package tokens

import (
	"crypto/sha256"
	"encoding/base64"
	"log"
	"time"

	"git.qowevisa.me/Qowevisa/fin-check-api/db"
)

func CreateSessionFromToken(token string, userID uint) error {
	sessionID := getSessionIDFromToken(token)
	dbc := db.Connect()
	session := &db.Session{
		ID:       string(sessionID),
		UserID:   userID,
		ExpireAt: time.Now().Add(time.Hour),
	}
	if err := dbc.Create(session).Error; err != nil {
		return err
	}
	return nil
}

func ValidateSessionToken(token string) bool {
	sessionID := getSessionIDFromToken(token)
	dbc := db.Connect()
	session := &db.Session{}
	if err := dbc.Find(session, db.Session{ID: sessionID}).Error; err != nil {
		log.Printf("DBERROR: %v\n", err)
		return false
	}
	if session.ID == "" {
		return false
	}
	if session.ExpireAt.Unix() < time.Now().Unix() {
		dbc.Delete(session)
		return false
	}
	return session.ID != ""
}

func GetSession(token string) (*db.Session, error) {
	sessionID := getSessionIDFromToken(token)
	dbc := db.Connect()
	session := &db.Session{}
	if err := dbc.Find(session, db.Session{ID: sessionID}).Error; err != nil {
		return nil, err
	}
	return session, nil
}

func getSessionIDFromToken(token string) string {
	salt := []byte("w40DJV3v1flySvFdxHWbBSJsIOaakkVs5FG7brq4oi1#nEz2fEZxpUfyBwkkww7f")
	bytes := sha256.New().Sum(append(salt, []byte(token)...))
	return base64.URLEncoding.EncodeToString(bytes)
}