import { auth, method, route, swagger, validate, config } from "@noderun/hapi-router"
import { gSuccess, gFail } from "@/util"
import * as bcrypt from "bcrypt"
import * as jwt from "jsonwebtoken"
import * as Joi from "joi"
import { UserSchema } from "@/schema"
import { ReturnValue, Req, Res } from "#/global"

export default class {
    @validate({
        payload: UserSchema,
    })
    @method("POST")
    @swagger("用户注册", "返回注册用户的信息", ["api"])
    @auth(false)
    async register(request: Req, h: Res): ReturnValue {
        let { username, password, email,  } = request.payload as any
        if (!username) username = email
        const User = request.getModel("User")
        logger.trace(username, email)
        try {
            const result = await User.findOne({ where: { username: username } })
            if (result != null) {
                return gFail(null, "已存在该用户")
            }
            let salt = bcrypt.genSaltSync(10)
            let pwdLock = bcrypt.hashSync(password, salt)
            // @ts-ignore
            await User.create({ username, password: pwdLock, email })
            return gSuccess("success", "you have a good heart.")
        } catch (e) {
            return gFail(null, "新建用户失败")
        }
    }

    @method("POST")
    async logout(request: Req, h: Res): ReturnValue {
        request.cookieAuth.clear()
        return gSuccess("success")
    }

    @validate({
        payload: UserSchema,
    })
    @auth(false)
    @method("POST")
    @swagger("用户登录", "返回注册用户的信息", ["api"])
    async login(request: Req, h: Res): ReturnValue {
        let { username, password } = request.payload as any
        const User = request.getModel("User")
        const result = <any>await User.findOne({ where: { username: username } })
        if (result == null) {
            return gFail(null, "不存在该用户")
        }
        const validUser = bcrypt.compareSync(password, result.password)
        if (!validUser) {
            return gFail(null, "密码不正确")
        }
        //===== JWT ===== Start
        // let token = jwt.sign({ id: result.id }, process.env.KEY);
        // return gSuccess({ token: token });
        //===== JWT =====  End
        //===== session ===== Start
        request.cookieAuth.set({ id: result.id })
        //===== session =====  End
        return gSuccess({})
    }

    @method("DELETE")
    @auth()
    @swagger("删除用户", "删除用户账号", ["sum"])
    async del(request: Req, h: Res): ReturnValue {
        const { id } = request.auth.credentials
        const User = request.getModel("User")
        let result = await User.findOne({ where: { id: id } })
        if (result == null) {
            return gFail(null, "不存在该用户")
        }
        await result.destroy()
        return gSuccess(null, "删除成功")
    }

    @method("GET")
    @swagger("获取用户信息", "返回注册用户的信息", ["用户操作", "api"])
    async userinfo(request: Req, h: Res): ReturnValue {
        const { id } = request.auth.credentials
        const User = request.getModel("User")
        let result = <any>await User.findOne({ where: { id: id } })
        if (result == null) {
            return gFail(null, "不存在该用户")
        }
        result = result.toJSON()
        delete result.password
        return gSuccess(result)
    }
}