use uuid::Uuid;

use crate::{
    app::App,
    clock::RequestedAt,
    login::extract::{Identity, IdentitySecret, IdentityToken},
    password::Password,
};

pub fn not_logged_in() -> IdentityToken {
    IdentityToken::new()
}

pub async fn logged_in(app: &App, login: &(String, Password), now: &RequestedAt) -> IdentityToken {
    let (name, password) = login;
    let token = app
        .logins()
        .login(name, password, now)
        .await
        .expect("should succeed given known-valid credentials");

    IdentityToken::new().set(token)
}

pub async fn identity(app: &App, login: &(String, Password), issued_at: &RequestedAt) -> Identity {
    let secret = logged_in(app, login, issued_at)
        .await
        .secret()
        .expect("successful login generates a secret");
    let (token, login) = app
        .logins()
        .validate(&secret, issued_at)
        .await
        .expect("always validates newly-issued secret");

    Identity { token, login }
}

pub fn secret(identity: &IdentityToken) -> IdentitySecret {
    identity.secret().expect("identity contained a secret")
}

pub fn fictitious() -> IdentityToken {
    let token = Uuid::new_v4().to_string();
    IdentityToken::new().set(token)
}