using DataProviders.Collections;
using DomainObjects.Documents;
using DomainObjects.Documents.Users;
using Microsoft.AspNetCore.Authorization;
using Microsoft.Extensions.Options;
using WeatherForecast.Policies.Abstractions;

namespace WeatherForecast.Policies {

  /// <summary>
  /// 
  /// </summary>
  public class ShopCartAuthorizationHandler : AuthorizationHandlerBase<ShopCartAuthorizationRequirement, List<ShopCartDocument>> {

    /// <summary>
    /// 
    /// </summary>
    /// <param name="configuration"></param>
    /// <param name="contextAccessor"></param>
    /// <param name="siteDataProvider"></param>
    /// <param name="userDataProvider"></param>
    public ShopCartAuthorizationHandler(
      IOptions<Configuration> configuration,
      IHttpContextAccessor contextAccessor,
      ISiteDataProvider siteDataProvider,
      IUserDataProvider userDataProvider
    ) : base(configuration, contextAccessor, siteDataProvider, userDataProvider) { }

    /// <summary>
    /// 
    /// </summary>
    /// <param name="context"></param>
    /// <param name="requirement"></param>
    /// <param name="resource"></param>
    /// <returns></returns>
    protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, ShopCartAuthorizationRequirement requirement, List<ShopCartDocument> resource) {
      
      var (site, user) = GetUser(context);
      if (site == null || user == null)
        return Task.CompletedTask;

      var userRole = GetRole(site, user);

      // Leave only admin to manage others carts
      if (userRole != Roles.Admin && resource.Any(x => x.UserId != user.Id))
        return Task.CompletedTask;

      context.Succeed(requirement);

      return Task.CompletedTask;
    }
  }

  /// <summary>
  /// 
  /// </summary>
  public class ShopCartAuthorizationRequirement : AuthorizationRequirementBase { }
}