import { createInstance } from 'prop-ini';
import { getAwsCredentialsFile } from './getAwsCredentialsFile';
import { Profile } from '../model/credentialsProfile';
import {
  accessKey,
  credentialProcess,
  managedBy,
  secretKey,
  sessionToken,
} from './awsCredentialsFileContstants';
import { sensitive } from './sensitive';

// This roughly models the result of decoding the credentials file with prop-ini
interface AwsCredsStructure {
  sections: {
    [key: string]: {
      [accessKey]?: string;
      [secretKey]?: string;
      [sessionToken]?: string;
      [credentialProcess]?: string;
      [managedBy]?: string;
    };
  };
}

// TODO: This could be refactored to repeatedly call getProfile() instead of duplicating the
// logic, although we would first need to break up the logic in getProfile() into smaller
// functions so that we're not performing tons of file I/O in this function

export function getAllProfiles(
  includeNonAlksProfiles: boolean = false,
  showSensitiveValues: boolean = false
): Profile[] {
  const credFile = getAwsCredentialsFile();
  const propIni = createInstance();
  const awsCreds = propIni.decode({ file: credFile }) as AwsCredsStructure;
  const sections = awsCreds.sections;

  const result: Profile[] = Object.entries(sections)
    .filter(
      ([_name, section]) =>
        includeNonAlksProfiles || section[managedBy] === 'alks'
    )
    .map(([name, section]) => ({
      name,
      [accessKey]: section[accessKey],
      [secretKey]: showSensitiveValues
        ? section[secretKey]
        : sensitive(section[secretKey]),
      [sessionToken]: showSensitiveValues
        ? section[sessionToken]
        : sensitive(section[sessionToken]),
      [credentialProcess]: section[credentialProcess],
      [managedBy]: section[managedBy],
    }));

  return result;
}