import { Request, Response, NextFunction } from 'express';
import jwt from 'jsonwebtoken';
import env from '../config/environment';
import { Log } from 'nork';
import User from '../models/User';
import { isValidObjectId } from 'mongoose';

export function requireAuth(req: Request, res: Response, next: NextFunction) {
	const token = req.cookies?.jwt;

	if (token) {
		jwt.verify(token, env.JWT_SECRET, async (err: any, decodedToken: any) => {
			if (err) {
				// console.error(err.message)
				res.status(401).send(Log.error(401, 'user is not authenticated'));
			}
			if (!err) {
				const user = await User.findById(decodedToken.id);
				if (user === null) {
					res.status(401).send(Log.error(401, 'user is not authenticated'));
					return;
				}
				res.locals.user = user;
				Log.info(100, 'user is authenticated');
				next();
			}
		});
	}

	if (!token) {
		res.status(401).send(Log.error(401, 'user is not authenticated'));
	}
}

export function requireVerified(req: Request, res: Response, next: NextFunction) {
	if (res.locals.user._id) {
		if (res.locals.user.verified) {
			Log.info(100, 'user is verified');
			next();
			return;
		}

		res.status(403).json(Log.error(403, 'user is not verified'));
		return;
	}

	if (!res.locals.user._id) {
		res.status(401).send(Log.error(401, 'user is not authenticated'));
		return;
	}
}

export class requireRole {
	static Admin(req: Request, res: Response, next: NextFunction) {
		if (res.locals.user.admin) {
			Log.info(100, 'user is admin');
			next();
			return;
		}
		res.status(403).json(Log.error(403, 'insufficient permissions'));
		return;
	}
	static Owner(req: Request, res: Response, next: NextFunction) {
		try {
			if (!isValidObjectId(req.body.domain_id)) {
				throw Log.error(400, 'neznámé domain_id');
			}

			const domain = res.locals.user.domains.filter((domain: any) => domain.domain_id == req.body.domain_id);
			console.log(domain);

			if (domain.length < 1) {
				throw Log.error(400, 'neznámé domain_id');
			}

			if (domain[0].role == 1) {
				Log.info(100, 'user is owner');
				next();
				return;
			}

			res.status(403).json(Log.error(403, 'insufficient permissions'));
			return;
		} catch (err: any) {
			res.status(400).json(err);
		}
	}
	static Editor(req: Request, res: Response, next: NextFunction) {}
	static Guest(req: Request, res: Response, next: NextFunction) {}
}