package auth

import (
	"gitee.com/hanshengjian/keyauth-g7/apps/token"
	"gitee.com/hanshengjian/keyauth-g7/common/utils"

	"github.com/emicklei/go-restful/v3"
	"github.com/infraboard/mcube/http/label"
	"github.com/infraboard/mcube/http/response"
)

// Go-Restful auth Middleware
func (a *KeyauthAuther) RestfulAuthHandlerFunc(
	req *restful.Request,
	resp *restful.Response,
	chain *restful.FilterChain,
) {
	meta := req.SelectedRoute().Metadata()
	a.log.Debug(meta)

	var isAuthEnable bool
	if authV, ok := meta[label.Auth]; ok {
		switch v := authV.(type) {
		case bool:
			isAuthEnable = v
		case string:
			isAuthEnable = v == "true"
		}
	}

	if isAuthEnable {
		// 处理Request对象
		// *restful.Request

		// 1. 认证中间件, 需要获取Token
		tkStr := utils.GetToken(req.Request)

		// 2. 到用户中心验证token合法性, 依赖用户中心的Grpc Client
		validateReq := token.NewValidateTokenRequest(tkStr)
		tk, err := a.auth.ValidateToken(req.Request.Context(), validateReq)
		if err != nil {
			response.Failed(resp.ResponseWriter, err)
			return
		}

		// Set Context
		req.SetAttribute("token", tk)
		// req.Attribute("token").(*token.Token)
	}

	chain.ProcessFilter(req, resp)
}