/*
This file is part of the Notesnook Sync Server project (https://notesnook.com/)

Copyright (C) 2023 Streetwriters (Private) Limited

This program is free software: you can redistribute it and/or modify
it under the terms of the Affero GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.

This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
Affero GNU General Public License for more details.

You should have received a copy of the Affero GNU General Public License
along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

using System;
using System.Security.Claims;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc;
using MongoDB.Bson;
using Notesnook.API.Authorization;
using Notesnook.API.Interfaces;
using Notesnook.API.Models;
using Notesnook.API.Repositories;
using Streetwriters.Common;
using Streetwriters.Data.Repositories;

namespace Notesnook.API.Controllers
{
    [ApiController]
    [Route("inbox")]
    public class InboxController : ControllerBase
    {
        private readonly Repository<InboxApiKey> InboxApiKey;
        private readonly Repository<UserSettings> UserSetting;
        private SyncItemsRepository InboxItems;

        public InboxController(
            Repository<InboxApiKey> inboxApiKeysRepository,
            Repository<UserSettings> userSettingsRepository,
            ISyncItemsRepositoryAccessor syncItemsRepositoryAccessor)
        {
            InboxApiKey = inboxApiKeysRepository;
            UserSetting = userSettingsRepository;
            InboxItems = syncItemsRepositoryAccessor.InboxItems;
        }

        [HttpGet("api-keys")]
        [Authorize(Policy = "Notesnook")]
        public async Task<IActionResult> GetApiKeysAsync()
        {
            var userId = User.FindFirstValue("sub");
            try
            {
                var apiKeys = await InboxApiKey.FindAsync(t => t.UserId == userId);
                return Ok(apiKeys);
            }
            catch (Exception ex)
            {
                await Slogger<InboxController>.Error(nameof(GetApiKeysAsync), "Couldn't get inbox api keys.", userId, ex.ToString());
                return BadRequest(new { error = ex.Message });
            }
        }

        [HttpPost("api-keys")]
        [Authorize(Policy = "Notesnook")]
        public async Task<IActionResult> CreateApiKeyAsync([FromBody] InboxApiKey request)
        {
            var userId = User.FindFirstValue("sub");
            try
            {
                if (string.IsNullOrWhiteSpace(request.Name))
                {
                    return BadRequest(new { error = "Api key name is required." });
                }
                if (request.ExpiryDate <= -1)
                {
                    return BadRequest(new { error = "Valid expiry date is required." });
                }

                var count = await InboxApiKey.CountAsync(t => t.UserId == userId);
                if (count >= 10)
                {
                    return BadRequest(new { error = "Maximum of 10 inbox api keys allowed." });
                }

                var inboxApiKey = new InboxApiKey
                {
                    UserId = userId,
                    Name = request.Name,
                    DateCreated = DateTimeOffset.UtcNow.ToUnixTimeMilliseconds(),
                    ExpiryDate = request.ExpiryDate,
                    LastUsedAt = 0
                };
                await InboxApiKey.InsertAsync(inboxApiKey);
                return Ok(inboxApiKey);
            }
            catch (Exception ex)
            {
                await Slogger<InboxController>.Error(nameof(CreateApiKeyAsync), "Couldn't create inbox api key.", userId, ex.ToString());
                return BadRequest(new { error = ex.Message });
            }
        }

        [HttpDelete("api-keys/{apiKey}")]
        [Authorize(Policy = "Notesnook")]
        public async Task<IActionResult> DeleteApiKeyAsync(string apiKey)
        {
            var userId = User.FindFirstValue("sub");
            try
            {
                if (string.IsNullOrWhiteSpace(apiKey))
                {
                    return BadRequest(new { error = "Api key is required." });
                }

                await InboxApiKey.DeleteAsync(t => t.UserId == userId && t.Key == apiKey);
                return Ok(new { message = "Api key deleted successfully." });
            }
            catch (Exception ex)
            {
                await Slogger<InboxController>.Error(nameof(DeleteApiKeyAsync), "Couldn't delete inbox api key.", userId, ex.ToString());
                return BadRequest(new { error = ex.Message });
            }
        }

        [HttpGet("public-encryption-key")]
        [Authorize(Policy = InboxApiKeyAuthenticationDefaults.AuthenticationScheme)]
        public async Task<IActionResult> GetPublicKeyAsync()
        {
            var userId = User.FindFirstValue("sub");
            try
            {
                var userSetting = await UserSetting.FindOneAsync(u => u.UserId == userId);
                if (string.IsNullOrWhiteSpace(userSetting?.InboxKeys?.Public))
                {
                    return BadRequest(new { error = "Inbox public key is not configured." });
                }
                return Ok(new { key = userSetting.InboxKeys.Public });
            }
            catch (Exception ex)
            {
                await Slogger<InboxController>.Error(nameof(GetPublicKeyAsync), "Couldn't get user's inbox's public key.", userId, ex.ToString());
                return BadRequest(new { error = ex.Message });
            }
        }

        [HttpPost("items")]
        [Authorize(Policy = InboxApiKeyAuthenticationDefaults.AuthenticationScheme)]
        public async Task<IActionResult> CreateInboxItemAsync([FromBody] InboxSyncItem request)
        {
            var userId = User.FindFirstValue("sub");
            try
            {
                if (request.Key.Algorithm != Algorithms.XSAL_X25519_7)
                {
                    return BadRequest(new { error = $"Only {Algorithms.XSAL_X25519_7} is supported for inbox item password." });
                }
                if (string.IsNullOrWhiteSpace(request.Key.Cipher))
                {
                    return BadRequest(new { error = "Inbox item password cipher is required." });
                }
                if (request.Key.Length <= 0)
                {
                    return BadRequest(new { error = "Valid inbox item password length is required." });
                }
                if (request.Algorithm != Algorithms.Default)
                {
                    return BadRequest(new { error = $"Only {Algorithms.Default} is supported for inbox item." });
                }
                if (request.Version <= 0)
                {
                    return BadRequest(new { error = "Valid inbox item version is required." });
                }
                if (string.IsNullOrWhiteSpace(request.Cipher) || string.IsNullOrWhiteSpace(request.IV))
                {
                    return BadRequest(new { error = "Inbox item cipher and iv is required." });
                }
                if (request.Length <= 0)
                {
                    return BadRequest(new { error = "Valid inbox item length is required." });
                }

                request.UserId = userId;
                request.ItemId = ObjectId.GenerateNewId().ToString();
                await InboxItems.InsertAsync(request);
                return Ok();
            }
            catch (Exception ex)
            {
                await Slogger<InboxController>.Error(nameof(CreateInboxItemAsync), "Couldn't create inbox item.", userId, ex.ToString());
                return BadRequest(new { error = ex.Message });
            }
        }
    }
}