// Code scaffolded by goctl. Safe to edit.
// goctl 1.10.1

package pub

import (
	"context"
	"time"

	"perms-system-server/internal/middleware"
	"perms-system-server/internal/response"
	"perms-system-server/internal/svc"
	"perms-system-server/internal/types"

	"github.com/zeromicro/go-zero/core/logx"
)

type AdminLoginByCapLogic struct {
	logx.Logger
	ctx    context.Context
	svcCtx *svc.ServiceContext
}

func NewAdminLoginByCapLogic(ctx context.Context, svcCtx *svc.ServiceContext) *AdminLoginByCapLogic {
	return &AdminLoginByCapLogic{
		Logger: logx.WithContext(ctx),
		ctx:    ctx,
		svcCtx: svcCtx,
	}
}

func (l *AdminLoginByCapLogic) AdminLoginByCap(req *types.AdminLoginByCapReq) (*types.LoginResp, error) {
	if err := verifyCapToken(l.ctx, l.svcCtx.Config.Capjs, req.CapToken, l.Logger); err != nil {
		return nil, err
	}

	clientIP := middleware.GetClientIP(l.ctx)
	result, err := ValidateAdminLogin(l.ctx, l.svcCtx, req.Username, req.Password, req.ManagementKey, clientIP)
	if err != nil {
		if le, ok := err.(*LoginError); ok {
			switch le.Code {
			case 401:
				return nil, response.ErrUnauthorized(le.Message)
			case 429:
				return nil, response.NewCodeError(429, le.Message)
			case 503:
				return nil, response.NewCodeError(503, le.Message)
			}
		}
		return nil, err
	}

	ud := result.UserDetails
	return &types.LoginResp{
		AccessToken:  result.AccessToken,
		RefreshToken: result.RefreshToken,
		Expires:      time.Now().Unix() + l.svcCtx.Config.Auth.AccessExpire,
		UserInfo: types.UserInfo{
			UserId:             ud.UserId,
			Username:           ud.Username,
			Nickname:           ud.Nickname,
			Avatar:             ud.Avatar,
			Email:              ud.Email,
			Phone:              ud.Phone,
			IsSuperAdmin:       ud.IsSuperAdminRaw,
			MustChangePassword: ud.MustChangePwdRaw,
			MemberType:         ud.MemberType,
			Perms:              ud.Perms,
		},
	}, nil
}