<?php

namespace App\Http\Controllers\Auth;

use App\Models\User;
use App\Services\TwoFAccountService;
use App\Http\Requests\UserUpdateRequest;
use App\Http\Requests\UserDeleteRequest;
use App\Api\v1\Resources\UserResource;
use App\Http\Controllers\Controller;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Hash;
use Illuminate\Support\Facades\DB;
use Illuminate\Support\Facades\Artisan;
use App\Exceptions\UnsupportedWithReverseProxyException;
use Exception;

class UserController extends Controller
{
    /**
     * The TwoFAccount Service instance.
     */
    protected $twofaccountService;


    /**
     * Create a new controller instance.
     *
     * @param  \App\Services\TwoFAccountService  $twofaccountService
     * @return void
     */
    public function __construct(TwoFAccountService $twofaccountService)
    {
        $this->twofaccountService = $twofaccountService;
        $authGuard = config('auth.defaults.guard');

        if ($authGuard === 'reverse-proxy-guard') {
            throw new UnsupportedWithReverseProxyException();
        }
    }

    
    /**
     * Update the user's profile information.
     *
     * @param  \App\Http\Requests\UserUpdateRequest $request
     * @return \App\Api\v1\Resources\UserResource
     */
    public function update(UserUpdateRequest $request)
    {
        $user = $request->user();
        $validated = $request->validated();

        if (!Hash::check( $request->password, Auth::user()->password) ) {
            return response()->json(['message' => __('errors.wrong_current_password')], 400);
        }

        if (!config('2fauth.config.isDemoApp') ) {
            tap($user)->update([
                'name' => $validated['name'],
                'email' => $validated['email'],
            ]);
        }        

        return new UserResource($user);
    }

    
    /**
     * Delete the user's account.
     *
     * @param  \App\Http\Requests\UserDeleteRequest $request
     * @return \Illuminate\Http\JsonResponse
     */
    public function delete(UserDeleteRequest $request)
    {
        $validated = $request->validated();

        if (!Hash::check( $validated['password'], Auth::user()->password) ) {
            return response()->json(['message' => __('errors.wrong_current_password')], 400);
        }

        try {
            DB::transaction(function () {
                DB::table('twofaccounts')->delete();
                DB::table('groups')->delete();
                DB::table('options')->delete();
                DB::table('web_authn_credentials')->delete();
                DB::table('web_authn_recoveries')->delete();
                DB::table('oauth_access_tokens')->delete();
                DB::table('oauth_auth_codes')->delete();
                DB::table('oauth_clients')->delete();
                DB::table('oauth_personal_access_clients')->delete();
                DB::table('oauth_refresh_tokens')->delete();
                DB::table('password_resets')->delete();
                DB::table('users')->delete();
            });

            Artisan::call('passport:install --force');
            Artisan::call('config:clear');
        }
        catch (\Throwable $e) {
            return response()->json(['message' => __('errors.user_deletion_failed')], 400);
        }

        return response()->json(null, 204);
    }
}