import fs from 'node:fs/promises';
import os from 'node:os';
import path from 'node:path';

import { Secp256k1Keypair, randomStr } from '@atproto/crypto';
import * as pds from '@atproto/pds';

import getPort from 'get-port';
import * as ui8 from 'uint8arrays';

import { ADMIN_PASSWORD, JWT_SECRET } from './constants.js';

export interface PdsServerOptions extends Partial<pds.ServerEnvironment> {
	didPlcUrl: string;
}

export interface AdditionalPdsContext {
	dataDirectory: string;
	blobstoreLoc: string;
}

export class TestPdsServer {
	constructor(
		public readonly server: pds.PDS,
		public readonly url: string,
		public readonly port: number,
		public readonly additional: AdditionalPdsContext,
	) {}

	static async create(config: PdsServerOptions): Promise<TestPdsServer> {
		const plcRotationKey = await Secp256k1Keypair.create({ exportable: true });
		const plcRotationPriv = ui8.toString(await plcRotationKey.export(), 'hex');
		const recoveryKey = (await Secp256k1Keypair.create()).did();

		const port = config.port || (await getPort());
		const url = `http://localhost:${port}`;

		const blobstoreLoc = path.join(os.tmpdir(), randomStr(8, 'base32'));
		const dataDirectory = path.join(os.tmpdir(), randomStr(8, 'base32'));

		await fs.mkdir(dataDirectory, { recursive: true });

		const env: pds.ServerEnvironment = {
			devMode: true,
			port,
			dataDirectory: dataDirectory,
			blobstoreDiskLocation: blobstoreLoc,
			recoveryDidKey: recoveryKey,
			adminPassword: ADMIN_PASSWORD,
			jwtSecret: JWT_SECRET,
			serviceHandleDomains: ['.test'],
			bskyAppViewUrl: 'https://appview.invalid',
			bskyAppViewDid: 'did:example:invalid',
			bskyAppViewCdnUrlPattern: 'http://cdn.appview.com/%s/%s/%s',
			modServiceUrl: 'https://moderator.invalid',
			modServiceDid: 'did:example:invalid',
			plcRotationKeyK256PrivateKeyHex: plcRotationPriv,
			inviteRequired: false,
			disableSsrfProtection: true,
			serviceName: 'Development PDS',
			brandColor: '#ffcb1e',
			errorColor: undefined,
			logoUrl: 'https://uxwing.com/wp-content/themes/uxwing/download/animals-and-birds/bee-icon.png',
			homeUrl: 'https://bsky.social/',
			termsOfServiceUrl: 'https://bsky.social/about/support/tos',
			privacyPolicyUrl: 'https://bsky.social/about/support/privacy-policy',
			supportUrl: 'https://blueskyweb.zendesk.com/hc/en-us',
			...config,
		};

		const cfg = pds.envToCfg(env);
		const secrets = pds.envToSecrets(env);

		const server = await pds.PDS.create(cfg, secrets);

		await server.start();

		return new TestPdsServer(server, url, port, {
			dataDirectory: dataDirectory,
			blobstoreLoc: blobstoreLoc,
		});
	}

	get ctx(): pds.AppContext {
		return this.server.ctx;
	}

	adminAuth(): string {
		return 'Basic ' + ui8.toString(ui8.fromString(`admin:${ADMIN_PASSWORD}`, 'utf8'), 'base64pad');
	}

	adminAuthHeaders() {
		return {
			authorization: this.adminAuth(),
		};
	}

	jwtSecretKey() {
		return pds.createSecretKeyObject(JWT_SECRET);
	}

	async processAll() {
		await this.ctx.backgroundQueue.processAll();
	}

	async close() {
		await this.server.destroy();

		await fs.rm(this.additional.dataDirectory, { recursive: true, force: true });
		await fs.rm(this.additional.blobstoreLoc, { force: true });
	}
}