<?php

final class RssBridge
{
    private static Container $container;

    public function __construct(
        Container $container
    ) {
        self::$container = $container;
    }

    public function main(Request $request): Response
    {
        foreach ($request->toArray() as $key => $value) {
            if (!is_string($value)) {
                return new Response(render(__DIR__ . '/../templates/error.html.php', [
                    'message' => "Query parameter \"$key\" is not a string.",
                ]), 400);
            }
        }

        if (Configuration::getConfig('system', 'enable_maintenance_mode')) {
            return new Response(render(__DIR__ . '/../templates/error.html.php', [
                'title'     => '503 Service Unavailable',
                'message'   => 'RSS-Bridge is down for maintenance.',
            ]), 503);
        }

        // HTTP Basic auth check
        if (Configuration::getConfig('authentication', 'enable')) {
            if (Configuration::getConfig('authentication', 'password') === '') {
                return new Response('The authentication password cannot be the empty string', 500);
            }
            $user = $request->server('PHP_AUTH_USER');
            $password = $request->server('PHP_AUTH_PW');
            if ($user === null || $password === null) {
                $html = render(__DIR__ . '/../templates/error.html.php', [
                    'message' => 'Please authenticate in order to access this instance!',
                ]);
                return new Response($html, 401, ['WWW-Authenticate' => 'Basic realm="RSS-Bridge"']);
            }
            if (
                (Configuration::getConfig('authentication', 'username') !== $user)
                || (! hash_equals(Configuration::getConfig('authentication', 'password'), $password))
            ) {
                $html = render(__DIR__ . '/../templates/error.html.php', [
                    'message' => 'Please authenticate in order to access this instance!',
                ]);
                return new Response($html, 401, ['WWW-Authenticate' => 'Basic realm="RSS-Bridge"']);
            }
            // At this point the username and password was correct
        }

        // Add token as attribute to request
        $request = $request->withAttribute('token', $request->get('token'));

        // Token authentication check
        if (Configuration::getConfig('authentication', 'token')) {
            if (! $request->attribute('token')) {
                return new Response(render(__DIR__ . '/../templates/token.html.php', [
                    'message' => '',
                ]), 401);
            }
            if (! hash_equals(Configuration::getConfig('authentication', 'token'), $request->attribute('token'))) {
                return new Response(render(__DIR__ . '/../templates/token.html.php', [
                    'message' => 'Invalid token',
                ]), 401);
            }
        }

        $action = $request->get('action', 'Frontpage');
        $actionName = strtolower($action) . 'Action';
        $actionName = implode(array_map('ucfirst', explode('-', $actionName)));
        $filePath = __DIR__ . '/../actions/' . $actionName . '.php';
        if (!file_exists($filePath)) {
            return new Response(render(__DIR__ . '/../templates/error.html.php', ['message' => 'Invalid action']), 400);
        }

        $controller = self::$container[$actionName];

        $response = $controller($request);

        return $response;
    }

    public static function getLogger(): Logger
    {
        // null logger is only for the tests not to fail
        return self::$container['logger'] ?? new NullLogger();
    }

    public static function getCache(): CacheInterface
    {
        return self::$container['cache'];
    }

    public static function getHttpClient(): HttpClient
    {
        return self::$container['http_client'];
    }
}