import { RadioItemAuthType } from 'src/app/modules/app-radio/app-auth-method-radio/app-auth-method-radio.component';
import {
  APIAuthMethodType,
  APIConfig,
  OIDCAuthMethodType,
  OIDCConfig,
  OIDCGrantType,
  OIDCResponseType,
} from 'src/app/proto/generated/zitadel/app_pb';

export const CODE_METHOD: RadioItemAuthType = {
  key: 'CODE',
  titleI18nKey: 'APP.AUTHMETHODS.CODE.TITLE',
  descI18nKey: 'APP.AUTHMETHODS.CODE.DESCRIPTION',
  disabled: false,
  prefix: 'CODE',
  background: 'linear-gradient(40deg, rgb(25 105 143) 30%, rgb(23 95 129))',
  responseType: OIDCResponseType.OIDC_RESPONSE_TYPE_CODE,
  grantType: OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE,
  authMethod: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_BASIC,
  recommended: false,
};
export const PKCE_METHOD: RadioItemAuthType = {
  key: 'PKCE',
  titleI18nKey: 'APP.AUTHMETHODS.PKCE.TITLE',
  descI18nKey: 'APP.AUTHMETHODS.PKCE.DESCRIPTION',
  disabled: false,
  prefix: 'PKCE',
  background: 'linear-gradient(40deg, #059669 30%, #047857)',
  responseType: OIDCResponseType.OIDC_RESPONSE_TYPE_CODE,
  grantType: OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE,
  authMethod: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_NONE,
  recommended: true,
};
export const POST_METHOD: RadioItemAuthType = {
  key: 'POST',
  titleI18nKey: 'APP.AUTHMETHODS.POST.TITLE',
  descI18nKey: 'APP.AUTHMETHODS.POST.DESCRIPTION',
  disabled: false,
  prefix: 'POST',
  background: 'linear-gradient(40deg, #c53b3b 30%, rgb(169 51 51))',
  responseType: OIDCResponseType.OIDC_RESPONSE_TYPE_CODE,
  grantType: OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE,
  authMethod: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_POST,
  notRecommended: true,
};
export const PK_JWT_METHOD: RadioItemAuthType = {
  key: 'PK_JWT',
  titleI18nKey: 'APP.AUTHMETHODS.PK_JWT.TITLE',
  descI18nKey: 'APP.AUTHMETHODS.PK_JWT.DESCRIPTION',
  disabled: false,
  prefix: 'JWT',
  background: 'linear-gradient(40deg, rgb(70 77 145) 30%, rgb(58 65 124))',
  responseType: OIDCResponseType.OIDC_RESPONSE_TYPE_CODE,
  grantType: OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE,
  authMethod: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_PRIVATE_KEY_JWT,
  apiAuthMethod: APIAuthMethodType.API_AUTH_METHOD_TYPE_PRIVATE_KEY_JWT,
  // recommended: true,
};
export const BASIC_AUTH_METHOD: RadioItemAuthType = {
  key: 'BASIC',
  titleI18nKey: 'APP.AUTHMETHODS.BASIC.TITLE',
  descI18nKey: 'APP.AUTHMETHODS.BASIC.DESCRIPTION',
  disabled: false,
  prefix: 'BASIC',
  background: 'linear-gradient(40deg, #c53b3b 30%, rgb(169 51 51))',
  responseType: OIDCResponseType.OIDC_RESPONSE_TYPE_CODE,
  grantType: OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE,
  authMethod: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_POST,
  apiAuthMethod: APIAuthMethodType.API_AUTH_METHOD_TYPE_BASIC,
};

export const IMPLICIT_METHOD: RadioItemAuthType = {
  key: 'IMPLICIT',
  titleI18nKey: 'APP.AUTHMETHODS.IMPLICIT.TITLE',
  descI18nKey: 'APP.AUTHMETHODS.IMPLICIT.DESCRIPTION',
  disabled: false,
  prefix: 'IMP',
  background: 'linear-gradient(40deg, #c53b3b 30%, rgb(169 51 51))',
  responseType: OIDCResponseType.OIDC_RESPONSE_TYPE_ID_TOKEN,
  grantType: OIDCGrantType.OIDC_GRANT_TYPE_IMPLICIT,
  authMethod: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_NONE,
  notRecommended: true,
};

export const CUSTOM_METHOD: RadioItemAuthType = {
  key: 'CUSTOM',
  titleI18nKey: 'APP.AUTHMETHODS.CUSTOM.TITLE',
  descI18nKey: 'APP.AUTHMETHODS.CUSTOM.DESCRIPTION',
  disabled: false,
  prefix: 'CUSTOM',
  background: 'linear-gradient(40deg, #1f2937, #111827)',
};

