import { merge } from 'lodash-es'
import { http } from '@/services/http'
import { userStore } from '@/stores/userStore'
import { useLocalStorage } from '@/composables/useLocalStorage'
import { use } from '@/utils/helpers'

export interface UpdateCurrentProfileData {
  current_password: string
  name: string
  email: string
  avatar?: string
  new_password?: string
}

const API_TOKEN_STORAGE_KEY = 'api-token'
const AUDIO_TOKEN_STORAGE_KEY = 'audio-token'
const REDIRECT_KEY = 'redirect'

const { get: lsGet, set: lsSet, remove: lsRemove } = useLocalStorage(false) // authentication local storage data aren't namespaced

export const authService = {
  async login(email: string, password: string) {
    this.setTokensUsingCompositeToken(await http.post<CompositeToken>('me', { email, password }))
    this.maybeRedirect()
  },

  async logout() {
    await http.delete('me')
    this.destroy()
  },

  getProfile: async () => await http.get<User>('me'),

  updateProfile: async (data: UpdateCurrentProfileData) => {
    merge(userStore.current, await http.put<User>('me', data))
  },

  getApiToken: () => lsGet<string>(API_TOKEN_STORAGE_KEY),

  hasApiToken() {
    return Boolean(this.getApiToken())
  },

  setApiToken: (token: string) => lsSet(API_TOKEN_STORAGE_KEY, token),

  setTokensUsingCompositeToken(compositeToken: CompositeToken) {
    this.setApiToken(compositeToken.token)
    this.setAudioToken(compositeToken['audio-token'])
  },

  destroy: () => {
    lsRemove(API_TOKEN_STORAGE_KEY)
    lsRemove(AUDIO_TOKEN_STORAGE_KEY)
  },

  setAudioToken: (token: string) => lsSet(AUDIO_TOKEN_STORAGE_KEY, token),

  getAudioToken: () => {
    // for backward compatibility, we first try to get the audio token, and fall back to the (full-privileged) API token
    return lsGet(AUDIO_TOKEN_STORAGE_KEY) || lsGet(API_TOKEN_STORAGE_KEY)
  },

  requestResetPasswordLink: async (email: string) => await http.post('forgot-password', { email }),

  resetPassword: async (email: string, password: string, token: string) => {
    return await http.post('reset-password', { email, password, token })
  },

  getOneTimeToken: async () => (await http.get<{ token: string }>('one-time-token')).token,

  setRedirect: (url?: string) => lsSet(REDIRECT_KEY, url || location.toString()),

  hasRedirect: () => Boolean(lsGet(REDIRECT_KEY)),

  maybeRedirect: () =>
    use(lsGet<string | null>(REDIRECT_KEY), url => {
      lsRemove(REDIRECT_KEY)
      location.assign(url)
    }),
}