use axum::{extract::{Path, Query, State}, http::StatusCode, Json};

use sea_orm::{ColumnTrait, Condition};
use crate::{errors::UpubError, model, routes::activitypub::{JsonLD, Pagination}, server::{auth::{AuthIdentity, Identity}, Context}, url};

pub async fn get(
	State(ctx): State<Context>,
	Path(id): Path<String>,
	AuthIdentity(auth): AuthIdentity,
) -> crate::Result<JsonLD<serde_json::Value>> {
	match auth {
		Identity::Anonymous => Err(StatusCode::FORBIDDEN.into()),
		Identity::Remote(_) => Err(StatusCode::FORBIDDEN.into()),
		Identity::Local(user) => if ctx.uid(id.clone()) == user {
			crate::server::builders::collection(&url!(ctx, "/users/{id}/inbox"), None)
		} else {
			Err(StatusCode::FORBIDDEN.into())
		},
	}
}

pub async fn page(
	State(ctx): State<Context>,
	Path(id): Path<String>,
	AuthIdentity(auth): AuthIdentity,
	Query(page): Query<Pagination>,
) -> crate::Result<JsonLD<serde_json::Value>> {
	let Identity::Local(uid) = &auth else {
		// local inbox is only for local users
		return Err(UpubError::forbidden());
	};
	if uid != &ctx.uid(id.clone()) {
		return Err(UpubError::forbidden());
	}

	crate::server::builders::paginate(
		url!(ctx, "/users/{id}/inbox/page"),
		Condition::any()
			.add(model::addressing::Column::Actor.eq(uid))
			.add(model::object::Column::AttributedTo.eq(uid))
			.add(model::activity::Column::Actor.eq(uid)),
		ctx.db(),
		page,
	)
		.await
}

pub async fn post(
	State(ctx): State<Context>,
	Path(_id): Path<String>,
	AuthIdentity(_auth): AuthIdentity,
	Json(activity): Json<serde_json::Value>,
) -> Result<(), UpubError> {
	// POSTing to user inboxes is effectively the same as POSTing to the main inbox
	super::super::inbox::post(State(ctx), AuthIdentity(_auth), Json(activity)).await
}