import { HookContext } from '@feathersjs/feathers'

import { UserInterface } from '@xrengine/common/src/interfaces/User'

import { Application } from '../../declarations'
import { NotFoundException, UnauthenticatedException, UnauthorizedException } from '../util/exceptions/exception'

export default (currentType: string, scopeToVerify: string) => {
  return async (context: HookContext<Application>) => {
    if (context.params.isInternal) return context
    const loggedInUser = context.params.user as UserInterface
    if (!loggedInUser) throw new UnauthenticatedException('No logged in user')
    const scopes = await context.app.service('scope').Model.findAll({
      where: {
        userId: loggedInUser.id
      },
      raw: true,
      nest: true
    })
    if (!scopes) throw new NotFoundException('No scope available for the current user.')

    const currentScopes = scopes.reduce((result, sc) => {
      if (sc.type.split(':')[0] === currentType) result.push(sc.type.split(':')[1])
      return result
    }, [])
    if (!currentScopes.includes(scopeToVerify)) {
      if (scopeToVerify === 'admin') throw new UnauthorizedException('Must be admin to perform this action')
      else throw new UnauthorizedException(`Unauthorized ${scopeToVerify} action on ${currentType}`)
    }
    return context
  }
}

export const checkScope = async (user: UserInterface, app: Application, currentType: string, scopeToVerify: string) => {
  const scopes = await app.service('scope').Model.findAll({
    where: {
      userId: user.id
    },
    raw: true,
    nest: true
  })
  if (!scopes) throw new NotFoundException('No scope available for the current user.')

  const currentScopes = scopes.reduce((result, sc) => {
    if (sc.type.split(':')[0] === currentType) result.push(sc.type.split(':')[1])
    return result
  }, [])
  if (!currentScopes.includes(scopeToVerify)) {
    return false
  }
  return true
}