<?php

namespace App\Http\Controllers\Admin;

use App\Http\Controllers\Controller;
use Illuminate\Http\Request;
use Spatie\Permission\Models\Role;
use Spatie\Permission\Models\Permission;
use Inertia\Inertia;
use Illuminate\Validation\Rule;

class RoleController extends Controller
{
    /**
     * Display a listing of the resource.
     */
    public function index()
    {
        $roles = Role::withCount('users', 'permissions')
            ->orderBy('id')
            ->get();

        return Inertia::render('Admin/Role/Index', [
            'roles' => $roles
        ]);
    }

    /**
     * Show the form for creating a new resource.
     */
    public function create()
    {
        $permissions = $this->getGroupedPermissions();

        return Inertia::render('Admin/Role/Create', [
            'groupedPermissions' => $permissions
        ]);
    }

    /**
     * Store a newly created resource in storage.
     */
    public function store(Request $request)
    {
        $validated = $request->validate([
            'name' => ['required', 'string', 'max:255', 'unique:roles,name'],
            'permissions' => ['array'],
            'permissions.*' => ['exists:permissions,name']
        ]);

        $role = Role::create(['name' => $validated['name']]);
        
        if (!empty($validated['permissions'])) {
            $role->syncPermissions($validated['permissions']);
        }

        return redirect()->route('roles.index')->with('success', '角色建立成功');
    }

    /**
     * Show the form for editing the specified resource.
     */
    public function edit(string $id)
    {
        $role = Role::with('permissions')->findOrFail($id);
        
        // 禁止編輯超級管理員角色
        if ($role->name === 'super-admin') {
            return redirect()->route('roles.index')->with('error', '超級管理員角色不可編輯');
        }

        $groupedPermissions = $this->getGroupedPermissions();
        $currentPermissions = $role->permissions->pluck('name')->toArray();

        return Inertia::render('Admin/Role/Edit', [
            'role' => $role,
            'groupedPermissions' => $groupedPermissions,
            'currentPermissions' => $currentPermissions
        ]);
    }

    /**
     * Update the specified resource in storage.
     */
    public function update(Request $request, string $id)
    {
        $role = Role::findOrFail($id);

        if ($role->name === 'super-admin') {
            return redirect()->route('roles.index')->with('error', '超級管理員角色不可變更');
        }

        $validated = $request->validate([
            'name' => ['required', 'string', 'max:255', Rule::unique('roles', 'name')->ignore($role->id)],
            'permissions' => ['array'],
            'permissions.*' => ['exists:permissions,name']
        ]);

        $role->update(['name' => $validated['name']]);
        
        if (isset($validated['permissions'])) {
            $role->syncPermissions($validated['permissions']);
        }

        return redirect()->route('roles.index')->with('success', '角色更新成功');
    }

    /**
     * Remove the specified resource from storage.
     */
    public function destroy(string $id)
    {
        $role = Role::withCount('users')->findOrFail($id);

        if ($role->name === 'super-admin') {
            return back()->with('error', '超級管理員角色不可刪除');
        }

        if ($role->users_count > 0) {
            return back()->with('error', "尚有 {$role->users_count} 位使用者屬於此角色，無法刪除");
        }

        $role->delete();

        return redirect()->route('roles.index')->with('success', '角色已刪除');
    }

    /**
     * 取得並分組權限
     */
    private function getGroupedPermissions()
    {
        $allPermissions = Permission::orderBy('name')->get();
        $grouped = [];

        foreach ($allPermissions as $permission) {
            // 假設命名格式為 group.action (例如 products.create)
            $parts = explode('.', $permission->name);
            $group = $parts[0];
            
            if (!isset($grouped[$group])) {
                $grouped[$group] = [];
            }
            
            $grouped[$group][] = $permission;
        }

        // 翻譯群組名稱 (可選，優化顯示)
        $groupNames = [
            'products' => '商品資料管理',
            'vendors' => '廠商資料管理',
            'purchase_orders' => '採購單管理',
            'warehouses' => '倉庫管理',
            'inventory' => '庫存管理',
            'users' => '使用者管理',
            'roles' => '角色權限管理',
        ];

        $result = [];
        foreach ($grouped as $key => $permissions) {
            $result[] = [
                'key' => $key,
                'name' => $groupNames[$key] ?? ucfirst($key),
                'permissions' => $permissions
            ];
        }

        return $result;
    }
}