User Management

type UserRole string

const (
    UserRoleAdmin   UserRole = "admin"
    UserRoleManager UserRole = "manager"
    UserRoleCashier UserRole = "cashier"
)

var RoleLevel = map[UserRole]int{
    UserRoleAdmin:   3,
    UserRoleManager: 2,
    UserRoleCashier: 1,
}

func (h *UsrHandler) CreateUserHandler(c fiber.Ctx) error {
    ctx := c.RequestCtx()
    req := new(CreateUserRequest)
    if err := c.Bind().Body(req); err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Invalid request body",
            Error:   err.Error(),
        })
    }

    if err := h.validator.Validate(req); err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Validation failed",
            Error:   err.Error(),
        })
    }

    user, err := h.service.CreateUser(ctx, *req)
    if err != nil {
        switch {
        case errors.Is(err, common.ErrUserExists):
            return c.Status(fiber.StatusConflict).JSON(common.ErrorResponse{
                Message: "User already exists",
            })
        case errors.Is(err, common.ErrUsernameExists):
            return c.Status(fiber.StatusConflict).JSON(common.ErrorResponse{
                Message: "Username already exists",
            })
        case errors.Is(err, common.ErrEmailExists):
            return c.Status(fiber.StatusConflict).JSON(common.ErrorResponse{
                Message: "Email already exists",
            })
        default:
            return c.Status(fiber.StatusInternalServerError).JSON(common.ErrorResponse{
                Message: "Failed to create user",
            })
        }
    }

    return c.Status(fiber.StatusCreated).JSON(common.SuccessResponse{
        Message: "User created successfully",
        Data:    user,
    })
}

func (h *UsrHandler) GetAllUsersHandler(c fiber.Ctx) error {
    ctx := c.RequestCtx()
    req := new(UsersRequest)
    if err := c.Bind().Query(req); err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Invalid query parameters",
            Error:   err.Error(),
        })
    }

    // Parse is_active boolean parameter
    isActiveStr := c.Query("is_active")
    if isActiveStr != "" {
        parsedBool, err := strconv.ParseBool(isActiveStr)
        if err == nil {
            req.IsActive = &parsedBool
        }
    }

    if err := h.validator.Validate(req); err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Validation failed",
            Error:   err.Error(),
        })
    }

    response, err := h.service.GetAllUsers(ctx, *req)
    if err != nil {
        switch {
        case errors.Is(err, common.ErrNotFound):
            return c.Status(fiber.StatusOK).JSON(common.SuccessResponse{
                Message: "Users retrieved successfully",
                Data:    response,
            })
        default:
            return c.Status(fiber.StatusInternalServerError).JSON(common.ErrorResponse{
                Message: "Failed to get users",
            })
        }
    }

    return c.Status(fiber.StatusOK).JSON(common.SuccessResponse{
        Message: "Users retrieved successfully",
        Data:    response,
    })
}

func (h *UsrHandler) GetUserByIDHandler(c fiber.Ctx) error {
    ctx := c.RequestCtx()
    id := c.Params("id")
    if id == "" {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "User ID is required",
        })
    }

    idParsed, err := uuid.Parse(id)
    if err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Invalid user ID format",
        })
    }

    user, err := h.service.GetUserByID(ctx, idParsed)
    if err != nil {
        switch {
        case errors.Is(err, common.ErrNotFound):
            return c.Status(fiber.StatusNotFound).JSON(common.ErrorResponse{
                Message: "User not found",
            })
        default:
            return c.Status(fiber.StatusInternalServerError).JSON(common.ErrorResponse{
                Message: "Failed to get user",
            })
        }
    }

    return c.Status(fiber.StatusOK).JSON(common.SuccessResponse{
        Message: "User retrieved successfully",
        Data:    user,
    })
}

func (h *UsrHandler) UpdateUserHandler(c fiber.Ctx) error {
    ctx := c.RequestCtx()
    id := c.Params("id")
    role := c.Locals("role")
    if id == "" {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "User ID is required",
        })
    }

    idParsed, err := uuid.Parse(id)
    if err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Invalid user ID format",
        })
    }

    req := new(UpdateUserRequest)
    if err := c.Bind().Body(req); err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Invalid request body",
        })
    }

    if err := h.validator.Validate(req); err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Validation failed",
            Error:   err.Error(),
        })
    }

