package com.iailab.module.system.controller.admin.permission;

import cn.hutool.core.collection.CollUtil;
import com.iailab.framework.common.pojo.CommonResult;
import com.iailab.module.system.controller.admin.permission.vo.permission.PermissionAssignRoleDataScopeReqVO;
import com.iailab.module.system.controller.admin.permission.vo.permission.PermissionAssignRoleMenuReqVO;
import com.iailab.module.system.controller.admin.permission.vo.permission.PermissionAssignUserRoleReqVO;
import com.iailab.module.system.service.permission.PermissionService;
import com.iailab.module.system.service.tenant.TenantService;
import io.swagger.v3.oas.annotations.Operation;
import io.swagger.v3.oas.annotations.Parameter;
import io.swagger.v3.oas.annotations.tags.Tag;
import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.validation.annotation.Validated;
import org.springframework.web.bind.annotation.*;

import javax.annotation.Resource;
import javax.validation.Valid;
import java.util.Set;

import static com.iailab.framework.common.pojo.CommonResult.success;

/**
 * æƒé™ Controllerï¼Œæä¾›èµ‹äºˆç”¨æˆ·ã€è§’è‰²çš„æƒé™çš„ API æŽ¥å£
 *
 * @author iailab
 */
@Tag(name = "ç®¡ç†åŽå° - æƒé™")
@RestController
@RequestMapping("/system/permission")
public class PermissionController {

    @Resource
    private PermissionService permissionService;
    @Resource
    private TenantService tenantService;

    @Operation(summary = "èŽ·å¾—è§’è‰²æ‹¥æœ‰çš„èœå•ç¼–å·")
    @Parameter(name = "roleId", description = "è§’è‰²ç¼–å·", required = true)
    @GetMapping("/list-role-menus")
    @PreAuthorize("@ss.hasPermission('system:permission:assign-role-menu')")
    public CommonResult<Set<Long>> getRoleMenuList(Long roleId) {
        return success(permissionService.getRoleMenuListByRoleId(roleId));
    }

    @Operation(summary = "èŽ·å¾—è§’è‰²æ‹¥æœ‰çš„èœå•ç¼–å·")
    @Parameter(name = "roleId", description = "è§’è‰²ç¼–å·", required = true)
    @GetMapping("/list-role-app-menus")
    @PreAuthorize("@ss.hasPermission('system:permission:assign-role-menu')")
    public CommonResult<Set<Long>> getRoleAppMenuList(Long roleId) {
        return success(permissionService.getRoleAppMenuListByRoleId(roleId));
    }

    @PostMapping("/assign-role-menu")
    @Operation(summary = "èµ‹äºˆè§’è‰²èœå•")
    @PreAuthorize("@ss.hasPermission('system:permission:assign-role-menu')")
    public CommonResult<Boolean> assignRoleMenu(@Validated @RequestBody PermissionAssignRoleMenuReqVO reqVO) {
        // å¼€å¯å¤šç§Ÿæˆ·çš„æƒ…å†µä¸‹ï¼Œéœ€è¦è¿‡æ»¤æŽ‰æœªå¼€é€šçš„èœå•
        tenantService.handleTenantMenu(menuIds -> reqVO.getMenuIds().removeIf(menuId -> !CollUtil.contains(menuIds, menuId)));

        // æ‰§è¡Œèœå•çš„åˆ†é…
        permissionService.assignRoleMenu(reqVO.getRoleId(), reqVO.getMenuIds());
        return success(true);
    }

//    @PostMapping("/assign-role-app-menu")
//    @Operation(summary = "èµ‹äºˆè§’è‰²èœå•")
//    @PreAuthorize("@ss.hasPermission('system:permission:assign-role-menu')")
//    public CommonResult<Boolean> assignRoleAppMenu(@Validated @RequestBody PermissionAssignRoleMenuReqVO reqVO) {
//        // æ‰§è¡Œèœå•çš„åˆ†é…
//        permissionService.assignRoleAppMenu(reqVO.getRoleId(), reqVO.getMenuIds());
//        return success(true);
//    }

    @PostMapping("/assign-role-data-scope")
    @Operation(summary = "èµ‹äºˆè§’è‰²æ•°æ®æƒé™")
    @PreAuthorize("@ss.hasPermission('system:permission:assign-role-data-scope')")
    public CommonResult<Boolean> assignRoleDataScope(@Valid @RequestBody PermissionAssignRoleDataScopeReqVO reqVO) {
        permissionService.assignRoleDataScope(reqVO.getRoleId(), reqVO.getDataScope(), reqVO.getDataScopeDeptIds());
        return success(true);
    }

    @Operation(summary = "èŽ·å¾—ç®¡ç†å‘˜æ‹¥æœ‰çš„è§’è‰²ç¼–å·åˆ—è¡¨")
    @Parameter(name = "userId", description = "ç”¨æˆ·ç¼–å·", required = true)
    @GetMapping("/list-user-roles")
    @PreAuthorize("@ss.hasPermission('system:permission:assign-user-role')")
    public CommonResult<Set<Long>> listAdminRoles(@RequestParam("userId") Long userId) {
        return success(permissionService.getUserRoleIdListByUserId(userId));
    }

    @Operation(summary = "èµ‹äºˆç”¨æˆ·è§’è‰²")
    @PostMapping("/assign-user-role")
    @PreAuthorize("@ss.hasPermission('system:permission:assign-user-role')")
    public CommonResult<Boolean> assignUserRole(@Validated @RequestBody PermissionAssignUserRoleReqVO reqVO) {
        permissionService.assignUserRole(reqVO.getUserId(), reqVO.getRoleIds());
        return success(true);
    }

}