const db = require('../surreal');
const { generateAccesToken, generateRefreshToken, generatePermtoken } = require("../auth/auth");
const { hash, generatePassword } = require("../auth/password");
const router = require('express').Router();
const timestringconverter = require('timestringconverter');

router.get('/password', async (req, res) => {
    res.json({ password: generatePassword() });
});

router.post('/', async (req, res) => {
    const { username, password, remember } = req.body;

    if (!username) return res.status(400).json({ error: "Username not provided" });
    if (!password) return res.status(400).json({ error: "Password not provided" });

    if (username.length > process.env.USERNAMELENGTH) return res.status(400).json({ error: "Username too long" });

    if (password.length < process.env.PASSMINLENGTH) return res.status(400).json({ error: "Password too short" });

    if (password.length > process.env.PASSMAXLENGTH) return res.status(400).json({ error: "Password too long" });

    if ((password.match(/[a-z]/g) || []).length < process.env.PASSMINLOWERCASE) return res.status(400).json({ error: "Password does not contain enough lowercase letters" });

    if ((password.match(/[A-Z]/g) || []).length < process.env.PASSMINUPPERCASE) return res.status(400).json({ error: "Password does not contain enough uppercase letters" });

    if ((password.match(/[0-9]/g) || []).length < process.env.PASSMINNUMBERS) return res.status(400).json({ error: "Password does not contain enough numbers" });

    if ((password.match(/[!@#$%^&*()_+~`|}{[\]:;?><,./-]/g) || []).length < process.env.PASSMINSYMBOLS) return res.status(400).json({ error: "Password does not contain enough symbols" });

    const userExists = await db.query(`SELECT * FROM users WHERE username = string::lowercase("${username}")`);

    if (userExists.length != 0) {
        return res.status(400).json({ message: 'Username already exists' });
    }

    const hashedPassword = await hash(password);

    const currentDate = new Date();

    const user = {
        username: username,
        password: hashedPassword,
        creation: currentDate.toLocaleDateString('en-gb'),
    }

    console.log(user)

    const newUser = await db.create('users', user);
    console.log(newUser);

    const accessToken = generateAccesToken(newUser[0].username);
    const refreshToken = generateRefreshToken(newUser[0].username);
    if (remember == true) {
        const permtoken = generatePermtoken(newUser[0].username);
        res.cookie('permtoken', permtoken, { httpOnly: true, maxAge: 1000 * timestringconverter.ToSec(process.env.PERMTOKENAGE), path: '/permtoken' });
    }

    res.cookie('accessToken', accessToken, { httpOnly: true, maxAge: 1000 * timestringconverter.ToSec(process.env.ACCESSTOKENAGE) });
    res.cookie('refreshToken', refreshToken, { httpOnly: true, maxAge: 1000 * timestringconverter.ToSec(process.env.REFRESHTOKENAGE), path: '/refreshtoken' });

    res.status(200).json({ message: 'User created' });
});

module.exports = router;