package auth

import (
	"nixcn-cms/data"
	"nixcn-cms/pkgs/authcode"
	"nixcn-cms/pkgs/authtoken"
	"nixcn-cms/utils"

	"github.com/gin-gonic/gin"
	"github.com/spf13/viper"
)

type TokenRequest struct {
	Code string `json:"code"`
}

func Token(c *gin.Context) {
	var req TokenRequest

	err := c.ShouldBindJSON(&req)
	if err != nil {
		utils.HttpResponse(c, 400, "", "invalid request")
		return
	}

	authCode, ok := authcode.VerifyAuthCode(req.Code)
	if !ok {
		utils.HttpResponse(c, 403, "", "invalid or expired token")
		return
	}

	userData := new(data.User)
	user, err := userData.GetByEmail(authCode.Email)
	if err != nil {
		utils.HttpResponse(c, 500, "", "internal server error")
		return
	}

	// Generate jwt
	JwtTool := authtoken.Token{
		Application: viper.GetString("server.application"),
	}
	accessToken, refreshToken, err := JwtTool.IssueTokens(authCode.ClientId, user.UserId)
	if err != nil {
		utils.HttpResponse(c, 500, "", "error generating tokens")
		return
	}

	tokenResp := struct {
		AccessToken  string `json:"access_token"`
		RefreshToken string `json:"refresh_token"`
	}{accessToken, refreshToken}

	utils.HttpResponse(c, 200, "", "success", tokenResp)
}