package com.yj.earth.business.controller;

import cn.dev33.satoken.stp.SaTokenInfo;
import cn.dev33.satoken.stp.StpUtil;
import cn.hutool.crypto.digest.BCrypt;
import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
import com.baomidou.mybatisplus.extension.plugins.pagination.Page;
import com.yj.earth.annotation.CheckAuth;
import com.yj.earth.annotation.EncryptResponse;
import com.yj.earth.annotation.ExcludeField;
import com.yj.earth.annotation.RoleAccess;
import com.yj.earth.business.domain.Role;
import com.yj.earth.business.domain.User;
import com.yj.earth.business.service.RoleService;
import com.yj.earth.dto.relation.UserBindOrUnBindRoleDto;
import com.yj.earth.dto.user.AddUserDto;
import com.yj.earth.dto.user.UpdatePasswordDto;
import com.yj.earth.dto.user.UpdateUserDto;
import com.yj.earth.dto.user.UserLoginDto;
import com.yj.earth.business.service.UserService;
import com.yj.earth.common.util.ApiResponse;
import io.swagger.v3.oas.annotations.Operation;
import io.swagger.v3.oas.annotations.Parameter;
import io.swagger.v3.oas.annotations.tags.Tag;
import org.springframework.beans.BeanUtils;
import org.springframework.web.bind.annotation.*;

import javax.annotation.Resource;
import java.util.List;
import java.util.Map;

@Tag(name = "用户数据管理")
@RestController
@RequestMapping("/user")
public class UserController {
    @Resource
    private UserService userService;
    @Resource
    private RoleService roleService;

    @CheckAuth
    @Operation(summary = "新增用户")
    @PostMapping("/add")
    @RoleAccess(roleNames = "管理员")
    public ApiResponse save(@RequestBody AddUserDto addUserDto) {
        User user = new User();
        BeanUtils.copyProperties(addUserDto, user);
        if (userService.getOne(new LambdaQueryWrapper<User>().eq(User::getUsername, user.getUsername())) != null) {
            return ApiResponse.failure("用户已存在");
        }
        String password = user.getPassword();
        user.setPassword(BCrypt.hashpw(password, BCrypt.gensalt()));
        if (addUserDto.getRoleId() == null) {
            // 查询系统名字为默认角色的角色ID
            user.setRoleId(roleService.getOne(new LambdaQueryWrapper<Role>().eq(Role::getRoleName, "默认角色")).getId());
        }
        userService.save(user);
        return ApiResponse.success(null);
    }

    @CheckAuth
    @Operation(summary = "删除用户")
    @PostMapping("/delete")
    @RoleAccess(roleNames = "管理员")
    public ApiResponse delete(@Parameter(description = "用户ID") String id) {
        userService.removeById(id);
        return ApiResponse.success(null);
    }

    @CheckAuth
    @Operation(summary = "更新信息")
    @PostMapping("/update")
    public ApiResponse update(@RequestBody UpdateUserDto updateUserDto) {
        User user = new User();
        BeanUtils.copyProperties(updateUserDto, user);
        userService.updateById(user);
        return ApiResponse.success(null);
    }

    @CheckAuth
    @Operation(summary = "更新密码")
    @PostMapping("/updatePassword")
    public ApiResponse updatePassword(@RequestBody UpdatePasswordDto updatePasswordDto) {
        User user = userService.getById(updatePasswordDto.getId());
        if (user == null) {
            return ApiResponse.failure("用户不存在");
        }
        if (!BCrypt.checkpw(updatePasswordDto.getOldPassword(), user.getPassword())) {
            return ApiResponse.failure("旧密码错误");
        }
        user.setPassword(BCrypt.hashpw(updatePasswordDto.getNewPassword(), BCrypt.gensalt()));
        userService.updateById(user);
        return ApiResponse.success(null);
    }

    @CheckAuth
    @Operation(summary = "用户详情")
    @GetMapping("/getById")
    public ApiResponse get(@Parameter(description = "用户ID") String id) {
        return ApiResponse.success(userService.getById(id));
    }

    @CheckAuth
    @Operation(summary = "用户列表")
    @GetMapping("/list")
    @RoleAccess(roleNames = "管理员")
    public ApiResponse list(@Parameter(description = "分页数量") Integer pageNum, @Parameter(description = "分页大小") Integer pageSize) {
        Page<User> userPage = userService.page(new Page<>(pageNum, pageSize));
        return ApiResponse.success(userPage);
    }

    @CheckAuth
    @Operation(summary = "设置角色")
    @PostMapping("/userBindOrUnBindRole")
    @RoleAccess(roleNames = "管理员")
    public ApiResponse userBindOrUnBindRole(@RequestBody UserBindOrUnBindRoleDto userBindOrUnBindRoleDto) {
        userService.lambdaUpdate().set(User::getRoleId, userBindOrUnBindRoleDto.getRoleId()).eq(User::getId, userBindOrUnBindRoleDto.getUserId()).update();
        return ApiResponse.success(null);
    }

    @Operation(summary = "用户登录")
    @PostMapping("/login")
    public ApiResponse login(@RequestBody UserLoginDto userLoginDto) {
        User user = userService.getOne(new LambdaQueryWrapper<User>().eq(User::getUsername, userLoginDto.getUsername()));
        if (user == null) {
            return ApiResponse.failure("用户名不存在");
        }
        if (!BCrypt.checkpw(userLoginDto.getPassword(), user.getPassword())) {
            return ApiResponse.failure("密码错误");
        }
        StpUtil.login(user.getId());
        SaTokenInfo tokenInfo = StpUtil.getTokenInfo();
        return ApiResponse.success(Map.of("header", tokenInfo.getTokenName(), "token", tokenInfo.getTokenValue()));
    }

    @Operation(summary = "用户登出")
    @PostMapping("/logout")
    public ApiResponse logout() {
        StpUtil.logout();
        return ApiResponse.success(null);
    }

    @Operation(summary = "获取当前用户信息")
    @GetMapping("/getCurrentUserInfo")
    public ApiResponse getCurrentUserInfo() {
        return ApiResponse.success(userService.getById(StpUtil.getLoginIdAsString()));
    }
}