<?php

namespace App\Middlewares;

use Pecee\Http\Middleware\IMiddleware;
use Pecee\Http\Request;

use App\Models\User;
use App\Utilities\Cookie;
use App\Utilities\Session;
use App\Models\Permission;

class AdminAuth implements IMiddleware
{

    public function handle(Request $request): void
    {
        $user = new User();

        if (empty(Session::get('user')) && empty(Cookie::get('uid'))) {
            response()->redirect(url('admin.login') . '?ref=' . url());
        }

        //login using cookie
        if (empty(Session::get('user')) && !empty(Cookie::get('uid'))) {
            $user_data = $user->authenticate();
            if (empty($user_data)) {
                response()->redirect(url('admin.logout'));
            }
            Session::set(['user' => $user_data[0], 'agent' => $_SERVER['HTTP_USER_AGENT']]);
        }

        //check user status
        if (empty($user->userStatus(Session::get('user')['id']))) {
            response()->redirect(url('admin.logout'));
        }

        //get/refresh role and permissions
        Session::delete('permissions');
        $roleId = $user->userRoleId(Session::get('user')['id']);
        $permissions_arr = array();
        if (!empty($roleId)) {
            $permissions =  Permission::rolePermissions($roleId);
            if (!empty($permissions)) {
                foreach ($permissions as $permission) {
                    $permissions_arr[] = $permission['permissionId'];
                }
            }
        }

        $userAccessArr = $user->userAccess(Session::get('user')['id']);
        $permission_access = array_merge($permissions_arr, $userAccessArr[0]);

        Session::set(['permissions' => $permission_access]);

        //check if user is admin
        if (!Session::get('permissions')['admin']) {
            response()->redirect('/');
        }
    }
}