<?php

namespace App\Http\Controllers;

use App\Http\Requests\AuthRequest;
use App\Http\Requests\RefreshTokenRequest;
use Illuminate\Http\JsonResponse;
use App\Http\Resources\AuthResource;
use App\Services\AuthService;

class AuthController extends Controller
{
    public function __construct(protected AuthService $authService) {}

    public function login(AuthRequest $request): JsonResponse
    {
        $validated = $request->validated();

        $result = $this->authService->login(
            email: $validated["email"],
            password: $validated["password"],
        );

        if (!$result) {
            return $this->errorResponse(message: __("auth.failed"), code: 401);
        }

        return $this->successResponse(
            payload: new AuthResource($result["payload"]),
            message: __("auth.logged_in"),
        )->withCookie(
            cookie(
                "refresh_token",
                $result["refreshToken"],
                config("sanctum.rt_expiration") * 60,
                "/",
                config("session.domain"),
                config("session.secure"),
                true,
                false,
                "Lax",
            ),
        );
    }

    public function logout(): JsonResponse
    {
        $this->authService->logout();

        return $this->successResponse(
            message: __("auth.logout"),
        )->withoutCookie("refresh_token");
    }

    public function refresh(RefreshTokenRequest $request): JsonResponse
    {
        $refresh_token = $request->cookie("refresh_token");

        if (is_null($refresh_token)) {
            return $this->errorResponse(
                code: 403,
            )->withoutCookie("refresh_token");
        }

        $result = $this->authService->refresh(
            $refresh_token
        );

        if (is_null($result)) {
            return $this->errorResponse(
                message: __("auth.unauthorized"),
                code: 403,
            )->withoutCookie("refresh_token");
        }

        return $this->successResponse(
            payload: new AuthResource($result["payload"]),
        )->withCookie(
            cookie(
                "refresh_token",
                $result["refreshToken"],
                config("sanctum.rt_expiration") * 60,
                "/",
                config("session.domain"),
                config("session.secure"),
                true,
                true,
                "Lax",
            ),
        );
    }
}