import { afterAll, beforeAll, describe, expect, test } from "bun:test";
import type { Application, Token } from "@prisma/client";
import { client } from "~database/datasource";
import { createNewLocalUser } from "~database/entities/User";
import { sendTestRequest, wrapRelativeUrl } from "./utils";

const base_url = "http://lysand.localhost:8080"; //config.http.base_url;

let client_id: string;
let client_secret: string;
let code: string;
let token: Token;

beforeAll(async () => {
    // Init test user
    await createNewLocalUser({
        email: "test@test.com",
        username: "test",
        password: "test",
        display_name: "",
    });
});

describe("POST /api/v1/apps/", () => {
    test("should create an application", async () => {
        const formData = new FormData();

        formData.append("client_name", "Test Application");
        formData.append("website", "https://example.com");
        formData.append("redirect_uris", "https://example.com");
        formData.append("scopes", "read write");

        const response = await sendTestRequest(
            new Request(wrapRelativeUrl("/api/v1/apps/", base_url), {
                method: "POST",
                body: formData,
            }),
        );

        expect(response.status).toBe(200);
        expect(response.headers.get("content-type")).toBe("application/json");

        // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment
        const json = await response.json();

        expect(json).toEqual({
            id: expect.any(String),
            name: "Test Application",
            website: "https://example.com",
            client_id: expect.any(String),
            client_secret: expect.any(String),
            redirect_uri: "https://example.com",
            vapid_link: null,
        });

        // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment, @typescript-eslint/no-unsafe-member-access
        client_id = json.client_id;
        // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment, @typescript-eslint/no-unsafe-member-access
        client_secret = json.client_secret;
    });
});

describe("POST /auth/login/", () => {
    test("should get a code", async () => {
        const formData = new FormData();

        formData.append("email", "test@test.com");
        formData.append("password", "test");

        const response = await sendTestRequest(
            new Request(
                wrapRelativeUrl(
                    `/auth/login/?client_id=${client_id}&redirect_uri=https://example.com&response_type=code&scope=read+write`,
                    base_url,
                ),
                {
                    method: "POST",
                    body: formData,
                },
            ),
        );

        expect(response.status).toBe(302);
        expect(response.headers.get("Location")).toMatch(
            /^\/oauth\/redirect\?redirect_uri=https%3A%2F%2Fexample.com&code=[a-f0-9]+&client_id=[a-zA-Z0-9_-]+&application=Test\+Application&website=https%3A%2F%2Fexample.com&scope=read\+write$/,
        );

        code =
            new URL(
                response.headers.get("Location") ?? "",
                "http://lysand.localhost:8080",
            ).searchParams.get("code") ?? "";
    });
});

describe("POST /oauth/token/", () => {
    test("should get an access token", async () => {
        const formData = new FormData();

        formData.append("grant_type", "authorization_code");
        formData.append("code", code);
        formData.append("redirect_uri", "https://example.com");
        formData.append("client_id", client_id);
        formData.append("client_secret", client_secret);
        formData.append("scope", "read+write");

        const response = await sendTestRequest(
            new Request(wrapRelativeUrl("/oauth/token/", base_url), {
                method: "POST",
                body: formData,
            }),
        );

        // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment
        const json = await response.json();

        expect(response.status).toBe(200);
        expect(response.headers.get("content-type")).toBe("application/json");
        expect(json).toEqual({
            access_token: expect.any(String),
            token_type: "Bearer",
            scope: "read write",
            created_at: expect.any(Number),
        });

        // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment, @typescript-eslint/no-unsafe-member-access
        token = json;
    });
});

describe("GET /api/v1/apps/verify_credentials", () => {
    test("should return the authenticated application's credentials", async () => {
        const response = await sendTestRequest(
            new Request(
                wrapRelativeUrl("/api/v1/apps/verify_credentials", base_url),
                {
                    headers: {
                        Authorization: `Bearer ${token.access_token}`,
                    },
                },
            ),
        );

        expect(response.status).toBe(200);
        expect(response.headers.get("content-type")).toBe("application/json");

        const credentials = (await response.json()) as Partial<Application>;

        expect(credentials.name).toBe("Test Application");
        expect(credentials.website).toBe("https://example.com");
        expect(credentials.redirect_uris).toBe("https://example.com");
        expect(credentials.scopes).toBe("read write");
    });
});

afterAll(async () => {
    // Clean up user
    await client.user.delete({
        where: {
            username: "test",
        },
    });
});