    // Only admins can change roles
    if req.Role != nil {
        if role != user_repo.UserRoleAdmin {
            return c.Status(fiber.StatusForbidden).JSON(common.ErrorResponse{
                Message: "You are not authorized to change user roles",
            })
        }
    }

    user, err := h.service.UpdateUser(ctx, idParsed, *req)
    if err != nil {
        switch {
        case errors.Is(err, common.ErrNotFound):
            return c.Status(fiber.StatusNotFound).JSON(common.ErrorResponse{
                Message: "User not found",
            })
        case errors.Is(err, common.ErrUsernameExists):
            return c.Status(fiber.StatusConflict).JSON(common.ErrorResponse{
                Message: "Username already exists",
            })
        case errors.Is(err, common.ErrEmailExists):
            return c.Status(fiber.StatusConflict).JSON(common.ErrorResponse{
                Message: "Email already exists",
            })
        default:
            return c.Status(fiber.StatusInternalServerError).JSON(common.ErrorResponse{
                Message: "Failed to update user",
            })
        }
    }

    return c.Status(fiber.StatusOK).JSON(common.SuccessResponse{
        Message: "User updated successfully",
        Data:    user,
    })
}

func (h *UsrHandler) ToggleUserStatusHandler(c fiber.Ctx) error {
    ctx := c.RequestCtx()
    id := c.Params("id")
    if id == "" {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "User ID is required",
        })
    }

    idParsed, err := uuid.Parse(id)
    if err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Invalid user ID format",
        })
    }

    if err := h.service.ToggleUserStatus(ctx, idParsed); err != nil {
        switch {
        case errors.Is(err, common.ErrNotFound):
            return c.Status(fiber.StatusNotFound).JSON(common.ErrorResponse{
                Message: "User not found",
            })
        case errors.Is(err, common.ErrInternal):
            return c.Status(fiber.StatusInternalServerError).JSON(common.ErrorResponse{
                Message: "Failed to toggle user status",
            })
        default:
            return c.Status(fiber.StatusInternalServerError).JSON(common.ErrorResponse{
                Message: "Unexpected error occurred",
            })
        }
    }

    return c.Status(fiber.StatusOK).JSON(common.SuccessResponse{
        Message: "User status toggled successfully",
    })
}

func (h *UsrHandler) DeleteUserHandler(c fiber.Ctx) error {
    ctx := c.RequestCtx()
    id := c.Params("id")
    if id == "" {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "User ID is required",
        })
    }

    idParsed, err := uuid.Parse(id)
    if err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Invalid user ID format",
        })
    }

    if err := h.service.DeleteUser(ctx, idParsed); err != nil {
        switch {
        case errors.Is(err, common.ErrNotFound):
            return c.Status(fiber.StatusNotFound).JSON(common.ErrorResponse{
                Message: "User not found",
            })
        default:
            return c.Status(fiber.StatusInternalServerError).JSON(common.ErrorResponse{
                Message: "Failed to delete user",
            })
        }
    }

    return c.Status(fiber.StatusOK).JSON(common.SuccessResponse{
        Message: "User deleted successfully",
    })
}

func (h *AthHandler) UpdateAvatarHandler(c fiber.Ctx) error {
    ctx := c.RequestCtx()
    var userUUID uuid.UUID
    userVal := c.Locals("user_id")
    // ... parse user ID

    file, err := c.FormFile("avatar")
    if err != nil {
        return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
            Message: "Failed to upload avatar",
        })
    }

