using System;
using Oqtane.Shared;

namespace Oqtane.Models
{
    /// <summary>
    /// Permission information for anything in Oqtane.
    /// Things in Oqtane are identified as Entities, so anything that can be identified can be described here. 
    /// </summary>
    public class Permission : ModelBase
    {
        /// <summary>
        /// Internal ID storing this information.
        /// </summary>
        public int PermissionId { get; set; }

        /// <summary>
        /// Reference to the <see cref="Site"/> which contains both the target Entity and permissions. 
        /// </summary>
        public int SiteId { get; set; }

        /// <summary>
        /// Name of the Entity these permissions apply to. 
        /// </summary>
        public string EntityName { get; set; }

        /// <summary>
        /// ID of the Entity these permissions apply to. 
        /// </summary>
        public int EntityId { get; set; }

        /// <summary>
        /// What this permission is called.
        /// TODO: todoc - must clarify what exactly this means, I assume any module can give it's own names for Permissions
        /// </summary>
        public string PermissionName { get; set; }

        /// <summary>
        /// <see cref="Role"/> this permission applies to. So if all users in the Role _Customers_ have this permission, then it would reference that Role.
        /// If null, then the permission doesn't target a role but probably a <see cref="User"/> (see <see cref="UserId"/>).
        /// </summary>
        public int? RoleId { get; set; }


        /// <summary>
        /// <see cref="User"/> this permission applies to.  
        /// If null, then the permission doesn't target a User but probably a <see cref="Role"/> (see <see cref="RoleId"/>).
        /// </summary>
        public int? UserId { get; set; }

        /// <summary>
        /// Determines if Authorization is sufficient to receive this permission.
        /// </summary>
        public bool IsAuthorized { get; set; }

        /// <summary>
        /// Reference to the <see cref="Role"/> based on the <see cref="RoleId"/> - can be nullable.
        /// </summary>
        /// <remarks>
        /// It's not certain if this will always be populated. TODO: todoc/verify
        /// </remarks>
        public Role Role { get; set; }

        public Permission()
        {
        }

        public Permission(string permissionName, string roleName, bool isAuthorized)
        {
            Initialize("", -1, permissionName, roleName, null, isAuthorized);
        }

        public Permission(string permissionName, int userId, bool isAuthorized)
        {
            Initialize("", -1, permissionName, "", userId, isAuthorized);
        }

        public Permission(string entityName, string permissionName, string roleName, int? userId, bool isAuthorized)
        {
            Initialize(entityName, -1, permissionName, roleName, userId, isAuthorized);
        }

        public Permission(string entityName, int entityId, string permissionName, string roleName, int? userId, bool isAuthorized)
        {
            Initialize(entityName, entityId, permissionName, roleName, userId, isAuthorized);
        }

        private void Initialize(string entityName, int entityId, string permissionName, string roleName, int? userId, bool isAuthorized)
        {
            EntityName = entityName;
            EntityId = entityId;
            PermissionName = permissionName;
            if (!string.IsNullOrEmpty(roleName))
            {
                Role = new Role { Name = roleName };
                RoleId = null;
                UserId = null;
            }
            else
            {
                Role = null;
                RoleId = null;
                UserId = userId;
            }
            IsAuthorized = isAuthorized;
        }
    }
}