<?php
use Respect\Validation\Validator as DataValidator;
DataValidator::with('CustomValidations', true);

class TicketGetController extends Controller {
    const PATH = '/get';
    const METHOD = 'POST';

    private $ticket;

    public function validations() {
        $validations = [
            'permission' => 'user',
            'requestData' => [
                'ticketNumber' => [
                    'validation' => DataValidator::validTicketNumber(),
                    'error' => ERRORS::INVALID_TICKET
                ]
            ]
        ];

        if(!Controller::isUserSystemEnabled() && !Controller::isStaffLogged()) {
            $validations['permission'] = 'any';

            if(Controller::request('token')) {
                $session = Session::getInstance();
                
                $validations['requestData']['csrf_token'] = [
                    'validation' => DataValidator::equals($session->getToken()),
                    'error' => ERRORS::NO_PERMISSION
                ];
                $validations['requestData']['ticketNumber'] = [
                    'validation' => DataValidator::equals($session->getTicketNumber()),
                    'error' => ERRORS::INVALID_TICKET
                ];
            } else {
                $validations['requestData']['email'] = [
                    'validation' => DataValidator::email(),
                    'error' => ERRORS::INVALID_EMAIL
                ];
                $validations['requestData']['captcha'] = [
                    'validation' => DataValidator::captcha(),
                    'error' => ERRORS::INVALID_CAPTCHA
                ];
            }
        }

        return $validations;
    }

    public function handler() {
        $email = Controller::request('email');

        $this->ticket = Ticket::getByTicketNumber(Controller::request('ticketNumber'));

        if(!Controller::isUserSystemEnabled() && !Controller::isStaffLogged()) {
            if($this->ticket->authorEmail === $email) {
                if(!Controller::request('token')) {
                    $this->generateSessionToken();
                } else {
                    Response::respondSuccess($this->ticket->toArray());
                }
                return;
            } else {
                throw new Exception(ERRORS::NO_PERMISSION);
            }
        }

        if ($this->shouldDenyPermission()) {
            throw new Exception(ERRORS::NO_PERMISSION);
        } else {
            Response::respondSuccess($this->ticket->toArray());
        }
    }

    private function generateSessionToken() {
        $session = Session::getInstance();
        $token = Hashing::generateRandomToken();

        $session->createTicketSession($this->ticket->ticketNUmber);

        Response::respondSuccess(['token' => $token, 'ticketNumber' => $this->ticket->ticketNUmber]);
    }

    private function shouldDenyPermission() {
        $user = Controller::getLoggedUser();

        return (!Controller::isStaffLogged() && (Controller::isUserSystemEnabled() && $this->ticket->author->id !== $user->id)) ||
               (Controller::isStaffLogged() && (($this->ticket->owner && $this->ticket->owner->id !== $user->id) || !$user->sharedDepartmentList->includesId($this->ticket->department->id)));
    }
}