    fileData, err := file.Open()
    if err != nil {
        return c.Status(fiber.StatusInternalServerError).JSON(common.ErrorResponse{
            Message: "Failed to process avatar file",
        })
    }
    defer fileData.Close()

    data, err := io.ReadAll(fileData)
    if err != nil {
        return c.Status(fiber.StatusInternalServerError).JSON(common.ErrorResponse{
            Message: "Failed to read avatar file",
        })
    }

    response, err := h.Service.UploadAvatar(ctx, userUUID, data)
    if err != nil {
        switch {
        case errors.Is(err, common.ErrFileTooLarge):
            return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
                Message: "File size exceeds the maximum limit",
            })
        case errors.Is(err, common.ErrFileTypeNotSupported):
            return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
                Message: "File type is not supported",
            })
        case errors.Is(err, common.ErrImageNotSquare):
            return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
                Message: "Image must be square",
            })
        case errors.Is(err, common.ErrImageTooSmall):
            return c.Status(fiber.StatusBadRequest).JSON(common.ErrorResponse{
                Message: "Image dimensions are too small, must be at least 300x300 pixels",
            })
        default:
            return c.Status(fiber.StatusInternalServerError).JSON(common.ErrorResponse{
                Message: "Failed to upload avatar",
            })
        }
    }

    return c.Status(fiber.StatusOK).JSON(common.SuccessResponse{
        Message: "Avatar updated successfully",
        Data:    response,
    })
}

func (s *AthService) UploadAvatar(ctx context.Context, userID uuid.UUID, data []byte) (*ProfileResponse, error) {
    // Validate file size (max 3MB)
    const maxSize = 3 * 1024 * 1024
    if len(data) > maxSize {
        return nil, common.ErrFileTooLarge
    }

    // Decode and validate image
    img, _, err := image.Decode(bytes.NewReader(data))
    if err != nil {
        return nil, common.ErrFileTypeNotSupported
    }
    
    bounds := img.Bounds()
    if bounds.Dx() != bounds.Dy() {
        return nil, common.ErrImageNotSquare
    }

    // Encode as JPEG with 75% quality
    var buf bytes.Buffer
    err = jpeg.Encode(&buf, img, &jpeg.Options{Quality: 75})
    if err != nil {
        return nil, common.ErrImageProcessingFailed
    }

    // Upload to storage
    filename := "avatars/" + userID.String() + ".jpg"
    url, err := s.AvatarRepo.UploadAvatar(ctx, filename, buf.Bytes())
    if err != nil {
        return nil, common.ErrUploadFailed
    }

    // Update user record
    params := user_repo.UpdateUserParams{
        ID:     userID,
        Avatar: &filename,
    }
    profile, err := s.UserRepo.UpdateUser(ctx, params)
    if err != nil {
        return nil, common.ErrUploadFailed
    }

    // Log activity
    s.ActivityLogger.Log(
        ctx,
        actorID,
        activitylog_repo.LogActionTypeUPDATEAVATAR,
        activitylog_repo.LogEntityTypeUSER,
        profile.ID.String(),
        logDetails,
    )

    return &ProfileResponse{
        ID:        profile.ID,
        Username:  profile.Username,
        Avatar:    &url,
        // ... other fields
    }, nil
}

type CreateUserRequest struct {
    Username string              `json:"username" validate:"required,min=3,max=50"`
    Email    string              `json:"email" validate:"required,email,max=100"`
    Password string              `json:"password" validate:"required,min=6,max=100"`
    Role     repository.UserRole `json:"role" validate:"required,oneof=admin manager cashier"`
    IsActive *bool               `json:"is_active,omitempty"`
}

type UpdateUserRequest struct {
    Username *string              `json:"username,omitempty" validate:"omitempty,min=3,max=50"`
    Email    *string              `json:"email,omitempty" validate:"omitempty,email,max=100"`
    Role     *repository.UserRole `json:"role,omitempty" validate:"omitempty,oneof=admin manager cashier"`
    IsActive *bool                `json:"is_active,omitempty"`
}