package Api

import (
	"log"
	"net/http"

	"git.tovijaeschke.xyz/tovi/SuddenImpactRecords/Api/Auth"

	"github.com/gorilla/mux"
)

func loggingMiddleware(next http.Handler) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		log.Printf(
			"%s %s %s, Content Length: %d",
			r.RemoteAddr,
			r.Method,
			r.RequestURI,
			r.ContentLength,
		)

		next.ServeHTTP(w, r)
	})
}

func authenticationMiddleware(next http.Handler) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		var (
			userSession Auth.Session
			err         error
		)

		userSession, err = Auth.CheckCookie(r)

		if err != nil {
			http.Error(w, "Forbidden", http.StatusUnauthorized)
			return
		}

		log.Printf(
			"Authenticated user: %s (%s)",
			userSession.Email,
			userSession.UserID,
		)

		next.ServeHTTP(w, r)
	})
}

func InitApiEndpoints(router *mux.Router) {
	var (
		api      *mux.Router
		adminApi *mux.Router
	)

	log.Println("Initializing API routes...")

	api = router.PathPrefix("/api/v1/").Subrouter()

	api.Use(loggingMiddleware)

	api.HandleFunc("/posts/front-page", getFrontPagePosts).Methods("GET")
	api.HandleFunc("/post", getPostsPublic).Methods("GET")
	api.HandleFunc("/post/{postID}", getPostPublic).Methods("GET")

	// Define routes for authentication
	api.HandleFunc("/admin/login", Auth.Login).Methods("POST")
	api.HandleFunc("/admin/logout", Auth.Logout).Methods("GET")
	api.HandleFunc("/admin/me", Auth.Me).Methods("GET")

	adminApi = api.PathPrefix("/admin/").Subrouter()

	adminApi.Use(authenticationMiddleware)

	// Define routes for posts api
	adminApi.HandleFunc("/post", getPosts).Methods("GET")
	adminApi.HandleFunc("/post/{postID}", getPost).Methods("GET")

	adminApi.HandleFunc("/post", createPost).Methods("POST")
	adminApi.HandleFunc("/post/{postID}", updatePost).Methods("PUT")
	adminApi.HandleFunc("/post/{postID}", deletePost).Methods("DELETE")
	adminApi.HandleFunc("/post/{postID}/publish", publishPost).Methods("GET")

	adminApi.HandleFunc("/post/{postID}/image", createPostImage).Methods("POST")
	adminApi.HandleFunc("/post/{postID}/image/{imageID}", deletePostImage).Methods("DELETE")

	// Define routes for users api
	adminApi.HandleFunc("/user", getUsers).Methods("GET")
	adminApi.HandleFunc("/user", createUser).Methods("POST")
	adminApi.HandleFunc("/user/{userID}", getUser).Methods("GET")
	adminApi.HandleFunc("/user/{userID}", updateUser).Methods("PUT")
	adminApi.HandleFunc("/user/{userID}", deletePost).Methods("DELETE")
	adminApi.HandleFunc("/user/{userID}/update-password", Auth.UpdatePassword).Methods("PUT")
}