const Router = require("@koa/router")
const controller = require("../../controllers/admin/users")
const joiValidator = require("../../../middleware/joi-validator")
const adminOnly = require("../../../middleware/adminOnly")
const Joi = require("joi")

const router = Router()

function buildUserSaveValidation(isSelf = false) {
  let schema = {
    email: Joi.string().allow(null, ""),
    password: Joi.string().allow(null, ""),
    forceResetPassword: Joi.boolean().optional(),
    firstName: Joi.string().allow(null, ""),
    lastName: Joi.string().allow(null, ""),
    builder: Joi.object({
      global: Joi.boolean().optional(),
      apps: Joi.array().optional(),
    })
      .unknown(true)
      .optional(),
    // maps appId -> roleId for the user
    roles: Joi.object().pattern(/.*/, Joi.string()).required().unknown(true),
  }
  if (!isSelf) {
    schema = {
      ...schema,
      _id: Joi.string(),
      _rev: Joi.string(),
    }
  }
  return joiValidator.body(Joi.object(schema).required().unknown(true))
}

function buildInviteValidation() {
  // prettier-ignore
  return joiValidator.body(Joi.object({
    email: Joi.string().required(),
  }).required())
}

function buildInviteAcceptValidation() {
  // prettier-ignore
  return joiValidator.body(Joi.object({
    inviteCode: Joi.string().required(),
    password: Joi.string().required(),
  }).required().unknown(true))
}

router
  .post(
    "/api/admin/users",
    adminOnly,
    buildUserSaveValidation(),
    controller.save
  )
  .get("/api/admin/users", adminOnly, controller.fetch)
  .delete("/api/admin/users/:id", adminOnly, controller.destroy)
  .get("/api/admin/roles/:appId")
  .post(
    "/api/admin/users/invite",
    adminOnly,
    buildInviteValidation(),
    controller.invite
  )
  // non-admin endpoints
  .post(
    "/api/admin/users/self",
    buildUserSaveValidation(true),
    controller.updateSelf
  )
  .post(
    "/api/admin/users/invite/accept",
    buildInviteAcceptValidation(),
    controller.inviteAccept
  )
  .post("/api/admin/users/init", controller.adminUser)
  .get("/api/admin/users/self", controller.getSelf)
  // admin endpoint but needs to come at end (blocks other endpoints otherwise)
  .get("/api/admin/users/:id", adminOnly, controller.find)

module.exports = router