// Copyright Inrupt Inc.
//
// Permission is hereby granted, free of charge, to any person obtaining a copy
// of this software and associated documentation files (the "Software"), to deal in
// the Software without restriction, including without limitation the rights to use,
// copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the
// Software, and to permit persons to whom the Software is furnished to do so,
// subject to the following conditions:
//
// The above copyright notice and this permission notice shall be included in
// all copies or substantial portions of the Software.
//
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED,
// INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A
// PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
// HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
// OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
// SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
//

/**
 * @hidden
 * @packageDocumentation
 */

/**
 * Top Level core document. Responsible for setting up the dependency graph
 */
import type {
  IStorage,
  ITokenRefresher,
  IIssuerConfigFetcher,
  IClientRegistrar,
  IStorageUtility,
  ILoginHandler,
  ISessionInfoManager,
  IIncomingRedirectHandler,
} from "@inrupt/solid-client-authn-core";
import {
  InMemoryStorage,
  IWaterfallLogoutHandler,
} from "@inrupt/solid-client-authn-core";
import StorageUtilityNode from "./storage/StorageUtility";
import ClientAuthentication from "./ClientAuthentication";
import OidcLoginHandler from "./login/oidc/OidcLoginHandler";
import AggregateOidcHandler from "./login/oidc/AggregateOidcHandler";
import AuthorizationCodeWithPkceOidcHandler from "./login/oidc/oidcHandlers/AuthorizationCodeWithPkceOidcHandler";
import RefreshTokenOidcHandler from "./login/oidc/oidcHandlers/RefreshTokenOidcHandler";
import IssuerConfigFetcher from "./login/oidc/IssuerConfigFetcher";
import { SessionInfoManager } from "./sessionInfo/SessionInfoManager";
import { AuthCodeRedirectHandler } from "./login/oidc/incomingRedirectHandler/AuthCodeRedirectHandler";
import { FallbackRedirectHandler } from "./login/oidc/incomingRedirectHandler/FallbackRedirectHandler";
import AggregateIncomingRedirectHandler from "./login/oidc/AggregateIncomingRedirectHandler";
import Redirector from "./login/oidc/Redirector";
import ClientRegistrar from "./login/oidc/ClientRegistrar";
import TokenRefresher from "./login/oidc/refresh/TokenRefresher";
import ClientCredentialsOidcHandler from "./login/oidc/oidcHandlers/ClientCredentialsOidcHandler";

export const buildLoginHandler = (
  storageUtility: IStorageUtility,
  tokenRefresher: ITokenRefresher,
  issuerConfigFetcher: IIssuerConfigFetcher,
  clientRegistrar: IClientRegistrar,
): ILoginHandler => {
  return new OidcLoginHandler(
    storageUtility,
    new AggregateOidcHandler([
      new RefreshTokenOidcHandler(tokenRefresher, storageUtility),
      new ClientCredentialsOidcHandler(tokenRefresher),
      new AuthorizationCodeWithPkceOidcHandler(
        storageUtility,
        new Redirector(),
      ),
    ]),
    issuerConfigFetcher,
    clientRegistrar,
  );
};

export const buildRedirectHandler = (
  storageUtility: IStorageUtility,
  sessionInfoManager: ISessionInfoManager,
  issuerConfigFetcher: IIssuerConfigFetcher,
  clientRegistrar: IClientRegistrar,
  tokenRefresher: ITokenRefresher,
): IIncomingRedirectHandler => {
  return new AggregateIncomingRedirectHandler([
    new AuthCodeRedirectHandler(
      storageUtility,
      sessionInfoManager,
      issuerConfigFetcher,
      clientRegistrar,
      tokenRefresher,
    ),
    // This catch-all class will always be able to handle the
    // redirect IRI, so it must be registered last.
    new FallbackRedirectHandler(),
  ]);
};

/**
 *
 * @param dependencies
 * @hidden
 */
export function getClientAuthenticationWithDependencies(dependencies: {
  secureStorage?: IStorage;
  insecureStorage?: IStorage;
}): ClientAuthentication {
  const inMemoryStorage = new InMemoryStorage();
  const secureStorage = dependencies.secureStorage || inMemoryStorage;
  const insecureStorage = dependencies.insecureStorage || inMemoryStorage;

  const storageUtility = new StorageUtilityNode(secureStorage, insecureStorage);

  const issuerConfigFetcher = new IssuerConfigFetcher(storageUtility);
  const clientRegistrar = new ClientRegistrar(storageUtility);

  const sessionInfoManager = new SessionInfoManager(storageUtility);

  const tokenRefresher = new TokenRefresher(
    storageUtility,
    issuerConfigFetcher,
    clientRegistrar,
  );

  const loginHandler = buildLoginHandler(
    storageUtility,
    tokenRefresher,
    issuerConfigFetcher,
    clientRegistrar,
  );

  const redirectHandler = buildRedirectHandler(
    storageUtility,
    sessionInfoManager,
    issuerConfigFetcher,
    clientRegistrar,
    tokenRefresher,
  );

  return new ClientAuthentication(
    loginHandler,
    redirectHandler,
    new IWaterfallLogoutHandler(sessionInfoManager, new Redirector()),
    sessionInfoManager,
  );
}