontext"
	"git.artlef.fr/PersonalLibraryManager/internal/i18nresource"
	"git.artlef.fr/PersonalLibraryManager/internal/jwtauth"
	"git.artlef.fr/PersonalLibraryManager/internal/model"
	"git.artlef.fr/PersonalLibraryManager/internal/myvalidator"
	"github.com/gin-gonic/gin"
	"golang.org/x/crypto/bcrypt"
	"gorm.io/gorm"
)

type userLogin struct {
	Username string `json:"username" binding:"required,min=2,max=20"`
	Password string `json:"password" binding:"required,min=6,max=100"`
}

func PostLoginHandler(ac appcontext.AppContext) {
	var user userLogin
	err := ac.C.ShouldBindJSON(&user)
	if err != nil {
		myvalidator.ReturnErrorsAsJsonResponse(&ac, err)
		return
	}

	if !isUserAndPasswordOk(ac.Db, user.Username, user.Password) {
		ac.C.JSON(http.StatusUnauthorized,
			gin.H{"error": i18nresource.GetTranslatedMessage(&ac, "InvalidCredentials")})
		return
	}

	var jwtToken string
	jwtToken, err = jwtauth.GenerateJwtToken(user.Username)
	if err != nil {
		ac.C.JSON(http.StatusUnauthorized,
			gin.H{"error": fmt.Errorf("Error when generating JWT token: %w", err)})
		return
	}
	ac.C.JSON(http.StatusOK, gin.H{"message": i18nresource.GetTranslatedMessage(&ac, "AuthenticationSuccess"), "token": jwtToken})
}

func isUserAndPasswordOk(db *gorm.DB, username string, password string) bool {
	var user model.User
	db.Where("name = ?", username).First(&user)
	err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(password))
	return err == nil
}