using System.Data;
using AMREZ.EOP.Abstractions.Applications.Tenancy;
using AMREZ.EOP.Abstractions.Applications.UseCases.Authentications;
using AMREZ.EOP.Abstractions.Infrastructures.Common;
using AMREZ.EOP.Abstractions.Infrastructures.Repositories;
using AMREZ.EOP.Contracts.DTOs.Authentications.EnableTotp;
using Microsoft.AspNetCore.Http;

namespace AMREZ.EOP.Application.UseCases.Authentications;

public sealed class EnableTotpUseCase : IEnableTotpUseCase
{
    private readonly ITenantResolver _resolver;
    private readonly IUnitOfWork _uow;
    private readonly IUserRepository _users;
    private readonly IHttpContextAccessor _http;

    public EnableTotpUseCase(ITenantResolver r, IUnitOfWork uow, IUserRepository users, IHttpContextAccessor http)
    { _resolver = r; _uow = uow; _users = users; _http = http; }

    public async Task<EnableTotpResponse?> ExecuteAsync(EnableTotpRequest request, CancellationToken ct = default)
    {
        var http = _http.HttpContext ?? throw new InvalidOperationException("No HttpContext");
        var tenant = _resolver.Resolve(http, request);
        if (tenant is null) return null;

        await _uow.BeginAsync(tenant, IsolationLevel.ReadCommitted, ct);
        try
        {
            var factor = await _users.AddTotpFactorAsync(request.UserId, request.Label, request.Secret, ct);
            await _uow.CommitAsync(ct);
            return new EnableTotpResponse(factor.Id, request.Label);
        }
        catch { await _uow.RollbackAsync(ct); throw; }
    }
}