export function getPartialConfigFromAuthMethod(authMethod: string):
  | {
      oidc?: Partial<OIDCConfig.AsObject>;
      api?: Partial<APIConfig.AsObject>;
    }
  | undefined {
  let config: {
    oidc?: Partial<OIDCConfig.AsObject>;
    api?: Partial<APIConfig.AsObject>;
  };
  switch (authMethod) {
    case CODE_METHOD.key:
      config = {
        oidc: {
          responseTypesList: [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
          grantTypesList: [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE],
          authMethodType: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_BASIC,
        },
      };
      return config;
    case PKCE_METHOD.key:
      config = {
        oidc: {
          responseTypesList: [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
          grantTypesList: [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE],
          authMethodType: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_NONE,
        },
      };
      return config;
    case POST_METHOD.key:
      config = {
        oidc: {
          responseTypesList: [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
          grantTypesList: [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE],
          authMethodType: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_POST,
        },
      };
      return config;
    case PK_JWT_METHOD.key:
      config = {
        oidc: {
          responseTypesList: [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
          grantTypesList: [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE],
          authMethodType: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_PRIVATE_KEY_JWT,
        },
        api: {
          authMethodType: APIAuthMethodType.API_AUTH_METHOD_TYPE_PRIVATE_KEY_JWT,
        },
      };
      return config;
    case BASIC_AUTH_METHOD.key:
      config = {
        oidc: {
          authMethodType: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_BASIC,
        },
        api: {
          authMethodType: APIAuthMethodType.API_AUTH_METHOD_TYPE_BASIC,
        },
      };
      return config;
    case IMPLICIT_METHOD.key:
      config = {
        oidc: {
          responseTypesList: [OIDCResponseType.OIDC_RESPONSE_TYPE_ID_TOKEN_TOKEN],
          grantTypesList: [OIDCGrantType.OIDC_GRANT_TYPE_IMPLICIT],
          authMethodType: OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_NONE,
        },
        api: {
          authMethodType: APIAuthMethodType.API_AUTH_METHOD_TYPE_PRIVATE_KEY_JWT,
        },
      };
      return config;
    default:
      return undefined;
  }
}

export function getAuthMethodFromPartialConfig(config: {
  oidc?: Partial<OIDCConfig.AsObject>;
  api?: Partial<APIConfig.AsObject>;
}): string {
  if (config?.oidc) {
    const toCheck = [config.oidc.responseTypesList, config.oidc.grantTypesList?.sort(), config.oidc.authMethodType];
    const code = JSON.stringify([
      [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
      [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE],
      OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_BASIC,
    ]);

    const codeWithRefresh = JSON.stringify([
      [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
      [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE, OIDCGrantType.OIDC_GRANT_TYPE_REFRESH_TOKEN].sort(),
      OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_BASIC,
    ]);

    const pkce = JSON.stringify([
      [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
      [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE],
      OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_NONE,
    ]);

    const pkceWithRefresh = JSON.stringify([
      [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
      [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE, OIDCGrantType.OIDC_GRANT_TYPE_REFRESH_TOKEN].sort(),
      OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_NONE,
    ]);

    const post = JSON.stringify([
      [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
      [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE],
      OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_POST,
    ]);

    const postWithRefresh = JSON.stringify([
      [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
      [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE, OIDCGrantType.OIDC_GRANT_TYPE_REFRESH_TOKEN].sort(),
      OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_POST,
    ]);

    const pkjwt = JSON.stringify([
      [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
      [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE],
      OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_PRIVATE_KEY_JWT,
    ]);

    const pkjwtWithRefresh = JSON.stringify([
      [OIDCResponseType.OIDC_RESPONSE_TYPE_CODE],
      [OIDCGrantType.OIDC_GRANT_TYPE_AUTHORIZATION_CODE, OIDCGrantType.OIDC_GRANT_TYPE_REFRESH_TOKEN].sort(),
      OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_PRIVATE_KEY_JWT,
    ]);

    const implicit = JSON.stringify([
      [OIDCResponseType.OIDC_RESPONSE_TYPE_ID_TOKEN_TOKEN],
      [OIDCGrantType.OIDC_GRANT_TYPE_IMPLICIT],
      OIDCAuthMethodType.OIDC_AUTH_METHOD_TYPE_NONE,
    ]);

    switch (JSON.stringify(toCheck)) {
      case code:
        return CODE_METHOD.key;
      case codeWithRefresh:
        return CODE_METHOD.key;

      case pkce:
        return PKCE_METHOD.key;
      case pkceWithRefresh:
        return PKCE_METHOD.key;

      case post:
        return POST_METHOD.key;
      case postWithRefresh:
        return POST_METHOD.key;

      case pkjwt:
        return PK_JWT_METHOD.key;
      case pkjwtWithRefresh:
        return PK_JWT_METHOD.key;

      case implicit:
        return IMPLICIT_METHOD.key;
      default:
        return CUSTOM_METHOD.key;
    }
  } else if (config.api && config.api.authMethodType !== undefined) {
    switch (config.api.authMethodType.toString()) {
      case APIAuthMethodType.API_AUTH_METHOD_TYPE_PRIVATE_KEY_JWT.toString():
        return PK_JWT_METHOD.key;
      case APIAuthMethodType.API_AUTH_METHOD_TYPE_BASIC.toString():
        return BASIC_AUTH_METHOD.key;
      default:
        return CUSTOM_METHOD.key;
    }
  } else {
    return CUSTOM_METHOD.key;
  }
}