import { Secp256k1PublicKey } from '#keypairs/secp256k1';

import { P256PublicKey } from './keypairs/p256.ts';
import { parseDidKey, type FoundPublicKey } from './multibase.ts';
import type { VerifyOptions } from './types.ts';

export const verifySig = async (
	key: FoundPublicKey,
	sig: Uint8Array<ArrayBuffer>,
	data: Uint8Array<ArrayBuffer>,
	opts?: VerifyOptions,
) => {
	switch (key.type) {
		case 'p256': {
			const keypair = await P256PublicKey.importRaw(key.publicKeyBytes);
			return await keypair.verify(sig, data, opts);
		}
		case 'secp256k1': {
			const keypair = await Secp256k1PublicKey.importRaw(key.publicKeyBytes);
			return await keypair.verify(sig, data, opts);
		}
	}
};

export interface VerifyWithDidKeyOptions extends VerifyOptions {
	jwtAlg?: string;
}

export const verifySigWithDidKey = async (
	didKey: string,
	sig: Uint8Array<ArrayBuffer>,
	data: Uint8Array<ArrayBuffer>,
	opts?: VerifyWithDidKeyOptions,
): Promise<boolean> => {
	const found = parseDidKey(didKey);
	if (opts?.jwtAlg && opts.jwtAlg !== found.jwtAlg) {
		throw new Error(`expected ${opts.jwtAlg} as the jwt algorithm, got ${found.jwtAlg}`);
	}

	return await verifySig(found, sig, data, opts);
};